Knowledgebase
Office 365: Configure Inbound Relaying

The following steps should be taken to route email from Proofpoint Essentials to Office 365


Configure Proofpoint Essentials

Locate your MX record for your domain in Office 365

1. Log in to the Office 365 Exchange Admin Center (EAC)

2. Click on Domains from the left side navigation panel

3. Select the domain you wish to manage

4. Click Domain settings

5. Under Exchange Online, locate the MX row in the table from the Points to address column

6. Keep this information readily accessible

Register domain with Proofpoint Essentials

1. Log in to Proofpoint Essentials

2. Click on the Domains tab

3. Click on Add New Domain

4. Enter your domain name

5. Select purpose (Relay)

6. Copy the MX row value from the Points to address column in the Office 365 admin portal located previously in a separate tab

7. Click Save

Bypassing Spam Filtering in Office 365

You may want to adjust your spam filtering policy in Office 365 to bypass filtering for clean mail that is being sent from Proofpoint Essentials. Proofpoint Essentials IP ranges should be added to the Allowed List in the Connection Filtering Policy within the Office 365 Exchange Admin Center.


To add Proofpoint Essentials IP Ranges to the Connection Filter Policy:

1. Log in to the Office 365 Exchange Admin Center (EAC)

2. Click on protection

3. Click on connection filter

4. Click the Edit icon

5. Click on connection filtering

6. Click on the plus icon + within the IP Allow list section

7. Add the Proofpoint Essentials Main IP Address for the Data Center your account is located on. These IP addresses can be found at the following link:

http://support.proofpointessentials.com/index.php?/Knowledgebase/Article/View/75/11/proofpoint-essentials-data-center-information

8. Click Save to apply changes

Add Connection Filter to allow only emails from Proofpoint Essentials

We recommend that you lock down your inbound email flow in Office 365 to allow only mail from Proofpoint Essentials IP addresses.

To lock down your firewall:

1. Log in to the Office 365 Exchange Admin Center (EAC)

2. Select the Mail Flow | Connectors menu item and create a new Connector

3. Set the New Connector:


From: Select 'Partner Organisation' from the drop down list

To: Select 'Office 365' from drop down list

4. Click the Next button

5. Complete the New Connector:


Name: Enter a name for your connector

Description: Enter a description (optional)

Turn On: Select this option to enable connector

6. Click the Next button

7. Select Use the Sender's Domain option in the 'How do you want to identify the partner organization?'

8. Click the Next button

9. Click the plus icon +  and add * as the domain

10. Click OK

11. Click the Next button

12. Leave the Reject Email Messages if They Aren't Sent Over TLS option with the default value on the 'What security restrictions do you want to apply?'

13. Select Reject email messages if they aren't sent from within this IP address range

14. Click on the plus icon + to add Proofpoint Essentials IP ranges depending on your Data Center

These IP addresses can be found at the following link:

http://support.proofpointessentials.com/index.php?/Knowledgebase/Article/View/75/11/proofpoint-essentials-data-center-information

15. Click the Next button

16. A summary page is displayed, check to ensure correct information is displayed

17. Click the Save button

(1 vote(s))
This article was helpful
This article was not helpful

Comments (0)