How ISPConfig manage SPF/DMARC for incoming mails ?

Hello,
I have ISPConfig 3.2.7p1 configured with email domains and email boxes.
I wonder how my server is dealing incoming mails regarding SPF directives and DMARC directives ?
Does it consider SPF record when receiving a mail and reject if violated ?
How does it consider DMARC directives ? Does it send a mail like [email protected] ?

 

I set up amavis (with ubuntu 20.04)
I ve just checked ubuntu setup tutorial : it is implementing amavis not rspamd : dont know why ?

 

Very nice.
I have my conf (multi server) in production... is there a tuto to move to rspamd ?

 

Very easy, i'll do that. Thanks.
If i come back to my initial question,

I understand from your explaination that rspamd is managing spf and dmarc including sending emails 'noreplydmarc'

 

I imagine that these settings
- Spam score / force action
- send dmarc report
are accessible in web gui ?

For 'noreply', is that in ispconfig ?

 

Is there a tuto you would recommend me ?

 

Thanks a lot, I'll do that

 

@Jesse Norell
Hello,
I am setting rspamd.
i read with high interess your tuto : https://www.howtoforge.com/community/threads/rspamd-second-redis-instance-for-bayes.86884/
I have few questions.
On the server, where I'll move to rspamd, I have nextcloud instance which is using also redis.
I wonder why it is not possible to choose redis db in setting.
Do you confirm ispconfig is using db=0 ?

 

I set that

Code:

echo 'db = "1";' >> /etc/rspamd/local.d/redis.conf

 

Hello,
I am back again.
I am setting DMARC rules using https://rspamd.com/doc/modules/dmarc.html as you recommend.
In following code,

Code:

dmarc {
    # If Redis server is not configured below, settings from redis {} will be used
    #servers = "127.0.0.1:6379"; # Servers to use for reads and writes (can be a list)
    # Alternatively set read_servers / write_servers to split reads and writes
    # To set custom prefix for redis keys:
    #key_prefix = "dmarc_";
    # Actions to enforce based on DMARC disposition (empty by default)
    actions = {
        quarantine = "add_header";
        reject = "reject";
    }
        # Ignore "pct" setting for some domains
        # no_sampling_domains = "/etc/rspamd/dmarc_no_sampling.domains";
}

My question is: should I setup a different redis conf. from the 2 setup for ispconfig.

Should I set a key_prefix ?
I would say no, but, prefer ask

 

After few try, it seems that works...
Still Dmarc report to test after few days of received mail !
Just a remark, i set

Code:

echo 'db = "1";' >> /etc/rspamd/override.d/redis.conf

instead of

Code:

echo 'db = "1";' >> /etc/rspamd/local.d/redis.conf

to avoid being overridden by ispconfig updates !

 

Thank you very much