Due to a change of email provider from HostEurope to Google’s G Suite, a more tightened email security could be set up.
While a SPF DNS entry existed before, DKIM and DMARC could be established now as well.
Even though the DMARC policy was set to “none” in the beginning, I intensely monitored the DMARC reports and tried to keep violations as low as possible.
To do this, I set up a dashboard in Grafana, which collects the dmarc reports from a dedicated mailbox.
Currently I could set the DMARC policy to “quarantine”, as violations became quite low.
