David F. Skoll wrote:
Google must be using some secret algorithm to decide whether or not to
be strict.
https://support.google.com/mail/answer/81126?p=ipv6_authentication_error&rd=1#authentication
(September 2013)
- Sign messages with DKIM. We do not authenticate messages signed
with keys using fewer than 1024 bits.
Additional guidelines for IPv6
- The sending IP must have a PTR record (i.e., a reverse DNS of the
sending IP) and it should match the IP obtained via the forward
DNS resolution of the hostname specified in the PTR record.
Otherwise, mail will be marked as spam or possibly rejected.
- The sending domain should pass either SPF check or DKIM check.
Otherwise, mail might be marked as spam.
2014-07-25 20:05 Robert Schetterer wrote:
its simply a bug, but they dont care, spam tagging was reported
with all settings good ipv6 SPF/DKIM/DMARC/PTR
however it might fixed recent or will fixed some day, i never retested
it ,now using ipv4 transport only ,for them
Our mail to google over IPv6 is still being accepted
(have it all: SPF/DKIM/DMARC/PTR).
Consider enabling DMARC daily reports, google and some other
big players are sending them, can be insightful.
Here is our DNS record:
$ host -t txt _dmarc.ijs.si
_dmarc.ijs.si "v=DMARC1\; p=none\;
rua=mailto:mailauth-repo...@ijs.si";
Mark
