Showing results for 
Search instead for 
Did you mean: 

nondelivered DMARC reports


Hi, we have a lot of undeliverabled DMARC reports (about one hundred daily). What could I do with it?

(eg. there is a DMARC record in DNS for domain, with, but there is no MX record for this domain. So our DMARC report is returned back).

6 Replies 6

Cisco Employee
Cisco Employee

So why you don't change the email address in RUA to a valid one?!

It's not our domain :-D

I written it just only for example.

I have to rewrite my question once again to be clearly: Hi, we have a lot of returned DMARC reports (about one hundred daily) because they are undeliverables.

To be clear: you're getting notifications back from other domains listing mails that purport to come from you (e.g. your domain in the envelope sender header), but fail SPF (not your IPs) or DKIM (not signed with the right cert), or both, right?

Look at those files see if anything in there is supposed to be deliverable, and then fix it...

Eg. If it's a bunch of stuff from MailChimp that's failing because your Marketing team didn't tell you they're using Mailchimp for the new campaign, you need to tweak your SPF.

If it's all stuff that shouldn't be deliverable, then you know you have your stuff set up right, and can just delete these.

After a while you can change your DMARC record so that sites quit sending you reporting, if you know that your business isn't going to run out and use some cloud mailer without telling you.

No :-)

I'll try to describe it again:

1. my ESA create DMARC Aggregate Report and send it according to RUA to some external domain (see. pict 1) Capture5.PNG

2. the RUA recipient doesn't exist and this report is returned back to me: Capture6.PNG

3. I have about 1 hundred such bounced emails from many different domains daily.




To disable sending DMARC reports go to ESA->Mail Policies->Mail Flow Policies->Default Policy Parameters and under DMARC Verification uncheck "Send aggregate feedback reports".


If you have "Trusted" sources you may override this setting for them (enable only for them)

Or you may go to System Administration->Return Addresses and set DMARC Feedback to an mail address, which delivers everything to /dev/null

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: