Comments

• SPF checks do not happen in the MTA that is done in the SMTP Proxy. The MTA does not make any judgement on any aspect of a message.

  in ES 10.0.6 Fails To Identify SPF Record (SPF Not Found) Comment by David W September 2020
• The 3300 was a 32 bit applaince and anything newer than 9.2 is 64 bit. The releases previous to 9.0.x is 8.3.x which is why that is mentioned in the release notes. The information you are referring is meant for those that are moving from 32 bit to 64 bit than needing to get upgraded to the most recent version. You should…

  in Email Security Firmware upgrade steps Comment by David W September 2020
• You would need either an LDAP server that is accessable or you can manually add users and give them a password. When using LDAP if the LDAP server is offline users would not be able to login. Passwords for users of LDAP are not cached and cannot be cached.

  in User login for Continuity Comment by David W September 2020
• @BWC Yes, we are talking about the SMTP envelope (HELO and MAIL FROM) as being how checks are performed. EDNS was the original problem here not how the SPF checks were being done. If EDNS is not supported, than an empty reply would be seen where it was used. When we have long periods of time between releases I can…

  in ES 10.0.6 Fails To Identify SPF Record (SPF Not Found) Comment by David W September 2020
• @Halon5 Can you please open a new support case for the issue so a tech can review it with you. Engineering always follow the RFC's according to how they are written.

  in ES 10.0.6 Fails To Identify SPF Record (SPF Not Found) Comment by David W September 2020
• @Halon5 SPF checks are always done against the mail from header and not the from address itself. Can you please open a new support case for the issue so a tech can review it with you. There is a diag page option to return it to use the PRA instead of the mail from but that effectively disables the use of DKIM and DMARC. As…

  in ES 10.0.6 Fails To Identify SPF Record (SPF Not Found) Comment by David W September 2020
• The specific item you are referencing is being caught by Vade. You can disable the Vade AV plugin on the diag page under server settings. The best way to resolve this is to open a support case and have a sample that is caught and the original attachment as well and support can submit it to the effectiveness team to resolve.

  in How to temporarily disable anti virus? Comment by David W July 2020
• FYI have you seen these options on the bottom of the connection management page? Delayed Connection Management Reject connections: as soon as possible (better performance) after all recipients are known (better tracking) This is still about recipients not senders however setting the options for DHA to store in junkbox…

  in 10.0.6 - Message Logs - empty From-address for Rejected Mails Comment by David W June 2020
• @Halon5 Hi, This issue really needs to be tracked and documented in the case. There wouldn't be any specific details that would be suitable for here at this time. I will work with Gailand and see if we can get more specific information for you on the case. Thanks

  in ES 10.0.6 Fails To Identify SPF Record (SPF Not Found) Comment by David W June 2020
• Anything marked as DHA and set to reject will never show the from address, only to to address. If you set it to store in junkbox it should show the from address. If there are messages being marked as DHA but the recipient exists you would first want to do a refresh users in the UI which will update right away. New users…

  in 10.0.6 - Message Logs - empty From-address for Rejected Mails Comment by David W June 2020