Cisco Cisco Email Security Appliance C160 Mode D'Emploi
Chapter 5 Email Authentication
5-294
Cisco IronPort AsyncOS 7.3 for Email Advanced Configuration Guide
OL-23081-01
Using the spf-passed Filter Rule
The
spf-passed
rule shows the results of SPF verification as a Boolean value. The
following example shows an
spf-passed
rule used to quarantine emails that are
not marked as spf-passed:
quarantine-spf-unauthorized-mail:
if (not spf-passed) {
quarantine("Policy");
}
Note
Unlike the
spf-status
rule, the
spf-passed
rule reduces the SPF/SIDF
verification values to a simple Boolean. The following verification results are
treated as not passed in the
treated as not passed in the
spf-passed
rule: None, Neutral, Softfail, TempError,
PermError, and Fail. To perform actions on messages based on more granular
results, use the
results, use the
spf-status
rule.
Testing the SPF/SIDF Results
Test the results of SPF/SIDF verification and use these results to determine how
to treat SPF/SIDF failures because different organizations implement SPF/SIDF
in different ways. Use a combination of content filters, message filters, and the
Email Security Monitor - Content Filters report to test the results of the SPF/SIDF
verification.
to treat SPF/SIDF failures because different organizations implement SPF/SIDF
in different ways. Use a combination of content filters, message filters, and the
Email Security Monitor - Content Filters report to test the results of the SPF/SIDF
verification.
Your degree of dependence on SPF/SIDF verification determines the level of
granularity at which you test SPF/SIDF results.
granularity at which you test SPF/SIDF results.