You are the Office 365 administrator for Contoso, Ltd.
Some email messages sent from the trusted domain fabrikam.com are being rejected as
spam. Some of these email messages originate inside the fabnkam.com network, and some
of them originate from an application in the fabrikam.com co-located data center.
The fabrikam.com systems administrators have asked you to add their domain and the IP
addresses of the data center that hosts their external application to your list of safe senders.
You need to configure Microsoft Exchange Online Protection.
Which two actions should you perform? Each correct answer presents part of the solution.
A.
Configure a content filter to allow the fabrikam.com domain.
B.
Configure a mail flow rule to bypass spam filtering for the data center IP address range.
C.
Create a connection filter to allow the data center IP address range.
D.
Add the fabrikam.com domain as an accepted domain.
E.
Create an inbound connector for the fabrikam.com domain.
F.
Configure a mail flow rule to bypass spam filtering for the fabrikam.com domain.
http://kb.rolet.com/whitelist-domain-bypass-spam-filtering-microsoft-office-365/
and the connection filter policy: http://technet.microsoft.com/en-us/library/jj200718(v=exchg.150).aspx
0
0
Exchange Online has only one connection filter and isn’t possible create a new one.
I think the correct answer is B and F
0
0
Agree with you Mitch. The catch is that you cant create a new connection filter.
You can Configure a mail flow rule to to bypass spam filtering by adding a condition of defining an IP address or Range
0
0
And further, refer this article, titles “Configure the connection filter policy” where it talks of “editing the default connection policy”. See the use of the word policy, which is missing in the answer C.
https://technet.microsoft.com/en-us/library/jj200718(v=exchg.150).aspx
Further, it talks of “Scoping an IP Allow list exception for a specific domain”, which is what option B is.
So I propose that the answer should be B and F
0
0
hmm.. look at “your list of safe senders” word.
Even in connection filter there is option ‘safe list’ and third party trusted sender things, but i think the question creator mean is user-based safe sender.
–Create a domain or user-based safe sender or blocked sender list using transport rules–
https://technet.microsoft.com/en-us/library/dn198251%28v=exchg.150%29.aspx
0
0
so, Yes i agree with B and F
0
0
I think you guys wrong with B.
According to https://technet.microsoft.com/en-us/library/jj200718(v=exchg.150) it looks that connection filter is more suitable than mail flow.
Could you clarify your selection?
0
0
No, B is wrong.
I logged into a production O365 portal and went to EOP, and under “mailflow rule”, I can see the defined condition include:
1. Sender is…
2. Recipient is…
3. Sender is located… (choice = inside or outside organization)
4. Recipient is located…
5. Sender is a member of…
6. Recipient is a member of…
7. The subject or body include… (must specify string)
8. The sender address include… (must specify string, not IP)
9. The recipient address include… (must specify string, not IP)
10. Any attachment’s content include.
Meaning: IP address is NOT an option in “mailflow rule”. So B canNOT be the correct answer.
I think in this instance, it is just a case of the exam question being extremely poorly worded.
A, D, E are definitely wrong. F is definitely correct. So it is a toss between B and C.
However, as I just confirmed by logging into a production O365 portal, B is wrong because MailFlow rule simply does NOT even give you the option to specify “IP” as a condition, so that is out.
C has problem with wording (ie: missing the word “policy” and the fact that you cannot create additional connection filters), but is the only choice left that has the ability to achieve the requirement.
1
0
I checked my production environment and I have the following option under mail flow rules
“Apply this rule if | The Sender | IP address is in any of these ranges or exactly matches”
The input is an IP or IP range. So this can be done with a mail flow rule and thus B is an option. Further in my opinion B is more correct than C as C states “Create a connection filter” not modify the current filter and as has been said above you can not create a new connection filter.
So I say the answer is B and F
0
0
B does give you the option to set specific IPs to bypass EOP (sets SCL to -1). I configured this with Microsoft on the phone as well, so why can’t B be the answer as well?
0
0
I think C and F are the correct answer.
Edit the default connection filter to allow the data center IP address range
Configure a mail flow rule to bypass spam filtering for the fabrikam.com Domain
1
0
I’m going with C and F because of the following (much of which has already been stated above)
-The question specifically asks you to add a range of IP addresses. Modifying the default connection filter provides you with that capability. A mail flow rule does not (see annoying guys post above).
