Sender Analysis
Use the Inbound Settings > Sender Policies page to exempt, quarantine, or block messages based on username, domain, or email address. The Barracuda Email Security Service applies header scanning to both the Header and the Envelope From fields. In the Header field, only the email address portion is checked. Note that wildcards, for example, asterisk (*) or the @ sign are not supported. For example: *@customer.com is recognized as customer.com
Sender policies allow you to exempt, quarantine, or block messages as follows:
- User – Only the username part of the sender's email address is checked. For example, adding a policy for a username of info means that the policy you select is applied to all inbound messages from senders with an email address of info@sendingdomain.com
- Domain – Only the domain part of the email address is checked.
- Email address – The entire email address is checked.
Policies
- Quarantine – Messages from the entered sender are always quarantined.
Block – Blocking a domain automatically blocks all subdomains. Note that blocking email addresses is not recommended as spammers rarely, if ever, use the same sender email address more than once.
Exempt – When you add a domain, subdomain, or email sender and select Exempt, the Barracuda Email Security Service always accepts, or allows those messages. Messages from allowed senders bypass spam scoring, Intent Analysis, and content filters, however, virus scanning and rate control are still applied. To bypass Sender Policy Framework (SPF) checking, add the Envelope From IP to exempt the sender. Barracuda Networks also recommends adding the sender IP to the SPF Exemptions list on the Inbound Settings > Sender Authentication page.
Recipient Analysis
Use the Inbound Settings > Recipient Policies page to specify whether to always Scan or always Exempt (allowed) a recipient email address. Exempt (allowed) recipients bypass spam scoring (see Enable Cloudscan on the Inbound Settings > Anti-Spam/Anti-Virus page) as well as all other block lists. Virus scanning still applies.