Hi,
Recently one of our users received NDR saying that e-mail message to icloud can't be delivered because it got rejected due to DMARC policy. User sent e-mail message using Outlook on the Web app, it is legit and user can accept that e-mail message was sent by him - respectively, it should not be rejected.
Our SPF records is correct -
v=spf1 ip4:<ourpublicip> include:spf.protection.outlook.com -all
When I was inspecting received NDR, I noticed that e-mail message was sent from AM8PR10MB4212.EURPRD10.PROD.OUTLOOK.COM -
Also I noticed that spf.protection.outlook.com nor spfd.protection.outlook.com does not includes this particular IP -
Could this be because Microsoft hasn't added this particular IP address to spf.protection.outlook.com TXT records? Or something is wrong on icloud side? Has anyone else has experienced this recently?
----------
More details -
DMARC records are following -
v=DMARC1; p=reject; rua=mailto:someone@ourdomain.com; ruf=mailto:someone@ourdomain.com; fo=1;
Received NDR -
Raw data on pastebin -
BzZK4zYR