Just like whitelist_from, multiple addresses per line, separated by spaces, are OK. Multiple "whitelist_from_spf" lines are also OK.
The headers checked for whitelist_from_spf addresses are the same headers used for SPF checks (Envelope-From, Return-Path, X-Envelope-From, etc).
Since this whitelist requires an SPF check to be made network tests must be enabled. It is also required that your trust path be correctly configured. See the section on "trusted_networks" for more info on trust paths.
whitelist_from_spf email@example.com firstname.lastname@example.org whitelist_from_spf *@example.com
Use this option to stop the plugin from using Mail::SPF and cause it to try to use Mail::SPF::Query instead.
Set this option to 1 to ignore any "Received-SPF" headers present and to have the plugin perform the SPF check itself.
Note that unless the plugin finds an "identity=helo", or some unsupported identity, it will assume that the result is a mfrom SPF check result. The only identities supported are "mfrom", "mailfrom" and "helo".
Use this option to start with the newest (top most) "Received-SPF" headers, working downwards until results are successfully parsed.