Can someone help me with configuration in order to reject forged senders?
I've installed zimbra server on 192.168.14.0/24 network, and my clients network is 192.168.2.0/24, mynetworks config is only 127.0.0.0/8 192.168.14.0/24.
I've also configure SPF checks and my SPF record is:
nslookup -querytype=txt test.vi.pt
test.vi.pt text = "v=spf1 -all"
When i try to send email from my PC (192.168.2.69) withtout authenticating to SMTP, the server doesn't reject it:
telnet mail.test.vi.pt 25
Connected to mail.test.vi.pt.
Escape character is '^]'.
220 mail.test.vi.pt ESMTP Postfix
MAIL FROM: email@example.com
250 2.1.0 Ok
RCPT TO: firstname.lastname@example.org
250 2.1.5 Ok
354 End data with <CR><LF>.<CR><LF>
250 2.0.0 Ok: queued as 8EB1324B81
221 2.0.0 Bye
So, i'm not on a trusted network, i'm not authenticated, and i have SPF checks, shouldn't zimbra reject this?