Help us enhance your Sophos Community experience. Share your thoughts in our Sophos Community survey.

Sophos Email customers using IP-based mailflow rule connectors must migrate to certificate-based configuration by March 31st. To see if you're affected Click Here.

Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 17 replies
  • Answers 1 answer
  • Subscribers 19 subscribers
  • Views 11037 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Quarantined Messages / Authentication failure / DMARC

Tino Korth | DrehPunkt GmbH

Hello Sophos Email friends,

I'm struggling with the quarantine because there are lots of emails quarantined by "Authentication failure / DMARC".

As an example I have an email that is OK and that looks pretty good, but it's quarantined by DMARC.

The sending server is OK: https://mxtoolbox.com/SuperTool.aspx?action=mx%3akaffee-partner.de&run=toolpage 

SPF is OK: https://mxtoolbox.com/SuperTool.aspx?action=spf%3akaffee-partner.de&run=toolpage

DMARC is set, but no policy is activated, so it should be OK: https://mxtoolbox.com/SuperTool.aspx?action=dmarc%3akaffee-partner.de&run=toolpage 

The mail header shows

Authentication-Results: mx-01-eu-central-1.prod.hydra.sophos.com; spf=none smtp.helo=mail2.kaffee-partner.de; dkim=none; dmarc=fail (recordpolicy=none) header.from=kaffee-partner.de

How can I get more informations why the mail was quarantined by DMARC policy?

Best regards

Tino



This thread was automatically locked due to age.
Parents
  • 0

    Hello Community,

    This is now being investigated under XGE-29280.

    Update: 2023/07/14
    To close the loop on this thread, the investigation has gone cold due to a lack of information/ability to replicate the issue. If you are a customer who is experiencing this issue and are able to replicate it reliably, please open a support case with our team and reference the development ticket "XGE-29280". 

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Reply
  • 0

    Hello Community,

    This is now being investigated under XGE-29280.

    Update: 2023/07/14
    To close the loop on this thread, the investigation has gone cold due to a lack of information/ability to replicate the issue. If you are a customer who is experiencing this issue and are able to replicate it reliably, please open a support case with our team and reference the development ticket "XGE-29280". 

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Children
Unfiltered HTML