Yes, you can disregard those. Most customers of security gateways exempt
the gateway IPs from further checking on the final mailbox.
I don't think any of those gateways use ARC yet, but if they did, that
would also help (in case they didn't whitelist their gateway IPs).
Here's a good explainer (using intermediary forwarding instead, but same
concept):
https://knowledge.ondmarc.redsift.com/en/articles/7233525-how-to-identify-forwarders-from-the-dmarc-reports
On 8/23/24 10:34 PM, Alex Shakhov via mailop wrote:
Hello - We are currently managing several domains that are experiencing
spoofing attacks, which led us to implement a p=reject policy. We
monitor these domains through Uriports, and while all DKIM/SPF
validations pass, exceptions arise with emails routed through security
providers such as Cloudflare, Proofpoint, Mimecast, Inky, and others.
Is the "reject" disposition simply noise that can be disregarded, with
100% of these emails still being delivered due to the application of the
ARC policy? Or do these emails fail to reach their final destination?
Any guidance on this would be greatly appreciated!
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
