服务器 Gind.cn
  1. 服务器 Gind.cn
  3. 如何使Outlook信任电子邮件网关的SPFtesting?
Intereting Posts
应用程序池回收后的IIS 6.0 / 2003错误 Informix到MySQL转换 centos yum版本库软件包安全信息..我怎么find它? 星号:音乐搁置 强制特定用户的SSH公钥authentication Django uwsgi部署。 无法find“应用程序” $ _SERVER中使用nginx作为反向代理的HTTPSvariables 通过公共互联网的MSTSC RDP 如何减less使用W3 Total Cache的hibernateWordPress站点的服务器负载? 准备偷窃笔记本电脑 在Mac上运行Supervisord 用stracedebugging慢速WordPress站点 Linux不断重试失败的DNS服务器 离线Windows事件ID解决scheme? 从我自己的电脑访问我的客户端的VPN?

如何使Outlook信任电子邮件网关的SPFtesting?

configuration如下:我在Windows Server上有一个本地MS Exchange邮件服务器。 我也有一个云,基于Proofpoint的外部电子邮件网关。 网关的电子邮件地址(IP my.gw.ip.addr )已列在我的MX中,因此所有传入的电子邮件都必须通过网关进行筛选,然后转发到实际的电子邮件服务器。 网关进行SPF检查,并将SPF行添加到电子邮件的标题中。 问题是,我的Exchange服务器再次进行检查,并添加了自己的SPF行 – 但是这次将my.gw.ip.addr视为始发者的MTA,所以SPFtesting总是失败。

我该如何解决这个问题,让我的Exchange Server接受网关的SPF结果,而不是重新testing呢? 或者,至less,使它作为我们的设备,而不是发起人的my.gw.ip.addr?

示例消息标题: 

Received: from MYGATEWAY.sp.f-secure.com (my.gw.ip.addr) by MYSERVER.MYDOMAIN.local (172.20.1.21) with Microsoft SMTP Server id 14.1.438.0; Wed, 1 Nov 2017 07:33:52 +0100 Received: from pps.filterd (MYGATEWAY.sp.f-secure.com [127.0.0.1]) by MYGATEWAY.sp.f-secure.com (8.16.0.21/8.16.0.21) with SMTP id vA16XlLc018909; Wed, 1 Nov 2017 07:33:47 +0100 Authentication-Results: sp.f-secure.com; spf=pass [email protected] Received: from sicpl (sicpl [sender.ip.address]) by MYGATEWAY.sp.f-secure.com with ESMTP id 2dxx1dg21r-1; Wed, 01 Nov 2017 07:33:47 +0100 Received: from arkach.sender.domain.com.pl (17.sender.domain [192.168.128.17]) by sender.domain.com.pl (Postfix) with ESMTP id 78A351C00213; Wed, 1 Nov 2017 07:33:46 +0100 (CET) Received: from 17.imm (localhost [127.0.0.1]) by arkach.imm (Postfix) with ESMTP id 2A69161C1; Wed, 1 Nov 2017 07:33:46 +0100 (CET) Content-Type: multipart/related; type="text/html"; boundary="----sinikael-?=_1-15095179881690.8665939982727646" From: <[email protected]> To: <[email protected]> Date: Wed, 1 Nov 2017 06:33:08 +0000 Message-ID: <[email protected]> MIME-Version: 1.0 X-Proofpoint-SPF-Result: pass X-Proofpoint-SPF-Record: v=spf1 ip4:sender.ip.class.1/28 ip4:sender.ip.class.1/28 -all X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2017-11-01_01:,, signatures=0 X-Proofpoint-Spam-Reason: safe Return-Path: [email protected] X-MS-Exchange-Organization-AuthSource: MYSERVER.MYDOMAIN.local X-MS-Exchange-Organization-AuthAs: Anonymous X-MS-Exchange-Organization-PRD: sender.domain.com.pl X-MS-Exchange-Organization-SenderIdResult: Fail Received-SPF: Fail (MYSERVER.MYDOMAIN.local: domain of [email protected] does not designate my.gw.ip.addr as permitted sender) receiver=MYSERVER.MYDOMAIN.local; client-ip=my.gw.ip.addr; helo=MYGATEWAY.sp.f-secure.com; X-MS-Exchange-Organization-SCL: 0 X-MS-Exchange-Organization-PCL: 2 X-MS-Exchange-Organization-Antispam-Report: DV:3.3.15022.484;SID:SenderIDStatus Fail;OrigIP:my.gw.ip.addr