4
12 Comments

Trying to fix DMARC for my newsletter deliverabilty. But not sure if it is fixed...?

Hello everyone,

Let me explain.

I have been trying to setup DMARC and so on so I can get a better deliverabilty with my own domain [email protected] .

I setup everything with Porkbun and Netlify. I also fixed the Gmail stuff and so on.

tuf

I check my DMARC status and it was all good, then I sent a test email from emailoctopus and it ended up on the promotions tab.

And it popped the yellow msg.
tuf

But according to a mx toolbox was fine.
tuf

Is it because it needs to propagate or something still?

Any place where I learn properly about it?

Thanks a lot!

  1. 3

    So you've got DMARC set up, but you need DKIM and SPF set-up for the email you're sending to pass. So in EmailOctopus verify your domain here: https://emailoctopus.com/account/senders/verify-domain

    That'll set up DKIM and SPF, then once they're passing DKIM should pass too.

    1. 1

      Oh, wow. That's what I call customer service :-).

      I did input all the cname's and spf that I got fro EO then I have this DMARC

      Does this suits ?

      Thank you so much Thomas.

      Edit: Everything is fixed now.

      Thomas, that was really nice you popping out and helping. Really helpful.

      Appreciate it a lot.

      1. 1

        Just checked and yep, can confirm everything is passing!

        1. 1

          Thanks to you Thomas
          Really appreciate that.

  2. 1

    @Michael_Andreuzza when you say you fixed all the Gmail stuff, how do you mean? In Netlify or in Google Domains?

    I ran into issues with DMARC/DKIM/SPF (you should have all 3) with a Google domain using Gmail as the Mail provider and Netlify as the DNS host initially. I had to make sure I migrated all DNS to Netlify, but using Gmail DMARC/DKIM/SPF record values. I didn’t see this spelled out anywhere specifically, though.

    1. 1

      Oh...well.

      What I meant about Gmail is that added it so I can send emails from gmail with my email.

      Yeah, Netlify is hosting my site, so I yave al DNS stuff there.

      So you mean,I have to use gmail record values, and change them from those I have now?

      Thank you for replying Mike.

      1. 1

        For fractionconsulting.co, I went into Google Domains and created DMARC, DKIM, and SPF records and then went to Netlify DNS to create those same records and copy/paste the record values:
        Fraction DNS

        One thing that is technically allowed, but less than ideal and might be throwing your emails into spam is that you don't have a DKIM record for unicornsfeed.com
        MXToolBox

        DMARC and SPF without DKIM isn't ideal, as DKIM is one authentication method for DMARC.

        Since Gmail is your mail sending domain, you'll need to add a new TXT record for SPF that looks something like this:

        google._domainkey.unicornsfeed.com
        

        I just made the record first in Google Domains, and then copy/pasted the value into Netlify DNS.

        1. 1

          Hey Mike, sorry for late replay. Work...

          I just saw that I got the wrong DMARC1 from Porkbun wrong I woud say because they gave me this:

          Record Type: TXT
          Host: _dmarc.unicornsfeed.com
          Answer: v=DMARC1; p= quarantine; rua=mailto:[email protected]; ruf=mailto:[email protected]; fo=1
          TTL: 300

          For the DKIM record, you will want to input the following:
          Record Type: TXT
          Host: default._domainkey.unicornsfeed.com
          Answer: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC36Um5c4XVXTUINDRFZH/13pCDNfNNjDT+P87WBzkooyf5Ez6QcuVkX/Qsoi6YTWqAm/Gfb4alsmV1vKJqgEdKXes7chNF8UBY6Sz8vZFHQ593E1Gc2HNmHGY7jFV9BrTvbuqsYojlGfClvHi5o1idDf+JBTf8TgV4AC4IGBXRBwIDAQAB
          TTL: 300

          but for example this:

          rua=mailto:[email protected]; ruf=mailto:[email protected];

          should have been with my domain right?

          rua=mailto:[email protected]; ruf=mailto:[email protected];

          If I am not wrong.

          I am sending the email from emailoctopus though...not from google

          1. 1

            I think part of your issue is that you're using EmailOctopus to send the email campaigns, but Porkbun for email hosting:

            dig MX unicornsfeed.com +short
            1 fwd2.porkbun.com.
            1 fwd1.porkbun.com.
            

            You're using Porkbun to send via Gmail so you'll need to make sure there is a DKIM record for Porkbun and that Porkbun has an MX record set up for the Google MX server:

            apmx.l.google.com 
            

            as per this article:
            https://kb.porkbun.com/article/44-how-to-configure-your-domain-for-g-suite-email

            That article doesn't mention DKIM (it should), but the record you created looks good, just be really cautious of spaces and line breaks when you copy/paste.

            For SPF, you'll need a TXT record in Porkbun as well the Gmail value of:

            v=spf1 include:_spf.google.com ~all
            

            For the DMARC record on the "rua=" and "ruf=" parts, yes you want your own domain's email address.

            1. 1

              Hey mike,

              I got setup already.

              I am hosting on Netlify and sending from Email Octopus actually..which is the records that i needed.

              Now is all green.

              1. 1

                πŸ˜… Sorry I see I’m late to the party, but glad you got it sorted.

                1. 1

                  no don't be sorry. You helped me.I am super thankful for that.

Trending on Indie Hackers
How I grew a side project to 100k Unique Visitors in 7 days with 0 audience 49 comments Competing with Product Hunt: a month later 33 comments Why do you hate marketing? 28 comments My Top 20 Free Tools That I Use Everyday as an Indie Hacker 14 comments $15k revenues in <4 months as a solopreneur 14 comments Use Your Product 13 comments