Home

Hybrid Deployment 2010 and O365 false positive Junk mail

%3CLINGO-SUB%20id%3D%22lingo-sub-543672%22%20slang%3D%22en-US%22%3EHybrid%20Deployment%202010%20and%20O365%20false%20positive%20Junk%20mail%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-543672%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20some%20issues%20with%20my%20Hybrid%20deployment%20with%20Office365.%20This%20is%20my%20current%20situation%3A%3C%2FP%3E%3CP%3E-%20MX%20record%20is%20pointing%20to%20my%20On-Prem%20Exchange%3C%2FP%3E%3CP%3E-%20No%20Edge%20server%26nbsp%3B%3C%2FP%3E%3CP%3E-%20The%20HCW%20was%20executed%20and%20finished%20without%20error%3C%2FP%3E%3CP%3E-%20Emails%20between%20on-prem%20and%20cloud%20users%20arrive%20without%20issues%20and%20the%20header%20indicates%20that%20are%20Internal%3C%2FP%3E%3CP%3E-%20Emails%20received%20from%20any%20external%20organizations%20to%20on-prem%20mailboxes%20are%20received%20in%20the%20Inbox%20folder%3C%2FP%3E%3CP%3E%3CSTRONG%3E-%20Emails%20received%20from%20some%20external%20organization%20to%20cloud%20mailboxes%20are%20received%20in%20the%20Junk%20folder%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20I%20had%20noticed%20is%20that%20if%20an%20external%20organization%20is%20using%20an%20Office365%20as%20their%20mail%20system%20all%20emails%20sent%20to%20my%20cloud%20users%20are%20marked%20as%20Spam.%20When%20I%20verify%20the%20headers%20it%20says%20that%20the%20SPF%20record%20fails%20because%20their%20SPF%20record%20doesn't%20list%20our%20MX%20IP%20as%20an%20authorized%20server.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20think%20the%20issue%20comes%20because%20the%20mail%20flow%20goes%20from%20their%20O365%20tenant%20to%20my%20On-Prem%20and%20then%20back%20to%20our%20O365%20tenant%20(our%20Exchange%20is%20personifying%20their%20domain%20for%20delivery%20to%20our%20O365).%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20I%20perform%20this%20same%20test%20from%20hotmail.com%2C%20outlook.com%20or%20other%20mail%20systems%20the%20emails%20are%20received%20on%20the%20Inbox%20folder.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20contact%20support%20for%20help%20but%20the%20O365%20Helpdesk%20for%20the%20Latin%20America%20region%2C%20in%20my%20opinion%2C%20are%20low-level%2Ftier%201%20support.%20On%20previous%20experiences%2C%20they%20won't%20help%20much%20to%20resolve%20advance%20issues.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnyone%20of%20the%20community%20have%20an%20idea%20of%20what%20is%20happening%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-543672%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-544097%22%20slang%3D%22en-US%22%3ERe%3A%20Hybrid%20Deployment%202010%20and%20O365%20false%20positive%20Junk%20mail%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-544097%22%20slang%3D%22en-US%22%3EUpdate%3A%3CBR%20%2F%3EIf%20I%20turn%20off%20the%20SPF%20Hard%20Fail%20on%20Office365%20the%20emails%20from%20externals%20O365%20tenants%20start%20to%20get%20to%20the%20Inbox%20folder.%3C%2FLINGO-BODY%3E
songoten_1
New Contributor

Hi, 

 

I have some issues with my Hybrid deployment with Office365. This is my current situation:

- MX record is pointing to my On-Prem Exchange

- No Edge server 

- The HCW was executed and finished without error

- Emails between on-prem and cloud users arrive without issues and the header indicates that are Internal

- Emails received from any external organizations to on-prem mailboxes are received in the Inbox folder

- Emails received from some external organization to cloud mailboxes are received in the Junk folder

 

What I had noticed is that if an external organization is using an Office365 as their mail system all emails sent to my cloud users are marked as Spam. When I verify the headers it says that the SPF record fails because their SPF record doesn't list our MX IP as an authorized server. 

 

I think the issue comes because the mail flow goes from their O365 tenant to my On-Prem and then back to our O365 tenant (our Exchange is personifying their domain for delivery to our O365).

 

If I perform this same test from hotmail.com, outlook.com or other mail systems the emails are received on the Inbox folder. 

 

I contact support for help but the O365 Helpdesk for the Latin America region, in my opinion, are low-level/tier 1 support. On previous experiences, they won't help much to resolve advance issues. 

 

Anyone of the community have an idea of what is happening?

1 Reply
Update:
If I turn off the SPF Hard Fail on Office365 the emails from externals O365 tenants start to get to the Inbox folder.