# Configuration for zms_spf module

# "localpolicy" - text for SPF local policy
#localpolicy	include:spf.local-trusted-forwarder.example.com

# "usetrusted" - use default whitelist at trusted-forwarder.org
#usetrusted	yes

# "addspfheader" - create SPF-Received header
#addspfheader	off

# "threshold" - worst SPF result that will allow submission acceptance
#  "fail"     - relaxed: they say "fail" but we still accept
#  "softfail" - default - they don't assume real reject
#  "none"     - stricter - but allow those who don't publish
#  "neutral"  - draconian - those who don't publish SPF won't pass
#  "pass"     - extreme - allow only explicit 'pass', block on errors etc.
#threshold	softfail
threshold	neutral

# "whitelist" - either a full path to file, or whitespace separated list
# of IP ranges.  IP range is "[IP-addr]", "[IP-addr]"-"[IP-addr]", or
# "[IP-addr]/maskbits".  There may be more than one "whitelist" directive,
# and all specified ranges are merged into one list.
whitelist	[127.0.0.1]
whitelist	[123.45.67.89]-[123.45.68.78] [124.5.64.0]/26
whitelist	/usr/src/zms_spf/whitelist