-Don’t get hung up on things like the word policy missing or thinking you need to create a new connection filter. These are exam dumps that have been know to be less than 100% verbatim.
https://technet.microsoft.com/en-us/library/jj200718(v=exchg.150)
0
0
After Tony Soprano’s comment below I’m not so sure now. The domain could be bypassed using a mail flow rule, but when going to “Mail Flow” -> New Rule and selecting the “Bypass Spam Filtering” template it clearly states:
Bypass spam filtering
You don’t need to create a transport rule to bypass spam filtering or mark email as spam for a sender or domain. Click here to use an allow or block list in the spam filter.
So the question becomes which is the preferred way?
I’m changing my answer to A and C…thanks for that info Mr. Soprano.
0
0
Justin is correct. Don’t listen to the rest of the comments.
0
1
This question is very easy… you can filter simply on IP or Domain with the Protection features
IP -> Connection Filter
Domain -> Content Filter (or Spam Filter depending on your interface)
For those who think you need to create MailFlow Rule, just READ the Admin Center Tooltip help. it will give you the solution. MANY MANY questions are simply about reading the tooltip or help text.
When you try to create a Mail Flow Rule to bypass SPAM Filtering, there is an help text just below the action saying “YOU DON’T NEED TO CREATE A TRANSPORT RULE TO BYPASS SPAM FILTERING OR MARK EMAIL AS SPAM FOR A SENDER OR DOMAIN…” “CLICK HERE TO USE AN ALLOW OR BLOCK LIST IN THE SPAM FILTER” -> like I said, many Exam question are answer simply by reading the Help messages right inside the Office 365 Admin center.
Just try it and you will see.
This question is pretty easy. No need to complexify things
0
0
TonyS can you even read the tooltip that you pasted in your comment?
Bypass spam filtering
You don’t need to create a transport rule to bypass spam filtering or mark email as spam for a ***sender*** or ***domain***. Click here to use an allow or block list in the spam filter.
The link redirects your to the Spam Filter policy section, not the Connection Filter section. In the Spam Filter section, you cannot specify IP addresses. Just email addresses and domain names.
The answer is still C and F, but for different reasons :-p
0
0
LOL you are welcome Justin. I’m trying to contribute too because you are helping us a lot here.
0
0
For me, correct answer is A and C. I can add the domina within the spam content and add the IP address range within the connection filter. Mail flow is an individual item in it self not part of the Exchange admin center protection menu, as indicated in the question.
0
0
Correct
0
0
Answer is A and C.
0
0
Correct
0
0
F is correct :
Use the EAC to create a transport rule to bypass spam filtering for a domain or user
https://technet.microsoft.com/en-us/library/dn198251(v=exchg.150).aspx
And the second choice is B or C : (depend range of datacenter)
https://technet.microsoft.com/en-us/library/jj200718(v=exchg.150).aspx
Use the EAC to edit the default connection filter policy
IPV4 IP addresses must be specified in the format nnn.nnn.nnn.nnn where nnn is a number from 0 to 255. You can also specify Classless Inter-Domain Routing (CIDR) ranges in the format nnn.nnn.nnn.nnn/rr where rr is a number from 24 to 32. To specify ranges outside of the 24 to 32 range, see Additional considerations when configuring IP Allow lists.
To specify a CIDR IP address range from /1 to /23, you must create a Transport rule that operates on the IP address range that sets the spam confidence level (SCL) to Bypass spam filtering…..
But for answer C “Create” is not correct.
So the answer is B and F.
I agree with budi
0
1
This question is a hot mess. We need to add an IP range and a domain name. OK, let’s look at our options:
** A. Configure a content filter to allow the fabrikam.com domain. **
In the admin interface, “Content Filters” are (now?) called “Spam Filter”, but PowerShell still calls it ContentFilter.
