We recently moved from on-perm Exchange to Exchange online (365).
We used Ironport before that move and after the move. We're now with Hybrid configuration and all emails are received and sent from 365.
The Ironport is our MR for incoming emails. We've configured a connector on the 365 that whitelist the IP's of our Ironport.
The issue now is that all the emails we're getting are failing SPF, DKIM and DMARC and some of them are going to junk. This happens because the spam filtering of the 365 is saying that the Ironport IP's are not allowed to send from the external domains. It's like the 365 sees the Ironport as the source of the emails and it doesn't see or relate to the original IP of the original sender. What should I do in order to fix it?