We are testing to have our e-mail to go through the UTM to Office365, so we are certain that at least the UTM has scanned messages using sandstorm.
The setup basically involves this:
- Have MX records of domain point to UTM
- Route mail from UTM to previous MX-server (as supplied by Microsoft Office365)
Mail does arrive in the Office365 mailbox, but when testing from a Gmail account I noticed in the headers of the received mail that Microsoft softfails on SPF check for the IP-address of our UTM with a gmail.com domain. I do of course understand that our IP-address would normally not send mails using a gmail.com domainname, but if any senders domain has a -ALL in stead of ~ALL at the end of their SPF record, it will be a Reject and possibly mail will not ever get through.
Is it possible to prevent either the softfail for our UTM that forwards the message or should I look for a way to stop SPF-checks in the Office365 service for the specified domain(s)?
This thread was automatically locked due to age.
