郵件流程的最佳作法 Exchange Online 與 Office 365 (概觀)Mail flow best practices for Exchange Online and Office 365 (overview)

使用 Microsoft Exchange Online 與 Office 365 管理郵件流程。了解如何,並取得用於設定及管理您的電子郵件的秘訣與最佳作法。Use Microsoft Exchange Online and Office 365 to manage mail flow. Find out how, and get tips and best practices for setting up and managing your email.

本文適用於的 IT Pros.想其他項目吗?This article is intended for IT Pros. Want something else?

嘗試設定適用於企業的 Office 365您的組織中部署 Office 365 EnterpriseTry Set up Office 365 for business or Deploy Office 365 Enterprise for your organization.

Office 365 可讓您決定如何對貴組織的信箱傳送電子郵件的最佳編排方式的彈性。路徑電子郵件會從網際網路到信箱且反之亦然呼叫郵件流程。大部分組織想要管理其信箱及篩選和有些組織需要以確保它們遵守特定法規或業務需求較複雜的郵件流程設定所有的 Office 365。如果您是適用於小型企業或只是想要管理您的信箱與郵件流程的 Office 365 組織的一部分,建議設定適用於企業的 Office 365中的步驟。該文章提供設定 Office 365 服務及程式,包括如何設定郵件流程及電子郵件用戶端的完整檢查清單。Office 365 gives you flexibility in determining the best arrangement for how email is delivered to your organization's mailboxes. The path email takes from the Internet to a mailbox and vice versa is called mail flow. Most organizations want Office 365 to manage all their mailboxes and filtering, and some organizations need more complex mail flow setups to make sure that they comply with specific regulatory or business needs. If you're part of a small business or simply an organization that wants Office 365 to manage all your mailboxes and mail flow, we recommend following the steps in Set up Office 365 for business. That article provides a complete checklist for setting up Office 365 services and programs, including how to set up your mail flow and email clients.

如需如何以 EOP 保護您的電子郵件的資訊,請參閱Exchange Online Protection OverviewFor information about how your email is protected with EOP, see Exchange Online Protection Overview.

提示

是 Office 365 郵件流程的新功能吗?取出Introduction to Office 365 郵件流程的基本知識主題。特別是建議讀取 SPF 記錄的相關的部分因為客戶通常清單及其可能會造成郵件流程問題的 SPF 記錄中的錯誤值。Are you new to Office 365 mail flow? Check out the Introduction to the basics of Office 365 mail flow topic. We especially recommend reading the part about SPF records because customers often list the wrong values in their SPF record, which can cause mail flow problems.

Office 365 郵件流程涵蓋下列案例:Office 365 mail flow covers the following scenarios:

