Forum Discussion
Analyzing message header
We are in hybrid deployment and all mailboxes are in Exchange online. Our mx record is pointing to our 3rd part spam filter, then sent to our on premise server which again sends to Exchange online. I...
Victor_Ungureanu
Microsoft
MicrosoftX-Origin-IP is a custom header probably stamped by your 3rd party spam filtering solution. If you have it, then you can use it to create a transport rule in EXO to block emails where your domain is spoofed. Something like:
If the message...
sender's address domain portion belongs to any of these domains: 'your_domain.com'
Do the following...
Set the spam confidence level (SCL) to '5'
Except if...
'X-Origin-IP' header contains ''your IPs''
Regarding the message trace, you are right, there are some things that take longer to achieve in EXO, but on the other side it's so quick and easy to see what exactly happened to an email sent recently.
THanks Vistor,
but i have done multiple test and even from my on-premise server at home. X-Origin-IP is IP of mail server and X-Originating IP is end user IP.
Not every mail server has these stamps. G-mail will stamp with their IPV6 in X-origin-IP.