And, you *can* use a Content Filter to allow the domain:
`On the Allow Lists page, you can specify entries, such as senders or domains, that will always be delivered to the inbox. Email from these entries is not processed by the spam filter`
– https://technet.microsoft.com/en-us/library/jj200684(v=exchg.150).aspx
** B. Configure a mail flow rule to bypass spam filtering for the data center IP address range. **
On the TechNet page for mail flows in Exchange Online, they say to actually use a Content Filter for this:
`You can add a trusted partner’s IP address to a safe list to ensure that messages they send to you are not subject to anti-spam filtering. To do this, you can use the connection filter’s IP Allow list. For more information, see Configure the Connection Filter Policy.`
– https://technet.microsoft.com/en-us/library/exchange-online-mail-flow.aspx
That’s actually… kind of/almost… doing (C). But — AnnoyingGuy’s claim that IP address can’t be used as a condition for a Mail Flow rule is WRONG. See TechNet here: https://technet.microsoft.com/EN-US/library/jj919235(v=exchg.150).aspx and search for `This condition matches messages where the sender’s IP address falls within the specified ranges.`
So this works.
** C. Create a connection filter to allow the data center IP address range. **
TechNet talks about **configuring** a connection filter to add an IP Allow list here: https://technet.microsoft.com/en-us/library/jj200718(v=exchg.150).aspx
And that sounds perfect. The catch here is the answer says *Create* a connection filter. And you can’t create one in Exchange Online. There is only one. You can *configure* it, but not *create* one. Maybe just bad question wording? But I’m ruling this out because of the create/configure verb.
** D. Add the fabrikam.com domain as an accepted domain. **
An “accepted domain” is a domain Exchange will receive mail *for*, e.g, *your* domain. This is not what we want.
https://technet.microsoft.com/en-us/library/jj945194(v=exchg.150).aspx
** E. Create an inbound connector for the fabrikam.com domain. **
Inbound connectors are used to route mail from your own On-Prem Exchange into O365 Exchange.
https://technet.microsoft.com/en-us/library/dn751020(v=exchg.150).aspx
Not applicable to SPAM management.
** F. Configure a mail flow rule to bypass spam filtering for the fabrikam.com domain **.
You can use a Mail Flow rule to bypass spam by domain. See TechNet:
– https://technet.microsoft.com/en-us/library/dn798345(v=exchg.150).aspx
– https://technet.microsoft.com/EN-US/library/dn198251(v=exchg.150).aspx
As noted by others, when you try to do this, Exchange Online pops up a tip that pushes you to do this with a Content Filter (answer A), however.
So A and F are valid — but each would only handle the domain filtering.
C is almost valid – if it just said “Configure” instead of “Create” for IP filtering. But B is valid for IP filtering.
And Office 365 pushes you to do A instead of F.
So I’m going with A and B.
1
0
All wrong!
Spam filtering is for spam managing. When an email comes in, a comfort level value (CLV) is added. Spam filtering allows you to manage and handle the email or give it a higher value according to your settings.
Content filtering is also called spam filtering.
Connection filtering is based on ip, country or language. If other filters are configured, they take higher precedence. Spam filtering will be last on the list.
0
0
Mail flow is after all filters are applied and is basically very very last on the list.
0
0
There was a similar question on this earlier and the points the questions wants to highlight are
1. Domain Name and 2 IP address.
The Previous answers ( I forgotten the question number) but asnwers were
Spam/Content Filter ( International Spam)
Connection filter ( Block Ip list)
The same logic applies here
A and C – Content for the domain name and Connection filter for the Ip addresses.
0
0
So I’m totally confused. I’ve read all of these .. and it’s not clear for me.
Which is the correct answer?
0
0
I dont know who the admin is but I would love to donate my 122q vce to the site. I enjoy the forum tremendously. It helped me pass and become a MCSA
0
0
ABCF can all achieve the same goal, although C has some wording issue.
But as Andres pointed out, the question said: You need to configure *** Microsoft Exchange Online Protection ***.
What is under Exchange Online Protection? content filter, not mail flow rule.
A and C is the correct answer.
0
0
A and C for sure.
As stated in Microsoft Official Course. That is the way Microsoft wants us to answer.
“Exchange Online provides a connection filter that enables you to configure filtering based on IP addresses, with separate allow and block lists.”
