This article describes how to configure Email Protection provided by Intermedia with your Office 365 account purchased from Intermedia. 

In order to configure inbound mail flow routing through Intermedia Email Protection, follow the steps described below.

Enable Email Protection module

To enable the Email Protection for Office 365 module please navigate to Services > Office 365 > Email Protection and click Enable Email Protection. For more information please refer to the following article: Email Protection For Office 365: How To Enable
Important: prior enabling the Email Protection module, please assure that MX records for your domain are pointing to Office 365.

MX records

Important: make sure the Email Protection module is successfully installed before changing MX records.  If the records are changed before the module is installed mail flow will be interrupted. The module is enabled successfully if you can see and use Manage Email Protection option as described in the article Email Protection For Office 365: How To Enable

Contact your DNS hosting provider and create or adjust the MX record for your domain/s to point to east.smtp.mx.o365.serverdata.net. DNS propagation may take up to 72 hours, however, usually, changes are propagated faster.

After everything is done, all your inbound emails will be routed through the Email Protection service.

Create a transport rule to bypass O365 filtering

Note: it is recommended to create a transport rule in the Exchange admin center in order to bypass spam filtering in Office 365. To do that, follow these steps:

  1. Log in to Office 365 portal.
  2. Under Admin Centers, choose Exchange.
    Exchange Admin Center
  3. Under Mail flow, select Rules, click the + sign to create a new rule, and click Bypass spam filtering...
    Mail Flow Rules
  4. Set the following values:
    - Apply this rule if:
    Under The Sender... select IP address is in any of these ranges or exactly matches, then enter IP addresses obtained from support and click OK
    IP Address
    - Do the following:
    Under Modify the message properties... select Set the spam confidence level (SCL) to... then in the Specify SCL drop-down menu choose Bypass Spam Filtering
    Specify SCL
    - Audit this rule with severity level: Low
    - Choose a mode for this rule: Enforce
    SaveRule
  5. Click Save to add the rule

Set up an inbound send connector

Important: Inbound Send connector that enforces IP restrictions should only be created when DNS propagation is completed. Otherwise, mail will be lost.

To do that, follow these steps:

  1. Log in to Office 365 portal.
  2. Under Admin Centers, choose Exchange.
    Exchange Admin Center
  3. Under Mail flow, select Connectors, click the + sign to Add a connector. Click Next.
    Mail Flow Connectors
  4. On the New connector window, choose Partner organization option, and click Next
    New Connector
  5. On the Connector name screen, enter the name and description for your connector. Mark Turn it on checkbox under What do you want to do after connector is saved? option. Click Next.
    Connector Name
  6. Select the option By verifying that the sender domain matches one of the following domains to identify the Partner's organization, click the + sign and add "*" to the list of domain names. Click Next. 
    Verifying domains
  7. For Security restrictions, check the box: Reject messages if they aren't from within this IP range, and click the + sign to add the IP ranges. Then, click Next.
    Important:
    Please contact Support for the list of the IP ranges to use for your account.
    Security Restrictions

  8. On the Review connector page, you can check the configuration of the connector. Click Edit name, Edit sent email identity, Edit restrictions to change the respective settings for the configuration. To finish creating the connector, click Create connector button at the bottom.
    Review Connector