My DMARC DNS record looks like this: (domain name is redacted)
_dmarc.domain.com TXT "v=DMARC1; p=none; sp=none; rua=mailto:dmarc@domain.com; ruf=mailto:dmarc@domain.com; rf=afrf;
pct=100; ri=86400"
Now, I receive aggregate DMARC and forensic DMARC reports from Gmail, Comcast, Yahoo, Emailsrv, etc.
But I'm not receiving any reports from Aol, Hotmail, Msn, Outlook, Live.
Any ideas why? (I'm certain that email IS being sent to addresses on those ESPs, and both SPF and DKIM pass)
Any suggestion to make DNS record format more ESP-inclusive?
Thanks in advance.
Answer
Your DMARC record looks great (assuming the obfuscated "domain.com" isn't hiding a typo, but since it works for some I'd guess not) and I've had issues in the past with particular mail hosts not sending DMARC reports.
But do remember that external mail agents aren't required to send DMARC reports to you. Nothing says they must use DMARC or report on their DMARC evaluations. Only that if they do report, they must use the specified addresses. It'd be nice if they did send reports as that helps you [us] see where mail & spam problems are coming from, and fix them. But that isn't a guarantee.
Looking at my logs I don't see HoTMaiL, MSN, or Live.com reports for a while. But I do see Outlook.com and domains that I know are O365 hosted. Are you still having problems? If so, you may be seeing the result of should and may versus shall and must in the specifications.
No comments:
Post a Comment