在 Office 365 中使用第三方云服务管理邮件流Manage mail flow using a third-party cloud service with Office 365

摘要: 说明如何通过第三方云服务配置邮件流的几种不同方案。Summary: A couple of different scenarios that illustrate how to configure mail flow through a third-party cloud service.

本主题涵盖以下使用 Office 365 的复杂邮件流方案:This topic covers the following complex mail flow scenarios using Office 365:

方案 1 - MX 记录指向第三方垃圾邮件筛选服务Scenario 1 - MX record points to third-party spam filtering

方案 2 - MX 记录指向无垃圾邮件筛选服务的第三方解决方案Scenario 2 - MX record points to third-party solution without spam filtering

备注

本主题中的示例使用虚拟组织 Contoso,该组织拥有域contoso.com。Contoso 邮件服务器的 IP 地址是 131.107.21.231,它的第三方提供程序将 10.10.10.1 用作其 IP 地址。这些只是示例。必要时,您可以对这些示例进行修改,以适合您的组织的域名和面向公众的 IP 地址。Examples in this topic use the fictitious organization, Contoso, which owns the domain contoso.com. The IP address of the Contoso mail server is 131.107.21.231, and its third-party provider uses 10.10.10.1 for their IP address. These are just examples. You can adapt these examples to fit your organization's domain name and public-facing IP address where necessary.

Office 365 中使用第三方云服务Using a third-party cloud service with Office 365

方案 1 - MX 记录指向第三方垃圾邮件筛选服务Scenario 1 - MX record points to third-party spam filtering

  • 我计划使用 Office 365 托管我的组织的所有邮箱。我的组织使用第三方云服务来筛选垃圾邮件和恶意软件。从 Internet 发送的所有电子邮件都必须由该第三方云服务进行筛选。I plan to use Office 365 to host all my organization's mailboxes. My organization uses a third-party cloud service to filter spam and malware. All email that the Internet sends must be filtered by this third-party cloud service.

针对这种情况,您组织的邮件流设置如下图所示。For this scenario, your organization's mail flow setup looks like the following diagram.

带箭头的邮件流图表,显示从 Internet 转到第三方解决方案(筛选到 Office 365)和从 Office 365 直接发送到 Internet 的邮件。

Office 365 中使用第三方云服务的最佳实践Best practices for using a third-party cloud service with Office 365

  1. 在 Office 365 中添加你的自定义域。若要证明你拥有这些域,请按照添加用户和域中的说明操作。Add your custom domains in Office 365. To prove that you own the domains, follow the instructions in Add users and domains.

  2. 用户邮箱 Exchange Online 中创建移动到 Office 365 的所有用户的邮箱Create user mailboxes in Exchange Online or move all users' mailboxes to Office 365.

  3. 更新你在步骤 1 中添加的域的 DNS 记录。(不确定该怎么做?按照此页中的说明进行操作。)以下 DNS 记录控制邮件流:Update the DNS records for the domains that you added in step 1. (Not sure how to do this? Follow the instructions on this page.) The following DNS records control mail flow:

    • MX 记录 - 你的域的 MX 记录必须指向第三方服务提供程序。按照第三方服务的准则掌握配置 MX 记录的方法。MX record - Your domain's MX record must point to your third-party service provider. Follow their guidelines for how to configure your MX record.

    • SPF 记录 - 因为你的域的 MX 记录必须指向第三方服务(换句话说,你需要复杂路由),所以你的 SPF 记录也应将第三方服务包括在内。请遵循第三方云服务的准则。但是,你还应添加 Office 365 作为有效的发件人。SPF record - Because your domain's MX record must point to the third-party service (in other words, you require complex routing), your SPF record should include them as well. Please follow the guidelines from your third-party cloud service. However, you should also add Office 365 as a valid sender.

      例如,如果 contoso.com 为你的域,而第三方云服务的 IP 地址是 10.10.10.1,那么 contoso.com 的 SPF 记录应为:For example, if contoso.com is your domain and the IP address for the third-party cloud service is 10.10.10.1, the SPF record for contoso.com should be:

    v=spf1 ipv4: 10.10.10.1  include:spf.protection.outlook.com -all
    

    此外,根据第三方提供程序的要求,你必须包括第三方的域,如以下示例所示:Alternatively, depending on the third-party provider's requirements, you might need to include the domain from the third-party, as shown in the following example:

    v=spf1 include:spf.protection.outlook.com include:third_party_cloud_service.com -all
    

方案 2(不支持)- MX 记录指向第三方解决方案,而无需进行垃圾邮件筛选Scenario 2 (unsupported) - MX record points to third-party solution without spam filtering

  • 我计划使用 Office 365 托管我的组织的所有邮箱。我的组织必须将所有电子邮件发送给第三方服务,例如存档或审核。但是,第三方服务不提供垃圾邮件筛选解决方案。I plan to use Office 365 to host all my organization's mailboxes. My organization must send all email to a third-party service, such as archiving or auditing. However, the third-party service doesn't provide a spam filtering solution.

我们不推荐或不支持这种方案,因为它会导致 Office 365 垃圾邮件筛选不能正常工作。如果您选择该方案,您组织的邮件流设置如下图所示。We don't recommend or support this scenario because it causes Office 365 spam filtering not to work properly. If you choose this scenario, your organization's mail flow setup looks like the following diagram.

邮件流图表,显示从 Internet 发送第三方解决方案(未筛选到 Office 365)以及从 Office 365 发送到第三方解决方案再到 Internet 的邮件不受支持的情况。

Office 365 中使用第三方云服务的最佳实践Best practices for using a third-party cloud service with Office 365

  • 不要使用此方案,因为它当前不受支持。我们建议你使用 Office 365 提供的存档和审核解决方案。Don't use this scenario because it isn't currently supported. We recommend that you use archiving and auditing solutions that Office 365 provides.

See alsoSee also

Exchange Online 和 Office 365 邮件流最佳做法(概述)Mail flow best practices for Exchange Online and Office 365 (overview)

使用 Office 365 管理所有邮箱和的邮件流Manage all mailboxes and mail flow using Office 365

Manage mail flow with mailboxes in multiple locations (Office 365 and on-prem)Manage mail flow with mailboxes in multiple locations (Office 365 and on-prem)

在 Office 365 和本地通过邮箱使用第三方云服务管理邮件流Manage mail flow using a third-party cloud service with mailboxes on Office 365 and on-prem

解决 Office 365 邮件流问题Troubleshoot Office 365 mail flow

通过验证您的 Office 365 连接器测试邮件流Test mail flow by validating your Office 365 connectors