Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

o365 NAT Rules for MX100

Azimuth1
New here
‎Jan 3 2020 8:23 AM
‎Jan 3 2020 8:23 AM

o365 NAT Rules for MX100

I have inherited an existing MX100 firewall and it has a NAT rule for o365/Exchange/Hybrid.

Since a public IP is assigned for use with o365 email, I am thinking there is a better way to restrict inbound Microsoft traffic.  Currently inbound traffic from ANY is allowed.  I would like to tighten inbound email traffic without breaking something.  Has anyone else done this with an MX?

0 Kudos
Subscribe
2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jan 3 2020 1:22 PM
‎Jan 3 2020 1:22 PM

It's a real pain in the neck.

 

You need to load in all the IP address ranges:

https://docs.microsoft.com/en-us/office365/enterprise/urls-and-ip-address-ranges 

And the ranges change from time to time, so you need to keep checking back and updating them.

0 Kudos
Subscribe
In response to PhilipDAth
Aaron_Wilson
A model citizen
‎Jan 4 2020 7:11 AM
‎Jan 4 2020 7:11 AM

So Microsoft a few months ago started advertising how they had just a couple summaries that covered their entire suite of O365, etc. It was a fairly large range, but I was calling Bullock's on it since there was little documentation on it and their articles with the smaller summaries were not updated.

Now I can't find anything on those small summaries, so maybe they retracted it.
0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.