cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Office 365 and DNS/IP restriction Dynamic DNS object

Hi,

Our users travel a lot so they are seldom in our corporate network. And i would like to restrict all office applications (Word, Teams, Sharepoint, Excel) to Microsoft Office 365 URLs and IP address ranges.

https://docs.microsoft.com/en-us/office365/enterprise/urls-and-ip-address-ranges?redirectSourcePath=... 

The problem is that the IP address ranges change quite frequently so one option would be to use Dynamics FW-objects but is seems that ENS Firewall does not support this.

Is there any best practice for adding O365 URLs and IP address ranges to ENS firewall.

one example rule would be:

Teams.exe allow out 13.107.64.0/18, 52.112.0.0/14 UDP:3478,3479,3480,2481

Maintaining this manually is to much work.

Labels (1)
6 Replies
McAfee Employee vivs
McAfee Employee
Report Inappropriate Content
Message 2 of 7

Re: Office 365 and DNS/IP restriction Dynamic DNS object

Hello,

Thanks for your post.

If the feature is not available in the product and you would like to use in future or you are facing any issue in present in that case you can always raise a Product Idea.

https://kc.mcafee.com/corporate/index?page=content&id=KB60021 

Product Idea 

If you need some more information , I would like to request you to please open a Service Request with Technical Support Team so they can assist you accordingly.

Was my reply helpful?
If you find this post useful, Please give it a Kudos! l Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Re: Office 365 and DNS/IP restriction Dynamic DNS object

Thanks,

I'll open a case.

Microsoft has an API for the changing IP-ranges.

"The Office 365 IP Address and URL web service helps you better identify and differentiate Office 365 network traffic, making it easier for you to evaluate, configure, and stay up to date with changes. This REST-based web service replaces the previous XML downloadable files, which were phased out on October 2, 2018."

https://docs.microsoft.com/en-us/office365/enterprise/office-365-ip-web-service

McAfee Employee mmuthuga
McAfee Employee
Report Inappropriate Content
Message 4 of 7

Re: Office 365 and DNS/IP restriction Dynamic DNS object

If you are asking CIDR notation like 13.107.64.0/18 is supported by ENS firewall ? Yes ENS firewall supports CIDR notation to specify IP address blocks. I am attaching a screenshot to specify IP address in CIDR notation if this was your question.

Was my reply helpful?
If you find this post useful, Please give it a Kudos! l Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

McAfee Employee mmuthuga
McAfee Employee
Report Inappropriate Content
Message 5 of 7

Re: Office 365 and DNS/IP restriction Dynamic DNS object

I encourage you to submit a Product Enhancement Request(PER) instead of opening a support case for your requirement since this is a new feature and product enhancement.

https://kc.mcafee.com/corporate/index?page=content&id=KB60021

Was my reply helpful?
If you find this post useful, Please give it a Kudos! l Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Re: Office 365 and DNS/IP restriction Dynamic DNS object

McAfee Employee AdithyanT
McAfee Employee
Report Inappropriate Content
Message 7 of 7

Re: Office 365 and DNS/IP restriction Dynamic DNS object

Hi @lahteenj,

Kudos to you for the PER submission. This PER will go into Product Management team based on the number of votes this receives when it is opened for voting. You will be updated about the change of its status via email address as explained here.

Was my reply helpful?
If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!

Thanks and regards,
Adithyan T
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community