For Content Filter (=Spam Filter): “Under Applied To, select conditions such as the recipient is, the recipient is a member of a group, or the recipient is a member of a domain as discussed in the earlier topic on Configuring Malware.”
and the tip in the screen:
“Domain allow list:
Always deliver email from the following domains to the inbox.”
0
0
And to be more precise, in the Exchange Online Admin Center, when creating a by-pass spam filtering Rule, you get the Tip: “You don’t need to create a transport rule to bypass spam filtering or mark email as spam for a sender or domain. Click here to use an allow or block list in the spam filter”
So I keep:
A
C
0
0
Scoping an IP Allow list exception for a specific domain
In general, we recommend that you add the IP addresses (or IP address ranges) for all your domains that you consider safe to the IP Allow list. However, if you don’t want your IP Allow List entry to apply to all your domains, you can create a Transport rule that excepts specific domains.
For example, let’s say you have three domains: ContosoA.com, ContosoB.com, and ContosoC.com, and you want to add the IP address (for simplicity’s sake, let’s use 1.2.3.4) and skip filtering only for domain ContosoB.com. You would create an IP Allow list for 1.2.3.4, which sets the spam confidence level (SCL) to -1 (meaning it is classified as non-spam) for all domains. You can then create a Transport rule that sets the SCL for all domains except ContosoB.com to 0. This results in the message being rescanned for all domains associated with the IP address except for ContosoB.com which is the domain listed as the exception in the rule. ContosoB.com still has an SCL of -1 which means skip filtering, whereas ContosoA.com and ContosoC.com have SCLs of 0, meaning they will be rescanned by the content filter.
To do this, perform the following steps:
1.In the EAC, navigate to Mail flow > Rules.
2.Click Add Icon and then select Create a new rule.
3.Give the rule a name and then click More options.
4.Under Apply this rule if, select The sender and then choose IP address is in any of these ranges or exactly matches.
5.In the specify IP addresses box, specify the IP address or IP address range you entered in the IP Allow list, click Add Add Icon, and then click ok.
6.Under Do the following, set the action by choosing Modify the message properties and then set the spam confidence level (SCL). In the specify SCL box, select 0, and click ok.
7.Click add exception, and under Except if, select The sender and choose domain is.
8.In the specify domain box, enter the domain for which you want to bypass spam filtering, such as contosob.com. Click Add Add Icon to move it to the list of phrases. Repeat this step if you want to add additional domains as exceptions, and click ok when you are finished.
9.If you’d like, you can make selections to audit the rule, test the rule, activate the rule during a specific time period, and other selections. We recommend testing the rule for a period before you enforce it. Manage mail flow rules contains more information about these selections.
10.Click the save button to save the rule. It appears in your list of rules.
After you create and enforce the rule, spam filtering for the IP address or IP address range you specified is bypassed only for the domain exception you entered.
The right answer is B and F
0
0
A and C are the answers here. However, you can use Tranport rule to perform similar to what spam filter with domain filter but its usually required if you need complex filter criteria. Here is the link that will and your doubt.
https://technet.microsoft.com/en-us/library/dn198251(v=exchg.150)
A transport rule would be useful in this situation if you need to filter for complex criteria such as checking message headers or the names of attachments or if you want to add complex actions such as adding a disclaimer to the message or applying a time period where the rule is active. However, the preferred method to make sure emails from a specific sender or domain bypass your spam filter is to add them to your spam filter policy. Get started with this in the EAC by going to Protection Spam filte
0
0
The Question Specifically requires you to use EOP:
You need to configure Microsoft Exchange Online Protection.
Therefore Mailflow Rules are Eliminated as possibilities, as they are Exchange native features Not EOP.
Content Filters and Connection filters are the way to achieve the specific requirement of the question.
Go to Exchange Admin Center
>Protection
>Connection Filter
Modify the default and add the IP to the allowed list
Save
>Spam Filter
Modify Default and add Domain to Allow List
0
0
BTW, NEW 70-347 PDF Dumps from Google Drive for Free: https://drive.google.com/open?id=0B-ob6L_QjGLpfjdPREVKSzl1Qk92OExLdVF0RjN1QWZJdWhhbDEycFZKNzZMMUwtQ1pxeFE
0
0
I think A and C as well
0
0