The man page explains how to do it, but it's not the most user friendly package. The Python implementation is much more mature and easier to configure. It can be found in your distribution/OS packaging system, on pypi, or at https://launchpad.net/pypolicyd-spf .
Scott K On November 17, 2017 4:26:09 PM EST, Gao <g...@pztop.com> wrote: >Thank you all for the help. > >Well, then how do I whitelist in SPF? I am using openspf >(postfix-policyd-spf-perl) on both server. > >At the end of my master.cf, I have: >policy unix - n n - - spawn > user=nobody argv=/usr/bin/perl >/usr/local/sbin/postfix-policyd-spf-perl > >I couldn't figure out how to whitelist the backup mx on the destitution > >server. > >Gao > >> Gao skrev den 2017-11-17 21:34: >> >>> So what is the solution here? Should I add the mail.mytestmx.com to >>> zeta.othermx.com's SPF record and make it trust it? If so are there >>> any risk? >> >> yes recipient validation on backup mx mta, eq dont accept mails that >> cant be delivered >> >> the error is that mx dont add all ips to spf, and or final >destination >> did forget to whitelist backup mx ip, since this is not a border mx >ip >> >> silly and simple
