So Google D omains closed and I transferred my domain to Porkbun (could not to Cloudflare, I got a .ca amond others). I did not had a GWorkspace on the said domain.
I used to transfer all of my emails from one of my side work (an office365 account - let’s say from
[email protected]) up to
[email protected] which was then all catched up to a personnal Gmail account so as to centralized all my emails in one inbox.
I didn’t used Email routing before (Google D omains did it instead), so I activated it on Cloudflare and I set up a S PF and DMARK policy so as to be able to send email from my gmail account as well as my work account.
I then added these rules to my DNS :
"v=spf1 include:spf.protection.outlook.com include:_spf.google.com include:_spf.mx.cloudflare.net ~all"
"v=DMARC1; p=none; rua=mailto:[email protected]"
Like that I was able to send email from my domains through my gmail account as well as receive any incoming email on the domain.
However, it seems Cloudflare refuse many emails from my work address (but not all of them).
For specific senders (like some using Office365 or some like Doodle notifications) I get a rebound message in my work inbox stating that message :
Created Date: 11/3/2023 2:53:20 PM Sender Address: [email protected] Recipient Address: [email protected] Subject: (the subject of the email) Error Details Error: 550 5.7.23 The message was rejected because of Sender Policy Framework violation -> 550 5.7.1 DMARC checks failed. cz7TXBpogGQQ Message rejected by: mx.cloudflare.net
But most of the emails sent pass through ! … And all S PF references in the rejected message header all says that S PF is passing …
I have no idea why Cloudflare is rejecting those email and specifically those … but it is troublesome as some of these are quite important
Where should I start troubleshooting ? It Seems S PF is not working from my sender … bu one of them is Teams, or Microsoft helpers themselves … I assume they have the right S PF
Any idea please ?