Handling spam checking of forwarded emails RSS Back to forum
2
@Mark E:
what does the ORF log show for these emails (http://blog.vamsoft.com/2010/04/21/using-the-orf-log-viewer/)? Are they excluded from filtering (whitelisted) or tested but "passed checks"?
If the latter: are the original sender address and Received: headers preserved in the email (i.e., are these emails relayed properly) or are they forwarded (sender address is rewritten by the Linux server and the delivery path of the original email is removed from the email header)?
Hi there,
We have a situation where we manage another external/secondary domain for which the mail server is hosted on a Linux VPS server. That domain has a "group" email address that autoforwards to two recipients inside our main domain (to their email accounts on our Exchange+ORF server on our main domain).
Those two recipients report they're receiving a lot of Spam which is being forwarded from the external/secondary domain .. but which is not filtered by ORF (the usual Rolex, Viagra, Penis extension type stuff).
I suspect that the reason could be that the VPN running this external/secondary domain is listed in the SPF record for our main domain - as it also runs some agents that send email with a from address of our main domain.
What's the best approach for targeting these incoming email messages for ORF filtering. I certainly don't want to block messages from that domain/IP as there are legitimate forwards happening. But I do want ORF's filtering to apply to those messages on the way in.
Any help gratefully received.
Cheers
Mark