SPF on Google Split Delivery
Hello,
I have an issue with mail being rejected on my cPanel server when using Google For Work split delivery.
So for all address which don't have a Google account get rerouted by google to my 'legacy server' (my cPanel server). Most mail arrives fine and works beautifully and ALL mail arrived fine until around 8th August after which point certain emails would be rejected due to SPF issues. I presume my server installed a cPanel update or something around 8th which changed something, probably turned on SPF checking.
I know how to turn off the checking of SPF in the exim config. But I'd rather have it turned on as I have had email spoofing in the past and receive enough spam as it is, there are lots of other accounts on the server who would also benefit from it's protection.
My question is, is there any way to turn off SPF filtering on one specific cPanel account or even a recipient address?
Below is an example line from the reject log:
2016-08-15 04:01:28 H=mail-yb0-f200.google.com [209.85.213.200]:35592 X=TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no F= rejected RCPT : SPF: 209.85.213.200 is not allowed to send mail from bounce.twitter.com
Thanks in advance.
-
My question is, is there any way to turn off SPF filtering on one specific cPanel account
In that accounts cPanel > Email section > Authentication, you can disable SPF for the domain if you wish. There's another thread, may not be related exactly, regarding twitter emails issue: Unable to receive emails from twitter for forwarders0 -
In that accounts cPanel > Email section > Authentication, you can disable SPF for the domain if you wish.
This is for outgoing, not incoming mail.0 -
is not allowed to send mail from bounce.twitter.com
I wonder if you added: bounce.twitter.com to your SPF record if that would help?0 -
I wonder if you added: bounce.twitter.com to your SPF record if that would help?
No, because it's not just twitter. It's quite a lot of senders. The twitter log was an example from the log.0 -
ALL mail arrived fine until around 8th August after which point certain emails would be rejected due to SPF issues.
This appears to be related: Reject SPF Failures enabled by default in Exim. The Reject SPF failures option is now always enabled in Exim, and we removed the option from WHM's Exim Configuration Manager - Basic Editor interface (Home >> Service Configuration >> Exim Configuration Manager).
58 Release Notes - Documentation - cPanel Documentation0
Please sign in to leave a comment.
Comments
5 comments