Forum Discussion
Mirel Popa
Apr 18, 2018Copper Contributor
Exchange Hybrid centralized email flow bypass issue
We have deployed the Exchange hybrid scenario where all emails received from Internet get filtered through an on-premises Spam appliance. MX records are pointing to on-premises Spam appliance so the...
Mirel Popa
Apr 23, 2018Copper Contributor
Please see command output. Note that I have a domain set under "TlsSenderCertificateName" but I now see that "RestrictDomainstoCertificate" is set to "False", is this the option to change to only accept emails from Hybrid Exchange?
Mitch King
Apr 23, 2018Iron Contributor
I believe this needs to be set to true else this is just accepting any email as long as its TLS, you will need to test as much as possible because im not sure how this will handle the wildcard. See the value settings below.
- Mitch KingApr 25, 2018Iron Contributor
Did this resolve your issue?
- Mirel PopaApr 25, 2018Copper Contributor
I did not get a chance to test the change but please take a look at this link that provides a different solution for exactly the same scenario https://o365info.com/configure-exchange-online-inbound-mail-flow-to-accept-smtp-connection-only-from-a-specific-mail-security-gateway-ip-address/
- Mitch KingApr 26, 2018Iron Contributor
Ok but remember connectors are cumulative, all you are doing here is adding additional ways to receive and not restricting anything as per your original question.
You need to do something with the original connector that is accepting internet mail.