We configured SPF verification and added dns record (v=spf1 mx ip4:x.x.x.x -all). When I send spoofed email on behalf of @mycompany.com from 3rd party service to my personal @mail.ru email address, that email reaches successfully. Don’t you thing that it should be dropped?
I understand that you have configured SPF records for your company in the DNS and when you send spoofed email on behalf of your company that email is not getting blocked and reaches the other domains.
Since you have configured SPF records in DNS that means you have done your part correct and nothing is to be done more from your end.
Now, the other destination end is receiving the spoofed emails, so they have to make policies and filters in their environment based on the SPF verdicts they get.
So for example, if you have configured hard fail in the spf verdict then the destination end will definitely be getting the "hard fail" error (if they have enabled SPF verification), however, what do they do with that error is their responsibility i.e. they need to setup some action by creating a filter for the SPF verdict of "hard fail".
Hence, if the email is passing then destination end need to make the changes.
Hi All, A customer wants to authenticate Anyconnect VPN users from an ASA using the client installed certificate and then with AD. i.e. Is this a corporate device?Would we recommend authenticating the cert on the ASA then passing the AD check to ISE ...
Hello Team, we are getting alert in FMC stating policy deployment failed, we are running on 6.2.0 version and not sure which version is stable version to re mediate this issue, in one event i have seen restart will resolve this issue but is it perman...
Threat Hunting 101
In the latest Cisco Cybersecurity report, we explore all there is to know about threat hunting and provide a how-to guide for creating a threat hunting team.
Here are some of th...
What Is Cisco Identity Services Engine?
Cisco Identity Services Engine (ISE) is an all-in-one enterprise policy control product that enables comprehensive secure wired, wireless, and Virtual Private Networking (VPN) access.
Cisco ISE offers...
To participate in this event, please use the button to ask your questions
(This event was formerly know as Ask the Expert event)
This topic is a chance to discuss more about the best configuration and troubleshooting pr...