Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
988
Views
0
Helpful
1
Replies

DMARC implementation question

mark fitzgerald
Level 1
Level 1

‎02-18-2016 04:29 AM

Hello all, hopefully an easy question here.   I just wanted to get a confirmation that enabling DMARC on the Ironport appliance is going to work the way I envision it working.

Assume you have a DMARC compliant domain and it is already in reject mode, and ISPs like Google, Microsoft, Comcast, etc. are already blocking mail based on your DMARC policy.   If DMARC is then turned on at the Ironport, will it pay attention to your own DMARC settings when someone tries to send you spoofed mail that claims to be from your domain and block it? (assuming you have the ironport set to block based on DMARC evaluation)  I assume that it will, however I haven't actually tried it yet.  I wanted to make sure I wasn't way off base with this.  Thanks.

1 person had this problem
Labels:
0 Helpful
1 Reply 1

jorandre
Cisco Employee
Cisco Employee

‎12-01-2018 07:35 AM

I know this has been posted quite awhile ago. But I wanted to give a response anyways. When enabling DMARC verification on a mail flow policy, the ESA will do DMARC verification regardless of if the domain is internal or not.
0 Helpful
Customers Also Viewed These Support Documents