Solved

Exchange Hybrid environment mail flow issue

Posted on 2016-07-18
10
61 Views
Last Modified: 2016-07-26
So here is the scenario:

- network with the following components: sonicwall NSA firewall, sonicwall email appliance
- on-premise Exchange 2013 server
- Office 365 account
- hybrid configuration wizard run successfully
- azure AD sync installed

We currently have the following mail flow conditions:
- MX records point to on-premise Exchange server
- mail flows to and from external email addresses from on-premise or O365 mailboxes
- mail flows from on-premise Exchange mailboxes to O365 mailboxes
- mail does NOT flow from O365 mailboxes to on-premise mailboxes

I can say that I have not updated the TXT records with the updated federation information (is that supposed to be internal and external DNS records?) but I am not sure if that is related.

Can anyone assist with troubleshooting this issue? I am not sure where to start.
0
Comment
Question by:twinstatevdv
  • 5
  • 5
10 Comments
 

Author Comment

by:twinstatevdv
ID: 41718096
Also, all inbound email traffic on port 25 is routed through the sonicwall email appliance.
0
 
LVL 36

Expert Comment

by:Jian An Lim
ID: 41721004
Rerun hybrid configuration wizard again

On Office 365, check it's outbound connector.
depends on version, you should have one outbound connector

try to test connectivity on that

you can run get-outboundconnector | fl and paste the result here
0
 
LVL 36

Accepted Solution

by:
Jian An Lim earned 500 total points
ID: 41721014
one thing, email from Office 365 back to On-premise should not pass through sonic wall.
It must arrive directly
0
 

Author Comment

by:twinstatevdv
ID: 41721076
What IP addresses and ports should I forward at the firewall direct to the exchange server? I know there is a set of EOP addresses.
0
 
LVL 36

Expert Comment

by:Jian An Lim
ID: 41721519
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 

Author Comment

by:twinstatevdv
ID: 41727609
THanks for the info! Which ports should I be forwarding?
0
 
LVL 36

Expert Comment

by:Jian An Lim
ID: 41728613
port 25 for sMTP
port 443 for EWS and HTTPS
0
 

Author Comment

by:twinstatevdv
ID: 41729446
got it, I will try that with the EOP addresses; my only concern is that we might be allowing non-hybrid email messages from Office 365 sources to bypass the email appliance.
0
 
LVL 36

Expert Comment

by:Jian An Lim
ID: 41729680
non-hybrid email message?
the connector should only bring back any email that is mail user, nothing else.

also, you might want to upgrade your azure AD sync to AADConnect as the previous version have been deprecated.
0
 

Author Closing Comment

by:twinstatevdv
ID: 41730099
Thank you for the assistance! Email appears to be flowing as desired.  :)
0

Featured Post

Want to promote your upcoming event?

Are you going to an event? Are you going to be exhibiting at a tradeshow? Talking at a conference? Using a promotional banner in your email signature ensures that your organization’s most important contacts stay in the know and can potentially spread the word about the event.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
This Experts Exchange lesson shows how to use VBA to loop through rows in Excel.  In order to sort, filter, and use database features, there needs to be a value in each column for every row. When data arrives with values missing, code to copy values…
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

943 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now