Shouild I update again my DMARC?

[cjptomas80]

my site domain host on server x12 (198.91.81.12) so my DMARC setup to failed on sending any email outside of that.
then someone from (198.91.80.251) x10hosting list of server at 2025-05-06 20:00 GMT+8 used my domain as sender but of course it failed to send.
Should I ignore it or need to change my DMARC setup to whitelist that ip address (198.91.80.251)?

 

[mrburnsx]

DMARC is not the problem, SPF and DKIM are. According to that report both SPF and DKIM have failed their respective checks, thus automatically failing DMARC. 198.91.80.251 is the edge server all outbound emails go through and needs to be in the SPF record. Since you are using cloudflare, it would be best to make sure all necessary records are added in the cloudflare dns panel.

 

[cjptomas80]

DMARC is not the problem, SPF and DKIM are. According to that report both SPF and DKIM have failed their respective checks, thus automatically failing DMARC. 198.91.80.251 is the edge server all outbound emails go through and needs to be in the SPF record. Since you are using cloudflare, it would be best to make sure all necessary records are added in the cloudflare dns panel.

So I need to add/update 198.91.80.251 on my SPF and DKIM records but if this is an edge server for outbound emails, should I check if why drupal script send an email at that time?

 

[mrburnsx]

Just to SPF as that would cover authorized servers to send mail on behalf of your domain. DKIM is a key signature. You’d have to copy the x._domainkey TXT record into Cloudflare. It would also indicate that an email was sent outbound and drupal may need to be checked for the reason it was sent.