cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Mail flow in Hybrid w/Appliance

Daniel Thompson
Copper Contributor

‎Jan 22 2020 07:45 AM

‎Jan 22 2020 07:45 AM

Mail flow in Hybrid w/Appliance

Current we have:

Inbound:
Internet --> MX MacAfee Appliance (Spam and Virus filtering) --> Exchange 2010 --> Exchange Edge --> Office 365

Outbound is the reverse.

 

We want to remove Exchange 2010 servers and keep one Exchange 2016 for mail object maintenance.

 

Ideally, we want the mail flow to change to this:

Inbound:
Internet --> MX Mcafee Appliance (Spam and Virus filetering) --> Office 365
Outbound is the reverse.

 

Going thru the McAfee Appliance is mandatory by management. It lives in our DMZ. The MX records for the domain point here.


I can't find any documents that explain exactly how to set this up. Please point me in the right direction.

Thanks in advance...

 

Labels:
982 Views
0 Likes
2 Replies
Reply
2 Replies
best response confirmed by Daniel Thompson (Copper Contributor)
HidMov

‎Jan 22 2020 03:29 PM

‎Jan 22 2020 03:29 PM

Solution

Re: Mail flow in Hybrid w/Appliance

Hi @Daniel Thompson,

 

For incoming, you would need to look at white-listing the IPs of the appliance in Exchange Online so it doesn't treat them as spam., then point the appliance away from the current Exchange 2010 and onto the MX record of your tenant. I'd also look to set up a connector to reject any email that doesn't come from your appliance. 

 

For outbound, you'll want to set up a connector to route through all of the email to your appliance - something like from Office 365 to partner organisation. I'm not familiar with your particular appliance, but you might have to do some config on that so it expects emails to come from Office365 rather than your old Exchange box.

 

https://www.azure365pro.com/configuring-mimecast-with-office-365/ - this may help. It's for Mimecast but once you get past all the directory sync stuff at the beginning it should be the same principle for mail routing with your own device.

 

Hope this helps,

Mark

0 Likes
Reply
Daniel Thompson

‎Jan 23 2020 01:28 PM

‎Jan 23 2020 01:28 PM

Re: Mail flow in Hybrid w/Appliance

@HidMovthanks -- this is the first reference i found to the connection filter. We'll give it a shot. I'll post the results when i have them.

0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Daniel Thompson (Copper Contributor)
HidMov

‎Jan 22 2020 03:29 PM

‎Jan 22 2020 03:29 PM

Solution

Re: Mail flow in Hybrid w/Appliance

Hi @Daniel Thompson,

 

For incoming, you would need to look at white-listing the IPs of the appliance in Exchange Online so it doesn't treat them as spam., then point the appliance away from the current Exchange 2010 and onto the MX record of your tenant. I'd also look to set up a connector to reject any email that doesn't come from your appliance. 

 

For outbound, you'll want to set up a connector to route through all of the email to your appliance - something like from Office 365 to partner organisation. I'm not familiar with your particular appliance, but you might have to do some config on that so it expects emails to come from Office365 rather than your old Exchange box.

 

https://www.azure365pro.com/configuring-mimecast-with-office-365/ - this may help. It's for Mimecast but once you get past all the directory sync stuff at the beginning it should be the same principle for mail routing with your own device.

 

Hope this helps,

Mark

View solution in original post

0 Likes
Reply