This is the second post in a two-part series to implement DMARC controls for actively-used domains, where this post focuses on creating and reviewing/adjusting your DMARC policy and controls.
As a follow-up from my previous post about implementing DMARC controls for unused/alias domains (those not used for actively sending messages), I wanted to write a bit about how to implement basic DMARC controls for those domains actively used to send emails.
This past Friday, somewhat out of the blue, I was pinged by a friend about helping him work through implementing what I'd done to date with Certbot...with the additional twist of his own unique configuration challenges.