# SPF Milter sample configuration file

#
# Socket
#

# Milter listening socket (mandatory).
socket = inet:localhost:3000
#socket = inet:[::1]:3000
#socket = unix:/run/spf-milter.sock

#
# Host and network
#

#hostname = mail.example.org

#trusted_networks = loopback
#trusted_networks = 127.0.0.0/8, ::1/128
#trusted_networks = loopback, 132.4.5.67/25, 2001:1600:4:5::6dde
#trusted_networks =

#
# SPF verification
#

# Whether to verify the HELO identity.
#verify_helo = yes
#verify_helo = no

# Which results to reject.
#reject_results = fail, temperror, permerror
#reject_results =

# Which results to reject for the HELO identity.
#reject_helo_results = fail, temperror, permerror

# Which HELO verification results to treat as definitive.
#definitive_helo_results =
#definitive_helo_results = fail, softfail, temperror, permerror

# Whether to trust authenticated senders.
#trust_authenticated_senders = yes

# For which senders verification is not done.
#skip_senders = example.com, .example.com
#skip_senders_file = /etc/spf-milter-skip-senders.conf

# Maximum number of void lookups in an SPF query.
#max_void_lookups = 2

# Timeout duration for an SPF query.
#timeout_secs = 20

#
# SMTP replies
#

# Reply for a "fail" result, with either local or external explanation.
#fail_reply_code = 550
#fail_status_code = 5.7.23
#fail_reply_text = SPF validation failed
#fail_reply_text = SPF validation failed for %{s} connecting from %{c}
#fail_reply_text_exp = SPF validation failed: %{o} explains: %{exp}

# Replies for other results (all replies with macro-string reply text).
#softfail_reply_code = 550
#softfail_status_code = 5.7.23
#softfail_reply_text = SPF validation failed
#softfail_reply_text = SPF validation failed (ip=%{c} domain=%{o} helo=%{h} ptr=%{p})
#temperror_reply_code = 451
#temperror_status_code = 4.7.24
#temperror_reply_text = SPF validation error: %{reason}
#permerror_reply_code = 550
#permerror_status_code = 5.7.24
#permerror_reply_text = SPF validation error: %{reason}

#
# Header handling
#

# Header(s) to add to accepted messages.
#header = Received-SPF
#header = Authentication-Results
#header = Received-SPF, Authentication-Results

#authserv_id = mail.example.org

#include_all_results = no
#include_mailfrom_local_part = no

#delete_incoming_authentication_results = no

#
# Logging
#

#log_destination = syslog

#log_level = info
#log_level = debug

#syslog_facility = mail