- Newest
- Most votes
- Most comments
Dmarc records are used to confirm the MAIL FROM header. SPF is for the envelope.
So your dmarc record needs to confirm the FROM. So if you use subdomains in the from that’s where your dmarc records need to exist.
I have the same question, if i alreasy setup the custom mail from should i create 2 dmarc record? one for example.com and another for the custom mail.example.com?
NO, use sp= in the DMARC record of the main domain (domain.com) Example: use one of these in reference to your policy sp=reject, sp=quarantine, sp=none
I hope I have been of help to you
This blog goes into more detail https://aws.amazon.com/blogs/messaging-and-targeting/email-authenctication-dmarc-policy/
If you create a DMARC record for the parent domain, you can use sp= to define a DMARC record for subdomains. If you get the 'MAIL FROM record is not aligned' error in VDM it's because you have strict alignment settings for SPF and DKIM; adkim=s and aspf=s, so change these to relaxed; adkim=r and aspf=r.
Relevant content
- asked 9 months ago
- asked 8 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 months ago
I have the same problem can you explain better with an example?