I would really appreciate if somebody could help me with an issue I am facing with my MiaB setup. Basically I use it to receive and send regular email but also to send out marketing campaigns via another server. The problem is that all emails end up in spam as they are sent out from Sendy which in turn is configured to send emails via Amazon SES. I have used an email testing website and the only thing that it says is that my server fails DMARC verification. I have added the Amazon SES DMARC CNAME records to MiaB custom DNS settings but the problem is that the verification process fails. I know this is a bit more on advanced side but I am curious why does the Amazon SES fail to verify the DMARC records despite them being correct? Is there something that keeps it from verifying?
Hi, basically I have not touched any DMARC and I think the only ones there are are those installed by MiaB by default. Where can I find the info you need?
I think the problem lies in the fact that I have a subdomain that has Sendy installed on it and I have authenticated it with Amazon SES to send emais on behalf of it but there I have verified only the root domain. I know this is a bit complicated, but I’m sure somebody understands it.
You said you had linked to Amazon’s DMARC by setting a CNAME in your DNS? What’s the name of the domain you set that up for? And what’s the host name for the CNAME record?
You should try to see whether your zao4glpeguktqoefv2w2c3lotyhe5tay._domainkey.example.com settings are visible to the entire internet. You can do that by running this on your mail-in-a-box server:
I am not quite sure how the command handles a CNAME that it has to follow to get to the TXT record so I put both options up in my example.
This will query Google’s public DNS server for its opinion on your domain. If it doesn’t see the CNAME or the resulting TXT record, it means something in your DNS setup is wrong and that is why the validation is failing.
One more thing: Are your mails going to be sent from @example.com or @marketing.example.com?
just4t, I tried that, but the problem is that it then becomes zao4glpeguktqoefv2w2c3lotyhe5tay._domainkey.example.com.example.com
Would that count as a correctly set up DNS entries? I doubt that.
hachre, many thanks for your advice - I will try what you have mentioned. I use Sendy which is installed on marketing.example.com and configured to run with Amazon SES. I would like to send emails from example.com though as this is where my MiaB is installed and I use it as a primary email server.
And you know the funny thing is that these are all default settings and nothing has been changed. Furthermore, the domain itself verifies without any problem within a few minutes but that is TXT record and only for the domain verification. When I try to add either CNAME or TXT records for DKIM then it says on Amazon SES “Pending verification” and within few days an email comes to my mailbox saying that the verification failed.
I would like to continue to use MiaB as it is very straightforward but I just can’t figure this one out.
Thanks, tried that without results. It gives me “QUERY STATUS: Unable to extract public key data from DNS TXT record.” But DNS records are there both in CNAME and TXT formats.
I ran both commands and it seems that there are no errors and it can fetch the records. BUT I still can’t pass the verification:
Your message failed the DMARC verification
A DMARC policy allows a sender to indicate that their emails are protected by SPF and/or DKIM, and give instruction if neither of those authentication methods passes. Please be sure you have a DKIM and SPF set before using DMARC.
You are not allowed to send a message with this address
DMARC DNS entry found for the domain _dmarc.example.com:
as long as you do not want to reveal your domain names it will be hard to help you with that and everything will be just a suggestion what you can do or check.