DMARC and SPF policy (own domain)

sparekonto · December 11, 2025, 7:08am

What is a good advice to use for DMARC and SPF policy for own domain, and does runbox respect these policies for own hosted domains?

e.g. is this ok - or is it to strict, that e-mails will not get through?

SPF
v=spf1 include:spf.runbox.com -all

DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc@mydomain.com; pct=100;

FredOnline · December 12, 2025, 5:56pm

I would suggest initially changing the SPF to a soft fail (~all) and change the DMARC to “p=none;” and see how deliverability is.

sparekonto · December 12, 2025, 6:04pm

Thanks for the comment. I already have DMARC p=none; now.
For the SPF , actually Runbox recommend -all on their add webmail domain page. I have ?all now, but just wondered if it should be more strict.

FredOnline · December 12, 2025, 7:19pm

Having ?all really defeats the purpose of having an SPF record at all. As I said, see how deliverability is, then perhaps tweak it from there.

sparekonto · December 13, 2025, 5:51am

Yes I could - how do we now how deliverable it is aka, how do I know what e-mails are sent to me. Yes I could test with some my self, but what about all the other vendors. Anyway…

FredOnline · December 13, 2025, 7:30am

You could try mail-tester - it gives excellent feedback on your deliverability. Make sure that you keep their web page open when conducting the test. It’s also better - in the test email - to include some content in the body of the email, a paragraph of some good (not spammy) content. This is of course to test for deliverability - what people send to you depends on their setup.

sparekonto · December 13, 2025, 7:42am

Thanks. I’ve also used https://www.learndmarc.com/

FredOnline · December 13, 2025, 8:02am

When you start to receive aggregate reports I’ve found that the Dmarcian tool is very useful for interpreting the reports.You don’t need to sign up, just drag and drop the report file to get the result.