Kendall900
asked on
how to properly setup SPF in a clustered environment, using a frontend and a backend mailbox solution
I am trying to setup Sender's Policy Framework (SPF) on my exchange 2003 SP2 servers, in a clustered environment, using a frontend and a backend mailbox solution. I am not sure it is configured right. When I follow the instructions as outlined in an article, to configure the Froned exchange server:
http://blogs.technet.com/industry_insiders/articles/spf_in_sp2_exchange.aspx
I get an error that states" Sender ID Filter must be configured globally on the the message delivery property pages. Go to the message delivery object's property pages under Global Settings to configure Sender ID Filtering"
In the Sender IT Filtering tab of the Message Delivery Properties, I have it set to Accept(SenderID status will be attached to the message for further anti-spam processing.
any ideas?
SPF-error-screen-shots.doc
http://blogs.technet.com/industry_insiders/articles/spf_in_sp2_exchange.aspx
I get an error that states" Sender ID Filter must be configured globally on the the message delivery property pages. Go to the message delivery object's property pages under Global Settings to configure Sender ID Filtering"
In the Sender IT Filtering tab of the Message Delivery Properties, I have it set to Accept(SenderID status will be attached to the message for further anti-spam processing.
any ideas?
SPF-error-screen-shots.doc
Stacy Spear
Thats just a warning box telling you that the checkbox doesn't configure SPF filtering. Are you having issues with the filtering?
ASKER
Yes it appears that the SPF is not doing reverse name look up since I am still getting SPAM from addresses that I know does not exist.
You are in accept mode according to your screenshots. That means that Exchange will still accept and deliver the message.
What you might need is a SMTP Sink that scans the inbound message for a failed SPF status and moves it to an admin folder or somewhere for intervention.
Or you could Delete or Reject the messages. Reject is the best as sending parties can at least dispute their failures with you whereas delete doesn't tell them anything.
What you might need is a SMTP Sink that scans the inbound message for a failed SPF status and moves it to an admin folder or somewhere for intervention.
Or you could Delete or Reject the messages. Reject is the best as sending parties can at least dispute their failures with you whereas delete doesn't tell them anything.
ASKER
but wouldn't that cause a massive amount of NDR since the spammers do not have valid addresses, as such the NDR's would be stuck in my queue
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.