Many people add
‘ another email address as alias ‘ for their Gmail accounts – talking here about public Gmail not Google Apps – and they may use Gmail server not their domain servers as SMTP with the ‘ Treat as an ‘alias’ setting ‘. While DMARC not causing any problems with “none”, It causes messages be rejected by servers like Hotmail, Yahoo and others when sent by Gmail using “another address” because of DMARC p=”reject” or p=”quarantine”.
Here’s an example for rejected message:
Rejected By Yahoo,
Delivery to the following recipient failed permanently: [email protected] Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipient domain ymail.com by mta6.am0.yahoodns.net. [18.104.22.168]. The error that the other server returned was: 554 5.7.9 Message not accepted for policy reasons. See http://postmaster.yahoo.com/errors/postmaster-28.html
Rejected By Hotmail
Delivery to the following recipient failed permanently: [email protected] Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipient domain msn.com by mx3.hotmail.com. [22.214.171.124]. The error that the other server returned was: 550 5.7.0 (COL0-MC1-F8) Unfortunately, messages from (126.96.36.199) on behalf of (any-domain-com) could not be delivered due to domain owner policy restrictions.
Although the efficiency of DMARC record we still can’t do any workaround except asking receivers to whitelist these servers as “known forwarders” which is not a solution!
Anyone knows another way to keep using such a feature at Gmail with DMARC reject and quarantine policies?
The SPF for the domain is set to don’t allow all others:
v=spf1 mx include:somehost.net -all (same when used ~all or even inclode:_spf.google.com)
ip4:188.8.131.52 ip4:184.108.40.206 -all
The DKIM & SPF for both domain and host used to receive pass result and messages used to reach Yahoo and Hotmail until the “reject” policy set for DMARC of the domain.
When I change “treat as an alias” in Gmail to “Use Domain SMTP servers” it sends normally for sure.
Same thing happening with Yahoo custom From account … other providers bounce back messages.
I opened a discussion at the dmarc-discuss and the replied “noway (it’s a feature of dmarc)” ….
look here medusa.blackops.org/pipermail/dmarc-discuss/2013-March/001684.html and here medusa.blackops.org/pipermail/dmarc-discuss/2013-March/001692.html … very bad 🙁 .. I will not use then
You need to include Google’s SPF record in your own domain’s SPF record, to indicate that Google’s mail servers are valid senders for your domain.
v=spf1 a mx include=_spf.google.com -all
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.