Cisco Cisco Email Security Appliance C160 Technische Referenzen
387
Cisco AsyncOS 8.0.1 CLI Reference Guide
Chapter
Example - Configuring SPF and SIDF
When configuring the default settings for a listener’s Host Access Table, you can choose the listener’s
SPF/SIDF conformance level and the SMTP actions (ACCEPT or REJECT) that the appliance performs,
based on the SPF/SIDF verification results. You can also define the SMTP response that the appliance
sends when it rejects a message.
SPF/SIDF conformance level and the SMTP actions (ACCEPT or REJECT) that the appliance performs,
based on the SPF/SIDF verification results. You can also define the SMTP response that the appliance
sends when it rejects a message.
Depending on the conformance level, the appliance performs a check against the HELO identity, MAIL
FROM identity, or PRA identity. You can specify whether the appliance proceeds with the session
(ACCEPT) or terminates the session (REJECT) for each of the following SPF/SIDF verification results
for each identity check:
FROM identity, or PRA identity. You can specify whether the appliance proceeds with the session
(ACCEPT) or terminates the session (REJECT) for each of the following SPF/SIDF verification results
for each identity check:
•
None. No verification can be performed due to the lack of information.
•
Neutral. The domain owner does not assert whether the client is authorized to use the given identity.
•
SoftFail. The domain owner believes the host is not authorized to use the given identity but is not
willing to make a definitive statement.
willing to make a definitive statement.
•
Fail. The client is not authorized to send mail with the given identity.
•
TempError. A transient error occurred during verification.
•
PermError. A permanent error occurred during verification.
SMTP Reject Banner Text
(*)
(*)
smtp_banner_text
String
Rejected
Override SMTP Banner
Hostname
Hostname
use_override_hostname
on | off |
default
default
override_hostname
String
newhostname
Use TLS
tls
on | off |
required
on
Use anti-spam scanning
spam_check
on | off
off
Use Sophos virus
scanning
scanning
virus_check
on | off
off
Maximum Recipients per
Hour
Hour
max_rcpts_per_hour
Number
5k
Maximum Recipients per
Hour Error Code
Hour Error Code
max_rcpts_per_hour_code
Number
452
Maximum Recipients per
Hour Text (*)
Hour Text (*)
max_rcpts_per_hour_text
String
Too many
recipients
Use SenderBase
use_sb
on | off
on
Define SenderBase
Reputation Score
Reputation Score
sbrs[value1:value2]
-10.0- 10.0
sbrs[-10:-7.5]
Directory Harvest Attack
Prevention: Maximum
Invalid Recipients Per
Hour
Prevention: Maximum
Invalid Recipients Per
Hour
dhap_limit
Number
150
Table 3-174
Advanced HAT Parameter Syntax
Parameter
Syntax
Values
Example Values