郵件流程設定Mail flow setup 您的組織案例Your organization's scenario 複雜性Complexity
管理所有信箱和使用 Office 365 的郵件流程Manage all mailboxes and mail flow using Office 365
管理所有的信箱及使用 Office 365 (建議使用) 的郵件流程。Manage all mailboxes and mail flow using Office 365 (recommended).
我正在新的 Office 365 客戶、 與所有使用者信箱皆位於 Office 365。我想要使用 Office 365 所提供的所有篩選解決方案。I'm a new Office 365 customer, and all my users' mailboxes are in Office 365. I want to use all filtering solutions offered by Office 365.
管理所有的信箱及使用 Office 365 (建議使用) 的郵件流程。Manage all mailboxes and mail flow using Office 365 (recommended).
我正在新的 Office 365 客戶。我有現有的電子郵件服務,但要一次將所有現有使用者的信箱移至雲端。我想要使用 Office 365 所提供的所有篩選解決方案。I'm a new Office 365 customer. I have an existing email service but plan to move all the existing users' mailboxes to the cloud at once. I want to use all filtering solutions offered by Office 365.
簡單Simple
管理使用協力廠商雲端服務與 Office 365 的郵件流程Manage mail flow using a third-party cloud service with Office 365
案例 1-MX 記錄指向協力廠商垃圾郵件篩選Scenario 1 - MX record points to third-party spam filtering
我要有我的組織信箱的所有主控的 Office 365。我的組織會使用 (或計劃使用) 的第三方 (郵件服務) 雲端解決方案的篩選垃圾郵件和惡意程式碼。從網際網路傳送的所有電子郵件必須依此協力廠商雲端服務進行篩選。I plan to have Office 365 host all of my organization's mailboxes. My organization uses (or plans to use) a third-party (mail services) cloud solution for filtering spam and malware. All email sent from the Internet must be filtered by this third-party cloud service.
案例 2 (不支援)-MX 記錄指向協力廠商解決方案,而不垃圾郵件篩選Scenario 2 (unsupported) - MX record points to third-party solution without spam filtering
我要有架設 「 我組織的所有信箱的 Office 365。我的組織必須將所有的電子郵件傳送至協力廠商服務,例如封存或稽核。不過,第三方服務不提供垃圾郵件篩選解決方案。I plan to have Office 365 host all my organization's mailboxes. My organization needs to send all email to a third-party service, such as archiving or auditing. However, the third-party service doesn't provide a spam filtering solution.
複數Complex
管理多個位置 (Office 365 和 prem 上) 中的信箱與郵件流程Manage mail flow with mailboxes in multiple locations (Office 365 and on-prem)
重要: 在不久的將來 Office 365 會拒絕來自不明寄件者從內部部署伺服器轉送的電子郵件。這表示如果郵件的寄件者或收件者的網域不屬於您的組織,Office 365 會拒絕此郵件除非您已建立的連接器允許的行為表現方式。此變更可協助防止未授權的使用者使用您的組織傳送垃圾郵件或惡意程式碼透過 Office 365。Important: In the near future, Office 365 will reject email from unknown senders that are relayed from on-premises servers. This means that if the sender or recipient domain of a message doesn't belong to your organization, Office 365 will reject the message unless you have created a connector to allow this behavior. This change will help prevent unauthorized parties from using your organization to send spam or malware through Office 365.
如果您使用本節中的任何案例此變更可能會影響您的郵件流程。每個案例有最佳作法以確保您的郵件流程仍不間斷。This change potentially affects your mail flow if you use any scenario in this section. Each scenario has best practices to ensure that your mail flow continues uninterrupted.
案例 1: MX 記錄指向 Office 365 與 Office 365 來篩選所有郵件Scenario 1: MX record points to Office 365 and Office 365 filters all messages
我正在將 「 我的信箱移轉至 Office 365 與我想要保留在組織中的郵件伺服器 (內部部署伺服器) 上的一些信箱。我要用作 「 我的垃圾郵件篩選解決方案中的 Office 365,但想要將 「 我的郵件從 「 我的內部伺服器傳送到 Office 365 透過網際網路。Office 365 傳送及接收所有的郵件。I'm migrating my mailboxes to Office 365, and I want to keep some mailboxes on my organization's mail server (on-premises server). I want to use Office 365 as my spam filtering solution and would like to send my messages from my on-premises server to the Internet via Office 365. Office 365 sends and receives all messages.
案例 2: MX 記錄指向 Office 365 與郵件是內部篩選Scenario 2: MX record points to Office 365 and mail is filtered on-premises
