Cisco Cisco Email Security Appliance C170 Guia Do Utilizador
17-22
Cisco AsyncOS 8.0.2 for Email User Guide
Chapter 17 Email Authentication
Enabling SPF and SIDF
Warning
Although Cisco strongly endorses email authentication globally, at this point in the industry's
adoption, Cisco suggests a cautious disposition for SPF/SIDF authentication failures. Until more
organizations gain greater control of their authorized mail sending infrastructure, Cisco urges
customers to avoid bouncing emails and instead quarantine emails that fail SPF/SIDF verification.
adoption, Cisco suggests a cautious disposition for SPF/SIDF authentication failures. Until more
organizations gain greater control of their authorized mail sending infrastructure, Cisco urges
customers to avoid bouncing emails and instead quarantine emails that fail SPF/SIDF verification.
Note
The AysncOS command line interface (CLI) provides more control settings for SPF level than the web
interface. Based on the SPF verdict, the appliance can accept or reject a message, in SMTP conversation,
on a per listener basis. You can modify the SPF settings when editing the default settings for a listener’s
Host Access Table using the
interface. Based on the SPF verdict, the appliance can accept or reject a message, in SMTP conversation,
on a per listener basis. You can modify the SPF settings when editing the default settings for a listener’s
Host Access Table using the
listenerconfig
for more information on the settings.
Enabling SPF and SIDF
To use SPF/SIDF, you must enable SPF/SIDF for a mail flow policy on an incoming listener. You can
enable SPF/SIDF on the listener from the default mail flow policy, or you can enable it for particular
incoming mail flow policies.
enable SPF/SIDF on the listener from the default mail flow policy, or you can enable it for particular
incoming mail flow policies.
Procedure
Step 1
Choose Mail Policies > Mail Flow Policy.
Step 2
Click Default Policy Parameters.
Step 3
In the default policy parameters, view the Security Features section.
Step 4
In the SPF/SIDF Verification section, click On..
Step 4
Associate the action with groups of specific
senders or recipients.
senders or recipients.
Step 5
(Optional) Test the results of message
verification.
verification.
Table 17-2
How to Verify Incoming Messages Using SPF/SDIF
Do This
More Info