A client of ours are using a separat mailscanner who forwards emails without SRS. This often triggers SPF recjection or softfails. We tried whitelisting IPs from within the ISPconfig interface under Mail -> Postfix Whitelist by inserting an sender exception. Emails are still being SPF rejected though. How is it possible to skip SPF checks for certain IP adresses/ranges so we can help our client?
Hi Jesse We use amavisd, but the SPF check is performed before the spamscanning as far as i can tell. Implementing a manual whitelist like described here seems to do the trick - i'm just afraid manual changes like this will be overridden by future upgrades: https://www.howtoforge.com/how-to-whitelist-hosts-ip-addresses-in-postfix .
Where is it performed? (I have one amavisd system left, and a quick check shows it is amavis performing spf checks there, but you could certainly have added additional software to do that.) You can make your changes to survive ispconfig updates by putting them in /usr/local/ispconfig/server/conf-custom/install/postfix_custom.conf.master.
