Cisco Cisco Email Security Appliance C370D Technical References

The following example shows a user configuring the SPF/SIDF verification using the SPF Only 
conformance level. The appliance performs the HELO identity check and accepts the None and Neutral 
verification results and rejects the others. The CLI prompts for the SMTP actions are the same for all 
identity types. The user does not define the SMTP actions for the MAIL FROM identity. The appliance 
automatically accepts all verification results for the identity. The appliance uses the default reject code 
and text for all REJECT results.

SIDF Compatible

whether to perform a HELO identity check

whether the verification downgrades a Pass 
result of the PRA identity to None if the 
Resent-Sender: or Resent-From: headers are 
present in the message

SMTP actions taken based on the results of 
the following identity checks:

HELO identity (if enabled)

MAIL FROM Identity

PRA Identity

SMTP response code and text returned for the 
REJECT action

verification timeout (in seconds)

SIDF Strict

SMTP actions taken based on the results of 
the following identity checks:

MAIL FROM Identity

PRA Identity

SMTP response code and text returned in case 
of SPF REJECT action

verification timeout (in seconds)

Would you like to change SPF/SIDF settings?  [N]> yes

Would you like to perform SPF/SIDF Verification?  [N]> yes

What Conformance Level would you like to use?

1. SPF only

2. SIDF compatible

3. SIDF strict