I've had to resort to setting up a few transport rules to help fight the insane amount of spam our Office 365 tenant receives.
I now have a rule that works, but also works too well and catches messages that should be allowed.
This rule basically blocks:
sender's address domain portion belongs to any of these domains: 'company.com'
and Is received from 'Outside the organization'
This is fine, but now I'm finding that some messages that are set to "auto-forward" to a user in our domain is also being blocked. It only seems that when someone within the organization emails an external email address that is set to forward back internally is blocked.
I can't seem to figure out the right combo to allow these through...help would be appreciated.