Yes, "this is a feature". We don't want our employees exchanging emails with people outside of our infrastructure.
From: Egypt Pilot <[email protected]<mailto:[email protected]>> Date: Monday, March 18, 2013 4:57 AM To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Subject: [dmarc-discuss] How to avoid messages rejection because of DMARC when sent through Gmail alias? Many people add ' another email address as alias '<http://support.google.com/mail/answer/22370?hl=en&ctx=mail&authuser=1> for their Gmail accounts - talking here about public Gmail not Google Apps - and they may use Gmail server not their domain servers as SMTP with the ' Treat as an 'alias' setting '<http://support.google.com/mail/answer/1710338?ctx=gmail&hl=en&authuser=1>. While DMARC not causing any problems with "none", It causes messages be rejected by servers like Hotmail, Yahoo and others when sent by Gmail using "another address" because of DMARC p="reject" or p="quarantine". Here's an example for rejected message: Rejected By Yahoo ========================= Delivery to the following recipient failed permanently: [email protected]<mailto:[email protected]> Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipient domain ymail.com<http://ymail.com/> by mta6.am0.yahoodns.net<http://mta6.am0.yahoodns.net/>. [98.136.216.26]. The error that the other server returned was: 554 5.7.9 Message not accepted for policy reasons. See http://postmaster.yahoo.com/errors/postmaster-28.html Rejected By Hotmail ========================= Delivery to the following recipient failed permanently: [email protected]<mailto:[email protected]> Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipient domain msn.com<http://msn.com/> by mx3.hotmail.com<http://mx3.hotmail.com/>. [65.55.37.72]. The error that the other server returned was: 550 5.7.0 (COL0-MC1-F8) Unfortunately, messages from (209.85.216.195) on behalf of (any-domain-com) could not be delivered due to domain owner policy restrictions. Although the efficiency of DMARC record we still can't do any workaround except asking receivers to whitelist these servers as “known forwarders” which is not a solution! Anyone knows another way to keep using such a feature at Gmail with DMARC reject and quarantine policies? The SPF for the domain is set to don't allow all others: ============================================= Domain SPF v=spf1 mx include:somehost.net<http://somehost.net/> -all (same when used ~all or even inclode:_spf.google.com<http://spf.google.com/>) somehost.net<http://somehost.net/> SPF ip4:1.2.3.4 ip4:5.6.7.8 -all The DKIM & SPF for both domain and host used to receive pass result and messages used to reach Yahoo and Hotmail until the "reject" policy set for DMARC of the domain. When I change "treat as an alias" in Gmail to "Use Domain SMTP servers" it sends normally for sure. Same thing happening with Yahoo custom From account ... other providers bounce back messages.
_______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
