• Status: Solved
  • Priority: Low
  • Security: Public
  • Views: 58
  • Last Modified:

DMARC reports

I just setup DMARC reports on my domain.
Now I am getting reports. One for example says the following:

This is a spf/dkim authentication-failure report for an email message received from IP 39.167.130.135 on Fri, 15 Dec 2017 01:02:42 +0800.
Below is some detail information about this message:
 1. SPF-authenticated Identifiers: none;  2. DKIM-authenticated Identifiers: none;  3. DMARC Mechanism Check Result: Identifier non-aligned, DMARC mechanism check failures;

Emails are being randomly generated with addresses that do not exist like "434321@mydomain.com".

What do I do now? I obviously do not want these to be sent. They should be stopped I their tracks.

Here is my DMARC record:

v=DMARC1; p=none; rua=mailto:dmarc@mydomain.com; ruf=mailto:dmarc@mydomain.com; sp=none; ri=86400

Do I need to do anything?????
Newbie at this.
Thanks!
0
SOTA
Asked:
SOTA
  • 4
  • 2
1 Solution
 
Olgierd UngehojerSenior Network AdministratorCommented:
Check your settings by https://mxtoolbox.com/NetworkTools.aspx and if tests failed it is mean that you have something wrong with DNS configuration.
0
 
SOTAAuthor Commented:
Thanks!
0
 
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
This is a report that 434321@mydomain.com is invalid.

Since you've set p=none on your DMARC record, add you get is a report + the message goes through.

Set p=reject to have forged email dropped every where.

Or maybe refer to https://en.wikipedia.org/wiki/DMARC for various DMARC policies, which are less restrictive.

You may also adjust your DKIM settings, if you prefer boosting restrictiveness via DKIM.

In general, SPF + DKIM + DMARC, tends to be complex. If you have infinite free time, handle this yourself.

If you have other things to do, besides mess with constant delivery problems, use a relay service like MailGun.

If you simply must run in house mail, you can cheat by running different domains through the Dmarcian Tools, like Gmail + Mailgun to see how they adjust all their settings.
0
Cloud Class® Course: Microsoft Windows 7 Basic

This introductory course to Windows 7 environment will teach you about working with the Windows operating system. You will learn about basic functions including start menu; the desktop; managing files, folders, and libraries.

 
SOTAAuthor Commented:
Thanks for this! The thing is not all DMARC reports are showing spoofed emails. My concern is if I set p=reject, then I might inadvertently reject legitimate emails.
0
 
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
This will only occur if your SPF records are incorrect.

If you set p=reject, be sure to extend SPF records anytime you add a new server which will originate email for your domain.
0
 
SOTAAuthor Commented:
Great help!!
0
 
SOTAAuthor Commented:
Great point...thanks!!!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Windows 7 Basic

This introductory course to Windows 7 environment will teach you about working with the Windows operating system. You will learn about basic functions including start menu; the desktop; managing files, folders, and libraries.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now