WinGate Forums

[andrewsj8034]

I am trying to use the bloc spoofed sender address function by creating a white list to allow specified domains without spf records to continue sending mail to my internal mail servers. However, the fields listed for white list use do not seem to give me that functionality. Is there a documented guide to use of this function with examples?
Using 2 wingate 6.2.1 servers which still meet my needs as mail gateway appliances.
Thanks!

[adrien]

Hi

the function "Block spoofed sender address" doesn't actually use actual SPF. It basically uses an SPF-like mechanism, but doesn't do a DNS lookup for the SPF record of the sender domain.

The thing it checks is

is the source IP in same class C subnet as any MX record or A record for the domain
is the validated name (reverse then forward lookup) of the address in the same domain as the email domain
is the validated name (reverse then forward lookup) of the address in the same domain as any MX server for the email domain

We do find there are some sites where these rules do not allow the traffic through, however they work for most of the big problem domains. This is why we added the exception list.

We do plan to implement a proper SPF processor. This approach above dates from a time before we knew about SPF.