Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Sophos Firewall: O365/M365 Host Group

Disclaimer: This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment.


Overview

This recommended read is for the automatic pipeline creation and update of M365 Host objects from Microsoft in SFOS

Pre-requisite

Version 20 and later version

While this pipeline does it on the dynamically, i want to share the static XML with the community to reuse.
Date: 31.05.2024
Source of the Data: https://endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7 

M365_31052024.zip

Using XML 

Download the .zip. (Located at the bottom of this RR)  Unzip it once (you must get a .tar) and upload the .tar to the SFOS Appliance in Backup & Firmware - Import Export.

It’ll generate 36 Host Objects and 1 Host Group.


The Host Group covers all IP Addresses, public announced by Microsoft. 

By the way: Works only for V20.0 GA + 




Revamped(Added Overview,pre-requisite,horizontal lines and table of contents)
[edited by: Erick Jan at 2:20 AM (GMT -8) on 24 Dec 2024]
Parents
  • Great topic.

    Sophos could create an object within the firewall for these databases created by the community or by Labs. A type of service database.

    Microsoft Service
    Google Service
    AWS Service
    Whatsapp Service

    This makes it easier to implement new rules based on what was published there, without resorting to import.

Reply
  • Great topic.

    Sophos could create an object within the firewall for these databases created by the community or by Labs. A type of service database.

    Microsoft Service
    Google Service
    AWS Service
    Whatsapp Service

    This makes it easier to implement new rules based on what was published there, without resorting to import.

Children