Hi,
Sure ;-)
What you can do is
1. Actions for Sender Authentication - Deliver message normally
2. Content rules - Add content rules for soft- and hardfails incl exeptions
Eg exception for a certain IP (xxx.xxx.xxx.xxx representing one server ip)
If text in Message header "Authentication-Results" matches exactly "symauth.service.identifier; spf=softfail"
AND If text in Message header "Received" does not match regular expression ".+xxx\.xxx\.xxx\.xxx.+"
and add a action like mark, prepend subject, delete, etc
Hope it helps
Regards
Thomas