Local delivery fail on SPF, DMARC and RDNS

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
Labsy
Outstanding Member
Outstanding Member
Posts: 411
Joined: Sat Sep 13, 2014 12:52 am

Local delivery fail on SPF, DMARC and RDNS

Post by Labsy »

Hi,

I thought I solved the problem of local-to-local delivery, when mails were tagged SPAM due to amavis failures...but here we go again.
Most of local-to-local mails fail within the following categories:
DMARC_FAIL_REJECT
RDNS_NONE
SPF_FAIL

For example, this domain has SPF 100% correct, but still gets SPF_FAIL score!
And mail was sent from userA to userB within same domain on same Zimbra server:

Code: Select all

amavis[28806]: (28806-08) spam_scan: score=43.451 autolearn=no autolearn_force=no tests=[BAYES_00=-1.9,DMARC_FAIL_REJECT=9,HEADER_FROM_DIFFERENT_DOMAINS=0.25,HTML_MESSAGE=0.001,HTML_MIME_NO_HTML_TAG=0.377,MIME_HTML_ONLY=0.723,RDNS_NONE=5,SPF_FAIL=30] recips=0
Where did I miss the point?
Might it be the main problem, that ZCS server is behind NAT and most of local domains do not resolve locally to LAN IP, but rather to public IP?
Should I install Zimbra's DNS cache?
User avatar
ccelis5215
Outstanding Member
Outstanding Member
Posts: 632
Joined: Sat Sep 13, 2014 2:04 am
Location: Caracas - Venezuela
ZCS/ZD Version: 8.8.15.GA.3869.UBUNTU18.64 P12

Re: Local delivery fail on SPF, DMARC and RDNS

Post by ccelis5215 »

Hi Labsy,

No, you don't need zimbra dnsmasq, obviously you have to resolve local DNS.

ccelis
Post Reply