Overview
Spammers can spoof email addresses and send messages that appear as if they are sent from legitimate email addresses. To prevent this, users can configure and enable anti-spoofing in Kerio Connect. The process is described in this article.
Please note that emails from automated bulk marketing systems, such as Shopify, MailChimp, etc might be rejected or not received correctly due to Anti-Spoofing protection enabled.
Process
- Configure anti-spoofing for the server:
-
In the administration interface, Navigate to Configuration > Security > Sender Policy.
-
Select the option User must authenticate in order to send messages from a local domain.
-
Click the sender policy link to view which types of addresses are available to the users in the domain.
-
Define a group of trusted IP addresses.
-
Click Apply.
-
- Enable anti-spoofing for each domain:
-
In the administration interface, Navigate to Configuration > Domain.
-
Double-click a domain and go to Security.
-
Check the Reject messages with spoofed sender identity option. If the option is not available, anti-spoofing has not been configured for the server.
- Click OK.
-
Confirmation
Anti-spoofing has been configured and enabled correctly for the selected domains.
Related Articles