In article <mn2pr11mb435146f06ec3d2aaac6f8f38f7...@mn2pr11mb4351.namprd11.prod.outlook.com> you write: >I'm seeing a report where the XML contains two SPF records within a single >auth_results entity. This doesn't seem correct.
It's specifically allowed in the XML schema. In this case I'd guess it is checking the From header domain, the org domain, and the bounce address. I see that bounce.email.peacocktv.com is a CNAME for sparkpostmail.com so it's plausible. Checking all those things seems useless but that doesn't mean it's forbidden. R's, John > <auth_results> > <dkim> > <domain>email.peacocktv.com</domain> > <result>pass</result> > </dkim> > <spf> > <domain>bounce.email.peacocktv.com</domain> > <result>pass</result> > </spf> > <spf> > <domain>mta-218-134.sparkpostmail.com.</domain> > <result>none</result> > </spf> > </auth_results> _______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
