Handling spam checking of forwarded emails - ORF Forums

Handling spam checking of forwarded emails RSS Back to forum


Hi there,

We have a situation where we manage another external/secondary domain for which the mail server is hosted on a Linux VPS server. That domain has a "group" email address that autoforwards to two recipients inside our main domain (to their email accounts on our Exchange+ORF server on our main domain).

Those two recipients report they're receiving a lot of Spam which is being forwarded from the external/secondary domain .. but which is not filtered by ORF (the usual Rolex, Viagra, Penis extension type stuff).

I suspect that the reason could be that the VPN running this external/secondary domain is listed in the SPF record for our main domain - as it also runs some agents that send email with a from address of our main domain.

What's the best approach for targeting these incoming email messages for ORF filtering. I certainly don't want to block messages from that domain/IP as there are legitimate forwards happening. But I do want ORF's filtering to apply to those messages on the way in.

Any help gratefully received.



by Mark E 7 years ago

@Mark E: what does the ORF log show for these emails (http://blog.vamsoft.com/2010/04/21/using-the-orf-log-viewer/)? Are they excluded from filtering (whitelisted) or tested but "passed checks"?

If the latter: are the original sender address and Received: headers preserved in the email (i.e., are these emails relayed properly) or are they forwarded (sender address is rewritten by the Linux server and the delivery path of the original email is removed from the email header)?

by Krisztian Fekete (Vamsoft) 7 years ago
(in reply to this post)

New comment

Fill in the form below to add a new comment. All fields are required. If you are a registered user on our site, please sign in first.

It will not be published.
hnp1 | hnp2