Cisco Cisco Email Security Appliance X1070 Guia Do Utilizador
17-24
Cisco AsyncOS 8.0.1 for Email User Guide
Chapter 17 Email Authentication
Enabling SPF and SIDF
Optionally, you can configure the appliance to return a third-party response from the SPF publisher
domain if the REJECT action is taken for Neutral, SoftFail, or Fail verification result. By default, the
appliance returns the following response:
domain if the REJECT action is taken for Neutral, SoftFail, or Fail verification result. By default, the
appliance returns the following response:
To enable these SPF/SIDF settings, use the
listenerconfig -> edit
subcommand and select a listener.
Then use the
hostaccess -> default
subcommand to edit the Host Access Table’s default settings.
Answer
yes
to the following prompts to configure the SPF controls:
The following SPF control settings are available for the Host Access Table:
550-#5.7.1 SPF unauthorized mail is prohibited.
550-The domain example.com explains:
550 <Response text from SPF domain publisher>
Would you like to change SPF/SIDF settings? [N]> yes
Would you like to perform SPF/SIDF Verification? [Y]> yes
Table 17-4
SPF Control Settings via the CLI
Conformance Level
Available SPF Control Settings
SPF Only
•
whether to perform HELO identity check
•
SMTP actions taken based on the results of the
following identity checks:
following identity checks:
–
HELO identity (if enabled)
–
MAIL FROM Identity
•
SMTP response code and text returned for the REJECT
action
action
•
verification time out (in seconds)