This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 0%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
Hello Everyone,
We use a 3rd party cloud hosted email protection system that we use for our Exchange 2013 user base. We just setup hybrid with Exchange Online and would like to start moving a set of our users to Exchange Online.
The user base on Exchange 2013 uses domain.com while the user base located on Exchange Online uses a child domain of my.domain.com.
Both domains are setup in O365 Admin Center.
I have the following rule created but it seems like the "The sender's domain is..." setting includes both domain.com AND my.domain.com. This caused ALL Exchange Online email to route out through our 3rd party cloud hosted email protection system.
Then I added an Exception of "sender's address domain portion belong to": 'my.domain.com'.
Name: Route domain.com to 3rd party cloud hosted email protection system
If the message:
sender's address domain portion belongs to any of these domains: 'domain.com'
Take the following actions:
Route the message using the connector named 'Outbound to 3rd Party Host Email Protection System'.
Except if the message:
Is sent to 'Inside the organization'
or sender's address domain portion belongs to any of these domains: 'my.domain.com'
This seems to work for the most part but the issue is if anyone with a my.domain.com account has forwarding enabled (which is alot), AND someone from the domain.com sends and email to them it will route out through our 3rd party email protection system.
Is there a better way to create a rule to route Exchange Online users with domain.com outbound through our hosted email protect system AND have our child domain users of my.domain.com route out via O365?
Thanks for any input!
Ian...
Based on my testing, the (The sender's domain is domain.com) in transport rule also contain the child domain of "domain.com". So, the only way is to use an additional filter in "Except if".
One small suggestion: move "Is sent to 'Inside the organization'" from except if to "Apply this rule if" (The sender is located Outside the organization). It could speed up the filter process.
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Any update about this thread now?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 52%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVI%3C/text%3E%3C/svg%3E)
Have a look at RouteBySender tool.