Link to home
Start Free TrialLog in
Avatar of Simon Walton
Simon Walton

asked on

Exchange2010 to 365 in a Hybrid environment.

We are in the process of migrating exchange 2010 to 365 in a Hybrid environment.


We have the following scenarios

- On-Prem Outlook 2010 with a connector to cluster5out.eu.messagelabs.com

- Exchange 365 with the correct remote domains "mail.company.com"


We have tried to set up "centralized mail transport" and have struggled to connect to the on-premise with the following error.


450 4.4.316 Connection refused [Message=Socket error code 10061] [LastAttemptedServerName=mail.matortho.com] [LastAttemptedIP=217.144.149.180:25] [CWLGBR01FT038.eop-gbr01.prod.protection.outlook.com] 


Our understanding is that port 25 is not set up correctly on our FortiGate 100D

We have added the following inbound and outbound IPv4 Policy's


Microsoft-Outlook has a Total IP's of 9055 


User generated image

User generated image


We have unsuccessfully created the "centralized mail transport".


We have 2 options continue down the path of trying to find the solution to the 450 4.4.316 Connection refused

or

We look to configure the 365 Connectors to Symantec message lab.

Symantec Message Lab is our prefered configuration once the migration project has been completed.


Help on both options would be very much appreciated


Best Regards


Simon



Avatar of M A
M A
Flag of United States of America image

Hi Simon,
With centralized mail transport your onprem server should be up and running 24/7.

Are you planning to decommission Exchange server once all moved or keep the server?

--->We have tried to set up "centralized mail transport" and have struggled to connect to the on-premise with the following error.
Did you configure a connector in cloud to received emails from Onprem?

Did you configure internal to external NAT in your Fortinet ?
Avatar of Simon Walton
Simon Walton

ASKER

Hi MAS

We plan to decommission after the migration is complete.

Yes we have setup a cloud connector

Did you configure internal to external NAT in your Fortinet ? No can confirm NAT is Off

Simon
If your NAT is correct and connector is configured with the NAT IP, You should receive the email from your server.
Please check what is your IP. Open site whatismyipaddress.com from server and make sure it is setup correctly. 
IP address is correct although the connector has been set up to use mail.company.com when we tried the IP address it failed with TLS  
Outbound Connector settings
User generated image
User generated imageUser generated image

we have been working from the above link - the only thing we cannot do is change the MX records as they point to Symantec - Symantec then point to our IP

Maybe we should look at option 2 and have all emails going through Symantec?
ASKER CERTIFIED SOLUTION
Avatar of Simon Walton
Simon Walton

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial