We use Exchange 2007 as our office mail server. We have a server in a colo which has an e-commerce site we run. When a customer submits a product inquiry on our website, the site emails it to us. Recently, we received a bounce message from our server saying that our local exchange box would not accept a message because "#< #5.7.1 smtp;550 5.7.1 SPF unauthorized mail is prohibited.> #SMTP#" I can not find SPF mentioned anywhere in the Exchange Console. Is there some way to whitelist our other server? Is there some other way we should be sending the mail? I would like to configure Exchange to not reject mail based on SPF, maybe only flag it as junk. EDIT: see my next post in this thread for some clarifications.

SPF isn't Exchange specific, its a DNS record. Take a look at this article and send back any other questions. It's probably since your email is coming from an IP address that isn't associated with your SPF record. http://www.msexchange.org/articles/SPF-support-Exchange-freeware.htmlMark Morowczynski|MCT| MCSE 2003:Messaging, Security|MCITP:EMA 2K7,EDA Win 7,ES,SA,EA|MCTS:Windows Mobile Admin|Security+|http://almostdailytech.com

I am (very) familiar with setting up SPF records, so let's try my question again: I will call my servers CORP-LIVE, which hosts a website using ASP.NET and is located at a colo, and OFFICE-EX which is running Exchange 2007 and is located in my office. Someone used the contact form on one of our websites to send us an email. The ASP.NET application sends this email: To: custserv@ourcompany.com From: customeremailaddress@example.com Since moving to Exchange 2007 (from Exchange 2000), we have gotten the error several times: Delivery has failed to these recipients or distribution lists: custserv@ourcompany.com Your message wasn't delivered because of security policies. Microsoft Exchange will not try to redeliver this message for you. Please provide the following diagnostic text to your system administrator. Diagnostic information for administrators: Generating server: CORP-LIVE.colo custserv@ourcompany.com #< #5.7.1 smtp;550 5.7.1 SPF unauthorized mail is prohibited.> #SMTP# Original message headers: Received: from CORP-LIVE ([127.0.0.1]) by CORP-LIVE.colo with Microsoft SMTPSVC(6.0.3790.3959); Tue, 16 Feb 2010 11:45:18 -0500 MIME-Version: 1.0 From: <customeremailaddress@example.com> To: "custserv@ourcompany.com" <custserv@ourcompany.com> Date: Tue, 16 Feb 2010 11:45:18 -0500 Subject: Product inquiry Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Return-Path: customeremailaddress@example.com Message-ID: <CORP-LIVExxxxxxxxxxxxxxxxx@CORP-LIVE.colo> X-OriginalArrivalTime: 16 Feb 2010 16:45:18.0584 (UTC) FILETIME=[00000000:00000000] For our purposes, the problem is being caused by the SPF record of example.com, which says v=spf1 a mx -all In general, I don't want Exchange to reject mail when an SPF check fails, if possible just mark it as junk. For this specific situation, I would be happy with one of the following: 1. Tell the Exchange server on OFFICE-EX that CORP-LIVE is a trusted sender 2. Some other way to send the message to get around the SPF problem I hope that makes my problem a little clearer.