Hi all. I was directed to this forum by Symantec support after opening a ticket with them. After researching it, we turned on SPF on our Brightmail 10.6, and we were surprised by how many local government entities have gone to Office 365 and have misconfigured SPF. The most common scenario we're seeing is that they go to Office 365, and the outlook.com servers are added to their SPF records, but some emails are still being sent by their local servers, which are omitted from their SPF records. As a result, I contacted Symantec and asked how to add them to an SPF whitelist, where they can bypass SPF checks for known good senders. That feature does not exist, though the opposite one does: you can specify a blacklist of domains that require SPF checks. The rep was sympathetic and recommended that I request this feature here.
Has anyone else been running into this?
TIA,
Brian