SpamTitan

SPF Settings

SPF (Sender Policy Framework) allows the owner of a domain to use special DNS records to specify which machines are authorized to transmit e-mail for that domain. When receiving a message from a domain, the receiver can check the DNS records to ensure the mail is coming from locations that the domain has authorized. 

When enabled in SpamTitan, messages that fail the SPF test will be rejected. This option is disabled by default as it can result in mail being rejected from domains with incorrectly configured SPF records, so it should be used with caution.

Warning

There is a performance penalty for all messages when using SPF, as multiple DNS queries must be performed to retrieve a domain's SPF record.

Go to System Setup > Mail Authentication > SPF to manage your SFP settings. Click Enable to enable SPF.

STG-SPF-Settings.jpg

IP addresses and networks can bypass SPF checks if they are added to the SPF Whitelisted IPs/Networks list.

  • To add a whitelist entry, click Add... and the SPF window displays. Using the table below as a reference, complete the fields. Click Save to save this entry.

  • To edit an existing whitelist entry, click the edit ST-701-edit-button.jpg icon in the Options column and the SPF dialog box displays. Using the table below as a reference, edit the fields. Click Save to save changes.

  • To delete a whitelist entry, click the delete ST-701-delete-button.jpg icon in the Options column.

Field

Description

IP/Network:

An individual IP address or network range you want to bypass SPF checks.

Netmask:

Select the netmask for the specified IP address. Individual IPv4 addresses have a /32 (255.255.255.255) netmask.

Address Type:

IPv4 (default) or IPv6.

Comment:

Optional comment for this entry.