Day 13 – Exchange Online Mail Flow & Message Trace (Complete Guide)

By | February 27, 2026
2 Comments

In today’s Microsoft 365 Admin learning journey, we explored how emails move inside and outside the organization and how to troubleshoot delivery issues.

πŸ“Œ 1. Understanding Mail Flow in Exchange Online

Mail flow refers to how email messages travel:

  • Internal β†’ Internal
  • Internal β†’ External
  • External β†’ Internal

All mail flow configurations are managed in:

πŸ”— https://admin.exchange.microsoft.com

πŸ“Œ 2. Accepted Domains

Accepted Domains define which domains your organization can receive email for.

πŸ”Ή Types of Accepted Domains

1️⃣ Authoritative Domain

  • Most common type
  • Exchange Online hosts all mailboxes
  • If recipient not found β†’ NDR generated

2️⃣ Internal Relay

  • Used in Hybrid environments
  • If mailbox not found β†’ email forwarded to another system

πŸ“Œ 3. Mail Flow Rules (Transport Rules)

Mail flow rules allow administrators to:

  • Block specific keywords
  • Add disclaimers
  • Apply encryption
  • Redirect messages
  • Restrict attachment types
  • Send copies to compliance mailbox

πŸ› οΈ Practical Lab – Create a Mail Flow Rule

🎯 Scenario:

Block emails containing β€œConfidential Test”

πŸ”Ή Steps:

  1. Login to Exchange Admin Center
  2. Navigate to Mail Flow β†’ Rules
  3. Click + Add a Rule
  4. Name the rule: Block Confidential Test
  5. Under β€œApply this rule if”
    β†’ Select Subject or body includes
    β†’ Add keyword: Confidential Test
  6. Under β€œDo the following”
    β†’ Select Reject the message
    β†’ Add explanation text
  7. Click Save

βœ… Rule is now active.

πŸ“Œ 4. Message Trace (Email Troubleshooting Tool)

Message Trace helps admins:

  • Track delayed emails
  • Identify bounced emails
  • Check spam filtering status
  • Confirm successful delivery

πŸ”Ή Steps to Run Message Trace

  1. Go to Exchange Admin Center
  2. Navigate to Mail Flow β†’ Message Trace
  3. Click Start a trace
  4. Enter:
    • Sender email
    • Recipient email
    • Date range
  5. Click Search

You can see:

  • Delivered
  • Failed
  • Pending
  • Quarantined

πŸ“Œ 5. Email Authentication (SPF, DKIM, DMARC)

These DNS records protect your domain from spoofing.

πŸ”Ή SPF (Sender Policy Framework)

  • Defines authorized sending servers

πŸ”Ή DKIM (DomainKeys Identified Mail)

  • Digitally signs outgoing email

πŸ”Ή DMARC

  • Defines what to do if SPF/DKIM fails

These improve:

  • Email deliverability
  • Domain reputation
  • Security posture

🎯 Real-World Admin Scenario

User Complaint:

β€œMy client didn’t receive my email.”

Troubleshooting Checklist:

βœ… Run Message Trace
βœ… Check Quarantine
βœ… Verify Mail Flow Rules
βœ… Review Connectors
βœ… Validate SPF/DKIM/DMARC
βœ… Check if recipient server rejected

2 thoughts on “Day 13 – Exchange Online Mail Flow & Message Trace (Complete Guide)

  1. sang

    I was expecting the post to be published earlier. Thank you for sharing your insights

    Reply
    1. Jaspreet Post author

      Thank you so much for your kind words, It really motivates me to keep sharing practical Microsoft 365 learning content.

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *