Securing Email with Cisco Email Security Appliance (SESA) — Question 118

An engineer is tasked with reviewing mail logs to confirm that messages sent from domain abc.com are passing SPF verification and being accepted by the Cisco ESA. The engineer notices that SPF verification is not being performed and that SPF is not being referenced in the logs for messages sent from domain abc.com.

Why is the verification not working properly?

Answer options

• A. SPF verification is disabled in the Recipient Access Table.
• B. SPF verification is disabled on the Mail Flow Policy.
• C. The SPF conformance level is set to SIDF compatible on the Mail Flow Policy.
• D. An SPF verification Content Filter has not been created.

Correct answer: B

Explanation

The correct answer is B because if SPF verification is disabled on the Mail Flow Policy, then the system will not perform any SPF checks on incoming emails. Option A is incorrect as it pertains to the Recipient Access Table, not the Mail Flow Policy, while option C discusses a specific setting that does not disable SPF checks entirely. Option D is also incorrect since the absence of a Content Filter does not prevent SPF verification from being performed if the Mail Flow Policy allows it.