Sender Policy Framework (SPF) on Cisco Email Security Appliance (ESA)

Sender Policy Framework (SPF) is a validation mechanism to detect email spoofing. The idea is to provide Cisco ESA the ability to verify that incoming mail from a domain where the host is authorized by that company.

In this example, Company A with domain lab.public publish SPF Records which is a list IP addresses of the mail servers authorized to send emails.
When incoming mail is received by Cisco ESA, it looks at the From: field of te envelop and queries the DNS server to retrieve the list of IP addresses s’mail servers authorized to send emails from lab.public domain.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s