Руководство Пользователя для Cisco Cisco Email Security Appliance C160
17-28
Cisco AsyncOS 8.0.1 for Email User Guide
Chapter 17 Email Authentication
Determining the Action to Take for SPF/SIDF Verified Mail
See the Cisco AsyncOS CLI Reference Guide for more information on the
listenerconfig
command.
The Received-SPF Header
When you configure AsyncOS for SPF/SIDF verification, it places an SPF/SIDF verification header
(
(
Received-SPF
) in the email. The
Received-SPF
header contains the following information:
•
verification result - the SPF verification result (see
•
identity - the identity that SPF verification checked: HELO, MAIL FROM, or PRA.
•
receiver - the verifying host name (which performs the check).
•
client IP address - the IP address of the SMTP client.
•
ENVELOPE FROM - the envelope sender mailbox. (Note that this may be different from the MAIL
FROM identity, as the MAIL FROM identity cannot be empty.)
FROM identity, as the MAIL FROM identity cannot be empty.)
•
x-sender - the value of the HELO, MAIL FROM, or PRA identity.
•
x-conformance - the level of conformance (see
) and whether a downgrade of the PRA check was performed.
The following example shows a header added for a message that passed the SPF/SIDF check:
Note
The
spf-status
and
spf-passed
filter rules use the received-SPF header to determine the status of the
SPF/SIDF verification.
Determining the Action to Take for SPF/SIDF Verified Mail
When you receive SPF/SIDF verified mail, you may want to take different actions depending on the
results of the SPF/SIDF verification. You can use the following message and content filter rules to
determine the status of SPF/SIDF verified mail and perform actions on the messages based on the
verification results:
results of the SPF/SIDF verification. You can use the following message and content filter rules to
determine the status of SPF/SIDF verified mail and perform actions on the messages based on the
verification results:
•
spf-status
. This filter rule determines actions based on the SPF/SIDF status. You can enter a
different action for each valid SPF/SIDF return value.
•
spf-passed
. This filter rule generalizes the SPF/SIDF results as a Boolean value.
Defer code: 451
Defer text: #4.4.3 Temporary error occurred during SPF verification.
Verification timeout: 40
Received-SPF: Pass identity=pra; receiver=box.example.com;
client-ip=1.2.3.4; envelope-from="alice@fooo.com";
x-sender="alice@company.com"; x-conformance=sidf_compatible