我正在將 「 我的信箱移轉至 Office 365 與我想要保留在組織中的郵件伺服器 (內部部署伺服器) 上的一些信箱。我想要使用已在 「 我的內部部署環境中的篩選及符合性解決方案。與我雲端信箱或從 「 我的雲端信箱傳送至網際網路的郵件來自網際網路的所有訊息都需要透過 「 我的內部伺服器路由傳送。I'm migrating my mailboxes to Office 365, and I want to keep some mailboxes on my organization's mail server (on-premises server). I want to use the filtering and compliance solutions that are already in my on-premises environment. And all messages coming from the Internet to my cloud mailboxes or messages sent to the Internet from my cloud mailboxes need to route through my on-premises servers.
案例 3: MX 記錄指向 「 我的內部伺服器Scenario 3: MX record points to my on-premises servers
我正在將 「 我的信箱移轉至 Office 365 與我想要保留在組織中的郵件伺服器 (內部部署伺服器) 上的一些信箱。我想要使用已處於 「 我的內部部署電子郵件環境的篩選及符合性解決方案。所有 「 我的雲端信箱或從雲端信箱傳送至網際網路的郵件來自網際網路的郵件必須透過 「 我的內部伺服器路由傳送。與我需要我的網域的 MX 記錄指向 「 我的內部伺服器。I'm migrating my mailboxes to Office 365, and I want to keep some mailboxes on my organization's mail server (on-premises server). I want to use the filtering and compliance solutions that are already in my on-premises email environment. All messages coming from the Internet to my cloud mailboxes or messages sent to the Internet from cloud mailboxes must route through my on-premises servers. And I need to point my domain's MX record to my on-premises server.
案例 4: MX 記錄指向 「 我的內部伺服器,篩選,並提供您的郵件符合性解決方案。您的內部部署伺服器必須透過 Office 365 的網際網路轉送訊息。Scenario 4: MX record points to my on-premises server, which filters and provides compliance solutions for your messages. Your on-premises server needs to relay messages to the internet through Office 365.
我正在將 「 我的信箱移轉至 Office 365 與我想要保留在組織中的郵件伺服器 (內部部署伺服器) 上的一些信箱。我想要使用已處於 「 我的內部部署電子郵件環境的篩選及符合性解決方案。從 「 我的內部伺服器傳送的所有郵件必須都轉送到網際網路的 Office 365。與我需要我的網域的 MX 記錄指向 「 我的內部伺服器。I'm migrating my mailboxes to Office 365, and I want to keep some mailboxes on my organization's mail server (on-premises server). I want to use the filtering and compliance solutions that are already in my on-premises email environment. All messages sent from my on-premises servers must relay through Office 365 to the Internet. And I need to point my domain's MX record to my on-premises server.
非常複雜Very complex
管理使用協力廠商雲端服務與 Office 365 和 prem 上信箱的郵件流程Manage mail flow using a third-party cloud service with mailboxes on Office 365 and on-prem
案例Scenario
我正在將 「 我的信箱移轉至 Office 365 與我想要保留在組織中的郵件伺服器 (內部部署伺服器) 上的一些信箱。我想要使用的協力廠商雲端服務來篩選來自網際網路的垃圾郵件。不需要網際網路我郵件路由傳送到 Office 365 防止 「 我的內部伺服器的 IP 位址新增至外部封鎖清單。I'm migrating my mailboxes to Office 365, and I want to keep some mailboxes on my organization's mail server (on-premises server). I want to use a third-party cloud service to filter spam from the Internet. My messages to the Internet need to route through Office 365 to protect my on-premises servers' IP addresses from being added to external block lists.
最複雜Most complex
從多功能印表機/掃描器/傳真/應用程式透過 Office 365 傳送電子郵件Send emails from a multifunction printer/scanner/fax/application through Office 365
如需此案例的詳細資訊,請參閱如何設定多功能裝置或應用程式來傳送電子郵件使用 Office 365For details about this scenario, see How to set up a multifunction device or application to send email using Office 365.
案例Scenario
我組織的所有信箱都架設在 Office 365 中,但我有多功能印表機、 掃描器、 傳真機、 或需要傳送電子郵件應用程式。All my organization's mailboxes are hosted in Office 365, but I have a multifunction printer, scanner, fax machine, or an application that needs to send email.
複數Complex
使用 Exchange Online Protection (EOP) 獨立Using Exchange Online Protection (EOP) standalone
如需此案例的詳細資訊,請參閱Mail Flow in EOP執行 Office 365 連接器的運作方式與我自己的電子郵件伺服器 (也稱為 「 內部部署伺服器 」)?For details about this scenario, see Mail Flow in EOP and How do Office 365 connectors work with my own email servers (also called "on-premises servers")?
案例Scenario
我有我自己的電子郵件伺服器 (內部部署伺服器) 和 eop 訂閱電子郵件保護服務僅。I have my own email servers (on-premises servers), and I subscribe to EOP for email protection services only.
簡單Simple

