Richard G
Verified User
I have my company on 2 servers. As far as I know these are configured exactly the same.
Now on the primary server my domain name is mycompany.nl and on the second server it's my-company.nl but now every time on the 2nd server SPF and DKIM pass, but there is a failure on DMARC and I can't understand why.
No I regularly get mails from Postmark app to see what is wrong and this is what it says:
So now I'm puzzled. On server1 mycompany.nl is configured exactly the same. In the DMARC reports I do get a SPF and DKIM pass both domains.
However on the main domain everything passes. The difference is that in one the hostname is used and in the other it's not.
This is from the DMARC fail domain:
Indeed, instead of my-hostname.nl the serverdomain.nl is used.
This is from the working mycompany.nl domain on server 1:
So as we can see, not only header, but also domain is mycompany.nl and not server1.serverdomain.nl so not the hostname.
And then it passes.
Fact is, I configured both reseller accounts the same. So why is 1 using the hostname and the other using the domain name (as should be)? What am I missing here?
Now on the primary server my domain name is mycompany.nl and on the second server it's my-company.nl but now every time on the 2nd server SPF and DKIM pass, but there is a failure on DMARC and I can't understand why.
No I regularly get mails from Postmark app to see what is wrong and this is what it says:
server2.nl is authorized to send on behalf of my-company.nl, however it looks like SPF and DKIM are still failing DMARC’s alignment test. DMARC looks at the Return-Path of a message to make sure the domain there matches the domain in your From address. If the Return-Path path doesn’t match your From address, those messages will fail DMARC’s SPF alignment test. Set up a DKIM record and check with this source about setting up custom Return-Path.
So now I'm puzzled. On server1 mycompany.nl is configured exactly the same. In the DMARC reports I do get a SPF and DKIM pass both domains.
However on the main domain everything passes. The difference is that in one the hostname is used and in the other it's not.
This is from the DMARC fail domain:
Code:
<row>
<source_ip>2a01:xxx:xxx:xxx::2</source_ip>
<count>1</count>
<policy_evaluated>
<disposition>quarantine</disposition>
<dkim>fail</dkim>
<spf>fail</spf>
</policy_evaluated>
</row>
<identifiers>
<header_from>my-company.nl</header_from>
</identifiers>
<auth_results>
<dkim>
<domain>server2.serverdomain.nl</domain>
<result>pass</result>
<selector>x</selector>
</dkim>
<spf>
<domain>server2.serverdomain.nl</domain>
<result>pass</result>
</spf>
</auth_results>Indeed, instead of my-hostname.nl the serverdomain.nl is used.
This is from the working mycompany.nl domain on server 1:
Code:
<row>
<source_ip>2a01:xxx:xxx:xxxx::4</source_ip>
<count>2</count>
<policy_evaluated>
<disposition>none</disposition>
<dkim>pass</dkim>
<spf>pass</spf>
</policy_evaluated>
</row>
<identifiers>
<header_from>mycompany.nl</header_from>
</identifiers>
<auth_results>
<dkim>
<domain>mycompany.nl</domain>
<result>pass</result>
<selector>x</selector>
</dkim>
<spf>
<domain>mycompany.nl</domain>
<result>pass</result>
</spf>So as we can see, not only header, but also domain is mycompany.nl and not server1.serverdomain.nl so not the hostname.
And then it passes.
Fact is, I configured both reseller accounts the same. So why is 1 using the hostname and the other using the domain name (as should be)? What am I missing here?