Solved

Office 365 Spam Filtering

Posted on 2016-09-27
6
60 Views
Last Modified: 2016-09-28
Hello Everyone,

I am asking this question just to make sure that all bases are covered.

I have a client who has been in regular communication with a customer via email. One or two emails (out of dozens) haven't arrived. We look in the message tracking logs, do a variety of searches, and these emails do not appear in any log. Nothing in Quarantine, Junk Folder, anything.

If a message was received by the O365 servers and was blocked for any reason, shouldn't that show up in the log detailing why?
Is there some kind of 'perimeter' filter that may have blocked a message prior to it getting to a place where it shows up in my clients O365 logs?

The customer received no NDR, and when they resent (i.e. forwarded from their Sent Items) it did appear at my client.

The customer is at home and uses the email address supplied by her (big) ISP. Troubleshooting on that end is limited.

There isn't an issue with attachment size (one email had attachments, the other did not). The only thing that was a bit off was that it was a long email chain of a lot of replies back and forth. And, if it matters, there was some (very slight) language in the email.

Am I missing something here I don't know about O365?
0
Comment
Question by:tnorman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 42

Accepted Solution

by:
Vasil Michev (MVP) earned 250 total points
ID: 41818116
Yes, there is a perimeter filtering, but that should only block the most obvious spam messages and malware. Everything else should be visible in the message trace (well up to a certain date).

The other possibility is that the email never reached O365 servers. It's best if you ask the sending party to perform a trace on their end, if possible.
0
 
LVL 41

Assisted Solution

by:Adam Brown
Adam Brown earned 250 total points
ID: 41818117
It's possible the message was initially flagged by the malware filter. Messages that get dropped by that are usually killed before they hit any logs.
0
 
LVL 15

Expert Comment

by:Greg Besso
ID: 41818141
One way we ensure users can receive incoming email from known trusted senders when using Exchange Online Protection is to run a pair of Exchange PowerShell commands. The update then replicates up to Office 365 Azure AD and that mailbox will not block emails from these senders. It's really been working well. In case you may want to try, here is the snippet...

Get-Mailbox -Identity "receiver@yourDomain.com" | Set-MailboxJunkEmailConfiguration -TrustedSendersAndDomains @{Add="sender@theirDomain.com"}

Open in new window


Also you can just put a theirDomain.com to blanket allow that company. Also we wrap this in a PowerShell GUI application to make it really easy to mass-manage this for many users or groups within the company, as that type of issue comes up pretty frequently.
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 

Author Comment

by:tnorman
ID: 41818532
Is there any way to view what was filtered by the perimeter filter or the malware filter?
0
 
LVL 42

Expert Comment

by:Vasil Michev (MVP)
ID: 41818582
No, only some raw numbers for the amount of blocked mail. Best ask for a trace on sender's side IMO.
0
 

Author Comment

by:tnorman
ID: 41820038
Thanks everyone for their input, and Whoajack for the note about allowing emails.
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes how to import an Outlook PST file to Office 365 using a third party product to avoid Microsoft's Azure command line tool, saving you time.
There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
This is Part 3 in a 3-part series on Experts Exchange to discuss error handling in VBA code written for Excel. Part 1 of this series discussed basic error handling code using VBA. http://www.experts-exchange.com/videos/1478/Excel-Error-Handlin…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question