Using Local List Spam Filtering

When creating your own local white list and black list for spam filtering, you can filter against domain names, e-mail addresses, and/or IP addresses. Pattern matching works a bit differently depending upon the type of matching in question. For example, pattern matching for domain names uses a longest suffix match algorithm. If the sender e-mail address has a domain name of aaa.bbb.ccc, the device tries to match "aaa.bbb.ccc" in the list. If no match is found, it tries to match "bbb.ccc", and then "ccc". IP address matching, however, does not allow for partial matches.

Spam filtering uses local lists for matching in the following manner:

1. Sender IP: The sender IP is checked against the local white list, then the local black list, and then the SBL IP-based server (if enabled).
2. Sender Domain: The domain name is checked against the local white list and then against the local black list.
3. Sender E-mail Address: The sender e-mail address is checked against the local white list and then against the local black list.

By default, the device first checks incoming e-mail against local white and black lists. If the sender is not found on either list, the device proceeds to query the SBL server over the Internet. When both server-based spam filtering and local list spam filtering are enabled, checks are done in the following order:

1. The local white list is checked. If there is a match, no further checking is done. If there is no match...
2. The local black list is checked. If there is a match, no further checking is done. If there is no match...
3. The SBL server list is checked.

Note: Local black and white list matching continues after the antispam license key is expired.