Converted esisting Email security to Mailflow with MS365

DNS MX records should all point to M365 and SPF should be updated as well to v=spf1 include:spf.protection.outlook.com -all and of course any other records you need in your specific SPF record. 

Thanks for the quick answer Tom. It would be my exact thoughts but thanks for clarifying.

Now, is it by design that this appears in the "Message history": What we see are both entries for Gateway and Mailflow. Email is being delivered fine, no duplicates in mailbox.

The only messages you should see showing gateway are those that are still using the old mx record for delivery. Once everything has been switched to MFR you should delete the gateway section in Central Email settings so that only MFR exists. I imagine some servers might still be pointing to the old mx record or have it cached. 

The only messages you should see showing gateway are those that are still using the old mx record for delivery. Once everything has been switched to MFR you should delete the gateway section in Central Email settings so that only MFR exists. I imagine some servers might still be pointing to the old mx record or have it cached. 

Ok, i completely deleted the gateway from the Domain/Status section. Still showing some Gateway entries.

those are likely servers that have cached the old mx and or are configured directly pointing to the old record. They should clear up over time, if not you will need to investigate and if they are servers/applications under your control change the mail host or smarthost entry. If they are from external senders they will update cache over the next couple days, although it should be sooner propagation can take up to 72 hours for some DNS providers.

All is OK now.

All messages are now using MAILFLOW. 

Thanks for the assistance Tom!

I get a warning that I need to deactivate my gateway connection, yet when I go to my global domain settings under mailflow connection I just see the ability to disconnect that. Is this the same thing as disconnecting my gateway? If it is why is it called 2 different things? I just don't want to disconnect the wrong thing and have email go down for 250 people.

Well this worked out about as well as I expected.

In what way Doug, Sorry I was out on PTO and business travel the last couple weeks. You should always create a support case if you need immediate response. In the UI you should have seen an X (all the way to the right) where you could delete the connection vs just disconnecting. It would not be under Mail Flow but under Settings > Domain Settings/status, those are the connections to remove IF you have Mailflow working correctly.