My domain name registrar offers email aliases and forwarding; however, this feature causes my mail server's SPF checks to fail because the registrar's mail relay sends on behalf of the originating server. I fixed it by white-listing the registrar's mail relay IP block in SpamAssassin.
1. Add a "trusted_networks" line to the SpamAssassin config. As of Zimbra 8.5 and later, the reported location to customize SpamAssassin is here:/opt/zimbra/data/spamassassin/localrulesI refer to this article for the latest location for customizing SpamAssassin: https://wiki.zimbra.com/wiki/Anti-spam_Strategies#Customizing_SpamAssassin
Edit the file in here called local.cf and add your "trusted_networks" (example below). You'll notice this file contains a comment at that top that says something like, "This is the place to customize SpamAssassin..." I've also seen a file called user_prefs.cf being used instead. To be honest I don't think the file name matters much because I believe SpamAssassin reads all the cf files in this folder.# TRUST REGISTRAR RELAY
trusted_networks 123.45.6/24
2. Restart Zimbra.su - zimbrazmcontrol restart
FURTHER READING
http://spamassassin.apache.org/full/3.4.x/doc/Mail_SpamAssassin_Conf.html
Related Articles
How To Build an Ubuntu Web Ser...
The following is a task outline for building an Ubuntu-based web-server to run Joomla and JomSocial. I created this for my own notes, so apologies if it's...
Computing in Japanese - Dealin...
Mojibake (aka "junk text") is a horrible affliction that most computing in Japanese have encountered at some point. Here are some simple fixes that I u...
Nginx - How to Block or Redire...
I've been figuring out how to block or redirect web traffic in Nginx based on the country geoIP. NOTES* You need the package nginx-extras for this because this...
Setting Up SPF on Zimbra Runni...
SPF is awesome for stopping delivery of spoofed spam and junk back-scatter, but many of the articles on how to set up SPF in Zimbra are old and out-of-date. It...