What should I set for my DMARC policies?

Hi. I’m beta testing the new email routing feature and I was completely confused by a notice that I needed to set up DMARC policies. There was no advice as to what I should set these to, or any explanation of what the settings mean. I searched on Google (and in these forums) and I was equally confused by the information I found. Is there any help available in plain English? I just went with the defaults which are: “v=DMARC1; p=none; rua=mailto:[email address]” Will this be a problem?

That would be fine, as p=none means that message shouldn’t be quarantined or dropped.

1 Like

What would it mean if it was quarantined or dropped? I don’t understand any of this. Mostly email seems to be going through, so I suppose it doesn’t matter, but then today I received this completely incomprehensible report. I’ve anonymized it and pasted it below. Does anyone know what this means?

<?xml version="1.0" encoding="UTF-8" ?>
<feedback>
  <report_metadata>
    <org_name>google.com</org_name>
    <email>[email protected]</email>
    <extra_contact_info>https://support.google.com/a/answer/2466580</extra_contact_info>
    <report_id>1303106****93309776</report_id>
    <date_range>
      <begin>1643***2800</begin>
      <end>1644***199</end>
    </date_range>
  </report_metadata>
  <policy_published>
    <domain>***.com</domain>
    <adkim>r</adkim>
    <aspf>r</aspf>
    <p>none</p>
    <sp>none</sp>
    <pct>100</pct>
  </policy_published>
  <record>
    <row>
      <source_ip>xx.xx.xx.xxx</source_ip>
      <count>1</count>
      <policy_evaluated>
        <disposition>none</disposition>
        <dkim>fail</dkim>
        <spf>fail</spf>
      </policy_evaluated>
    </row>
    <identifiers>
      <header_from>***com</header_from>
    </identifiers>
    <auth_results>
      <spf>
        <domain>***.com</domain>
        <result>softfail</result>
      </spf>
    </auth_results>
  </record>
</feedback>

If I understand this correctly, emails sent via Cloudflare from Gmail that are using my own domain are to going through because of the SPF settings? This wasn’t happening before I started using Cloudflare for mail routing, so I’m very concerned…

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.