Mimecast Anti-Spoofing Header Lockout. How to bypass.

There are 2 ways to bypass anti-spoofing.

Create a New Anti-Spoofing Policy

  • Write a Policy Narrative indicating the intention of the policy

  • Set Take No Action

  • Set Addresses Based On Both

  • Set Applies From

  • Set Applies To

  • Enable Policy Override

  • Input Source IP Ranges

Create a New Anti-Spoofing SPF Based Bypass Policy

  • Write a Policy Narrative indicating the intention of the policy

  • Set Enable Bypass

  • Input SPF record of sender

  • Set Applies from

  • Set Applies to

 

 

We recommend using the most specific bypasses possible and avoiding large bypasses completely.

For example: the most specific bypass would be to create a new anit-spoofing policy scoped using a single email address to another single email address set to take no action and using only 1 /32 IP address.

 

The most general bypass is highly dangerous and is set from everyone to everyone take no action with 0 IPs listed and policy override checked. This would effectively turn off your anti-spoofing for all incoming mail.

 

Anti-spoofing bypasses can be complex and should not be tampered with without a full understanding of how they work. We have seen many instances where anti-spoofing is  fully disabled intentionally or unintentionally in an attempt to allow certain mail through and that creates a major vulnerability. Feel free to reach out to us for help.

Previous
Previous

How to set up Hubspot ticketing with Mimecast.

Next
Next

How to allow or whitelist a URL in Mimecast.