dmarc
-
I am scratching my head on this one. I have added a dmarc record for a domain, but the query does not display the p value. I am at a loss for why.
the zone file
_dmarc.decca-design.com. IN TXT v=DMARC1; p=none; rua=mailto:[email protected];
and the query
dig _dmarc.decca-design.com TXT
; *<<>> DiG 9.16.44-Debian <<>> _dmarc.decca-design.com TXT
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 586
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;_dmarc.decca-design.com. IN TXT;; ANSWER SECTION:
_dmarc.decca-design.com. 600 IN TXT "v=DMARC1";; Query time: 55 msec
;; SERVER: 75.153.171.67#53(75.153.171.67)
;; WHEN: Mon Feb 19 20:51:00 MST 2024
;; MSG SIZE rcvd: 73*any idea why no "p" value ?
thank you
I have figured it out , need the double quotation marks around the values, sigh
ie. "v=DMARC1 p=none" -
@pattonb p=none means to monitor for any messages, but take no action.
The “none” policy, also known as “monitor” tells the provider to take no action. The “quarantine” policy sends any unauthorized emails into a separate folder, similar to a spam folder. The “reject” policy tells the provider to block any unauthorized emails so that they cannot reach recipients
You can check your dmarc record's configuration with a tool like mxtoolbox.com to see if it comes back with the same results.
This may just be an issue with how
dig
is being used. -
@pattonb as said, it is a TXT field. did you enclose it ( "value" )
-
@XYjacobsson That must be AWS Route 53, that's one of the few that requires that.