Emails undeliverable to Yahoo and Outlook - DMARC rejection
-
I have one contact with an Outlook address that has been undeliverable for awhile, which I just attributed to Microsoft being picky. Recently, however, two other contacts with Yahoo addresses have been undeliverable for me as well.
Outlook rejection:
Access denied, sending domain [IANTOMPKINS.COM] does not pass DMARC verification and has a DMARC policy of reject.Yahoo rejection:
This mail has been blocked because it failed authentication checks against the sending domains DMARC policy.According to my Cloudron dashboard everything is good, although IPV6 checks are not green (is that an issue?):
The site mail-tester.com didn't find any issues. However, the site mxtoolbox.com says my DKIM record is not published:
Results from
cloudron-support --troubleshoot:[OK] Root disk usage is OK (41%) [OK] Memory usage 1s OK (55%) [OK] Clock is NTP-synchronized [OK] node version is connect [OK] IPv6 is enabled in kernel. No public IPv6 address [OK] docker is running [OK] docker version is connect [OK] MySQL is running [OK] netplan is good [OK] DNS is resolving via systemd-resolved [OK] is running [OK] IPV4 HTTPS to api. cloudron.io/api/v1/helper/public_ip [SKIP] IPV6 HTTPS api.cloudron.1o/api/v1/helper/public_ip - no public IPv6 [OK] auth.docker.io/token [SKIP] auth.docker.io/token - no public IPv6 address [OK] IPV4 HTTPS acme-vo2.api.letsencrypt.org [SKIP] IPv6 HTTPS to acme-v02.api.letsencrypt.org - no public IPv6 address [OK] nginx is running [OK] dashboard cert is valid [OK] dashboard is reachable via loopback [OK] No pending database migrations [OK] Service mysql' is running and healthy [OK] Service 'postgresal' is running and healthy [WARN] Service 'mongodb' is not running (may be lazy-stopped) [OK] Service 'mail' is running and healthy [OK] Service graphite is running and healthy [OK] Service 'sftp' is running and healthy [OK] box v9.2.0 is running [OK] Dashboard is reachable via IPv4 (https://my.iantompkins.com) [SKIP] Dashboard IPv6 reachability - no public IPv6 address [OK] Domain iantompkins.com is valid and has not expired address ======== Summary ======== PASS: 26 WARN: 1 FAIL: 0 SKIP: 4 Warnings: - Service 'mongodb' is not running (may be lazy-stopped)I'm very much a novice on this and I'm not sure where to look next. What can I do to troubleshoot? I am not using a relay and would prefer not to if possible.
-
Hello @beardmancer
Your DKIM is located here:dig txt cloudron._domainkey.iantompkins.com +short "v=DKIM1; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCwsjYfrPtC3N9FLin73CHC/ntmYzw6LPM/v+iloRCYwzUg667kuglFZ3COBmgUlVH+JvodDbmq3a2aFqCo6NSNo48RmsUmUi9uwAcynkqcbVpTA2WepxIOTzBrzk+RGhATE4LvGHnzNngsIple+87nG043BDUTV41lFGTpjNQQuQIDAQAB"
I would advise setting up IPv6. Many times it has been reported that certain providers deny mail servers that do not have an IPv6.
-
I have one contact with an Outlook address that has been undeliverable for awhile, which I just attributed to Microsoft being picky. Recently, however, two other contacts with Yahoo addresses have been undeliverable for me as well.
Outlook rejection:
Access denied, sending domain [IANTOMPKINS.COM] does not pass DMARC verification and has a DMARC policy of reject.Yahoo rejection:
This mail has been blocked because it failed authentication checks against the sending domains DMARC policy.According to my Cloudron dashboard everything is good, although IPV6 checks are not green (is that an issue?):
The site mail-tester.com didn't find any issues. However, the site mxtoolbox.com says my DKIM record is not published:
Results from
cloudron-support --troubleshoot:[OK] Root disk usage is OK (41%) [OK] Memory usage 1s OK (55%) [OK] Clock is NTP-synchronized [OK] node version is connect [OK] IPv6 is enabled in kernel. No public IPv6 address [OK] docker is running [OK] docker version is connect [OK] MySQL is running [OK] netplan is good [OK] DNS is resolving via systemd-resolved [OK] is running [OK] IPV4 HTTPS to api. cloudron.io/api/v1/helper/public_ip [SKIP] IPV6 HTTPS api.cloudron.1o/api/v1/helper/public_ip - no public IPv6 [OK] auth.docker.io/token [SKIP] auth.docker.io/token - no public IPv6 address [OK] IPV4 HTTPS acme-vo2.api.letsencrypt.org [SKIP] IPv6 HTTPS to acme-v02.api.letsencrypt.org - no public IPv6 address [OK] nginx is running [OK] dashboard cert is valid [OK] dashboard is reachable via loopback [OK] No pending database migrations [OK] Service mysql' is running and healthy [OK] Service 'postgresal' is running and healthy [WARN] Service 'mongodb' is not running (may be lazy-stopped) [OK] Service 'mail' is running and healthy [OK] Service graphite is running and healthy [OK] Service 'sftp' is running and healthy [OK] box v9.2.0 is running [OK] Dashboard is reachable via IPv4 (https://my.iantompkins.com) [SKIP] Dashboard IPv6 reachability - no public IPv6 address [OK] Domain iantompkins.com is valid and has not expired address ======== Summary ======== PASS: 26 WARN: 1 FAIL: 0 SKIP: 4 Warnings: - Service 'mongodb' is not running (may be lazy-stopped)I'm very much a novice on this and I'm not sure where to look next. What can I do to troubleshoot? I am not using a relay and would prefer not to if possible.
PV6 checks are not green (is that an issue?):
Yes, quite possibly.
-
Hello @beardmancer
Your DKIM is located here:dig txt cloudron._domainkey.iantompkins.com +short "v=DKIM1; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCwsjYfrPtC3N9FLin73CHC/ntmYzw6LPM/v+iloRCYwzUg667kuglFZ3COBmgUlVH+JvodDbmq3a2aFqCo6NSNo48RmsUmUi9uwAcynkqcbVpTA2WepxIOTzBrzk+RGhATE4LvGHnzNngsIple+87nG043BDUTV41lFGTpjNQQuQIDAQAB"I would advise setting up IPv6. Many times it has been reported that certain providers deny mail servers that do not have an IPv6.
@james Thanks for showing me how to us mxtoolbox! I see that I needed to us
:cloudroninstead of the default:emailin my search string.Under Cloudron > Network, I tried changing IPv6 from "Disabled" to "Public IP" to match the IPv4 setting. However, it doesn't detect an address (see screenshot) and the IPv6 statuses under Email are now red alerts.
I've raised a ticket with my VPS provider (CloudFanatic) to see what they have to say, but is there anything else I can try in the mean time?
-
@james Thanks for showing me how to us mxtoolbox! I see that I needed to us
:cloudroninstead of the default:emailin my search string.Under Cloudron > Network, I tried changing IPv6 from "Disabled" to "Public IP" to match the IPv4 setting. However, it doesn't detect an address (see screenshot) and the IPv6 statuses under Email are now red alerts.
I've raised a ticket with my VPS provider (CloudFanatic) to see what they have to say, but is there anything else I can try in the mean time?
@james Also, I just used
ip -f inet6 -br addrto check for IPv6 addresses and it providedeth0and another entry starting withbr-that has a longer name. I tried setting the IPv6 Setting to Network Interface > eth0, which does successfully detect the address. However, that leaves an error for the PTR6 record under Email status:
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login