如需移轉至 Microsoft Exchange Online 電子郵件的資訊,請參閱 <移轉至 Office 365 的多個電子郵件帳戶的方式For information about migrating your email to Microsoft Exchange Online, see Ways to migrate multiple email accounts to Office 365.

Office 365 郵件流程基礎 (英文) 簡介Introduction to the basics of Office 365 mail flow

Office 365 用來路由傳送的電子郵件的網域,如 contoso.com。當您設定 Office 365 中的電子郵件時,您通常是從切換您取得當您第一次註冊 Office 365 時的預設網域 (結尾的網域。 onmicrosoft.com) 您組織的網域。使用的網域註冊機構 (例如機構 GoDaddy、 HostGator、 或 Moniker) 以及呼叫網域名稱系統 (DNS) 的資料庫全世界系統管理網域名稱,例如 contoso.com。DNS 提供人們可讀取電腦 hostname 和網路設備所使用的 IP 位址進行對應。如果您是 DNS 的新功能,建議您閱讀DNS 基礎 (英文)。下列視訊提供一些有關 DNS 的功能及其運作方式的最重要概念概觀。Office 365 uses domains, like contoso.com, to route email messages. When you set up email in Office 365, you typically switch from the default domain that you got when you first signed up for Office 365 (the domain ending with .onmicrosoft.com) to your organization's domain. Domain names, like contoso.com, are managed by using a worldwide system of domain registrars (for example, GoDaddy, HostGator, or Moniker) and databases called the Domain Name System (DNS). DNS provides a mapping between human-readable computer hostnames and the IP addresses used by networking equipment. If you're new to DNS, we recommend that you read DNS basics. The following video provides you with a quick overview of some of the most important concepts about what DNS is and how it works.

了解如何 DNS 記錄控制郵件流程Understanding how DNS records control mail flow

在 Office 365 郵件流程,兩個的 DNS 記錄是特別重要: MX 記錄和 SPF 記錄。In Office 365 mail flow, two DNS records are particularly important: MX records and SPF records.

MX (郵件交換程式) 記錄提供輕鬆地知道要傳送電子郵件的郵件伺服器。您可以設想為郵寄地址類型的 MX 記錄。如果您想要接收所有的電子郵件至 anyone@contoso.com 定址的 Office 365,contoso.com 的 MX 記錄應指向 Office 365 和它看起來像下面範例:MX (mail exchanger) records provide an easy way for mail servers to know where to send email. You can think of the MX record as a type of postal address. If you want Office 365 to receive all email addressed to anyone@contoso.com, the MX record for contoso.com should point to Office 365, and it will look like the following example:

Hostname: contoso-com.mail.protection.outlook.com
Priority: 0
TTL: 1 hour

SPF (寄件者原則架構) 記錄會在 DNS 中的特殊格式化的 TXT 記錄。SPF 記錄確定該擁有網域的組織實際上傳送電子郵件從該網域。SPF 基本上是一種安全防護以確定某人不模擬其他組織。(此模擬通常稱為詐騙。)有網域擁有者,您可以使用 SPF 記錄來發佈的 IP 位址或已授權可在您的組織代理傳送電子郵件的子網路的清單。這可以是如果您想要從多個伺服器或服務使用不同的 IP 位址傳送電子郵件很有幫助。使用 Office 365 傳送所有郵件的組織的網域的 SPF 記錄看起來應該類似下列範例:SPF (sender policy framework) records are a specially formatted TXT record in DNS. SPF records make sure that only the organization that owns a domain is actually sending email from that domain. SPF is basically a security measure to make sure someone doesn't impersonate another organization. (This impersonation is often called spoofing.) As a domain owner, you can use an SPF record to publish a list of IP addresses or subnets that are authorized to send email on your organization's behalf. This can be helpful if you want to send email from multiple servers or services with different IP addresses. The SPF record for an organization's domain that uses Office 365 to send all their mail should look like the following example:

v=spf1 include:spf.protection.outlook.com -all

重要

您只能有一個 SPF 記錄每個網域。具有多個 SPF 記錄將會失效所有 SPF 記錄並導致郵件流程問題。You can only have one SPF record per domain. Having multiple SPF records will invalidate all SPF records and cause mail flow problems.

