Overview

Spammers can spoof email addresses and send messages that appear as if they are sent from legitimate email addresses. To prevent this, users can configure and enable anti-spoofing in Kerio Connect. The process is described in this article.

Process

1. Configure anti-spoofing for the server:

   1. In the administration interface, Navigate to Configuration > Security > Sender Policy.

   2. Select the option User must authenticate in order to send messages from a local domain.

   3. Click the sender policy link to view which types of addresses are available to the users in the domain.

      

   4. Define a group of trusted IP addresses.

   5. Click Apply.

      
      
      
      
2. Enable anti-spoofing for each domain:

   1. In the administration interface, Navigate to Configuration > Domain.

   2. Double-click a domain and go to Security.

   3. Check the Reject messages with spoofed sender identity option. If the option is not available, anti-spoofing has not been configured for the server. 

      
   4. Click OK. 
      
      

Confirmation

Anti-spoofing has been configured and enabled correctly for the selected domains.

Related Articles

• Configuring IP Address Groups for Kerio Connect