Why are there two SPF cards, one for Return Path, one for EHLO domain?
SPF authentication can be setup on either the EHLO domain or the Return Path domain, or both. If no SPF authentication is setup on either one of them, or the authentication is not passing, Investigate shows the setup for both to give a full picture of your setup.
Why are there two SPF domains showing in the DMARC card?
DMARC is doing an email alignment check for SPF as part of the DMARC authentication check. SPF can be setup on either the EHLO domain or the Return Path domain, or both. If there is no passing SPF setup on either on of these we show both potential SPF domains as potential alignment domains.
Why do I see a green tick for DMARC in the compliance profile, but a yellow warning state for the DMARC card?
For DMARC to pass it is necessary that at least DKIM or SPF pass and that the passing protocol aligns correctly with the sender's From domain. It is recommended to have both protocols setup correctly, to reach the best possible authentication status. If only one protocol passes email authentication is setup from a DMARC perspective, resulting in the green tick in the compliance profile. However, our recommendation is to configure both, therefore we show the yellow warning sign in the DMARC card.
What is the URL card about?
If you want to test a forwarding setup you sometimes have to verify your email address via a link in the setup email. The URL card shows all URLs contained in an email, allowing you to click on the verify link.
Why are there so many colored tags?
Clicking on a colored tag opens a new tab with an explanation of the tag.