上述範例中的 SPF 記錄組態會告知收件者電子郵件從 Office 365 的 IP 位址傳送的電子郵件伺服器已獲得授權網域。因為最摩登的電子郵件伺服器查閱的網域 SPF 記錄他們接受從它的任何電子郵件之前,務必先設定郵件流程時設定在 DNS 中有效的 SPF 記錄。The SPF record configuration in the previous example tells the recipient email servers that email sent from Office 365's IP addresses are authorized for the domain. Because most modern email servers look up a domain's SPF record before they accept any email from it, it's important to set up a valid SPF record in DNS when you first set up mail flow.

MX 記錄影響垃圾郵件篩選How MX records affect spam filtering

最佳的郵件流程經驗特別適用於垃圾郵件篩選 — 建議貴組織的網域的 MX 記錄指向 Office 365。垃圾郵件掃描是 Office 365 服務的初始連線點。誰會傳送郵件、 最初發送郵件和行為的連線郵件伺服器,所有協助判斷訊息是否為合法的伺服器或垃圾郵件的 IP 位址。如果您的網域的 MX 記錄不會指向 Office 365,將不會是為有效的垃圾郵件篩選器。如果您的 MX 記錄不會指向 Office 365,會有一些有效服務利用為垃圾郵件的郵件和服務利用合法電子郵件為一些垃圾郵件。For the best mail flow experience-especially for spam filtering—we recommend pointing the MX record for your organization's domain to Office 365. Spam scanning is the initial connection point to the Office 365 service. Who is sending the message, the IP address of the server that originally sent the message, and the behavior of the connecting mail server, all help determine whether a message is legitimate or spam. If your domain's MX record doesn't point to Office 365, the spam filters won't be as effective. If your MX record doesn't point to Office 365, there will be some valid messages that the service misclassifies as spam and some spam messages that the service misclassifies as legitimate email.

這說,有需要網域的 MX 記錄以指向某處以外的 Office 365 的合法的業務案例。例如,組織的目的地的電子郵件可能需要一開始送達在另一個目的 (例如第三方封存解決方案),則可透過 Office 365 路由傳送,然後傳遞至您的組織信箱伺服器上的信箱。此設定可以藉由提供最佳解決方案以符合您的業務需求。With that said, there are legitimate business scenarios that require your domain's MX record to point to somewhere other than Office 365. For example, email destined for your organization might need to initially arrive at another destination (such as a third-party archiving solution), then route through Office 365, and then be delivered to mailboxes on your organization's mail server. This setup might provide the best solution to meet your business requirements.

不論您的需求,這個指南將協助您了解如何 MX 記錄、 SPF 記錄及連接器可能,必須設定同步處理。Whatever your needs, this guide will help you understand how your MX records, SPF records, and, potentially, connectors need to be set up.

相關資訊For more information

以下是與 Exchange Online 中的郵件流程相關的其他主題:The following are additional topics related to mail flow in Exchange Online:

驗證 Office 365 連接器以測試郵件流程Test mail flow by validating your Office 365 connectors

Office 365 郵件流程疑難排解Troubleshoot Office 365 mail flow

使用目錄架構邊緣封鎖以拒絕傳送至無效收件者的郵件Use Directory Based Edge Blocking to reject messages sent to invalid recipients

管理 Exchange Online 中公認的網域Manage accepted domains in Exchange Online

Exchange Online 中的遠端網域Remote domains in Exchange Online

Exchange Online 中的郵件格式和傳輸Message format and transmission in Exchange Online

Exchange Online 中設定外部該地址Configure the external postmaster address in Exchange Online

如何將多功能裝置或應用程式設定為使用 Office 365 傳送電子郵件How to set up a multifunction device or application to send email using Office 365