https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/153687#M50710 <P>Thank you for the update and we are considering using Mine Meld.</P><P>&nbsp;</P><P>Jeff</P> Fri, 21 Apr 2017 19:36:47 GMT jeff6strings 2017-04-21T19:36:47Z https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/152566#M50438 <P>In referencing the link below (FAQ - Office 365 Access Control), I'm concerned with a destination in the Security Policy for Office 365. What is everyone else doing for destination? The list of IP addresses for Office 365 Business products is long and ever changing <EM>or&nbsp;</EM>can a URL Category be used in the Security Policy using the published FQDNs in the link below?</P><P>Appreciate any feedback.</P><P>Jeff</P><P>&nbsp;</P><P><A href="https://live.paloaltonetworks.com/t5/Management-Articles/FAQ-Office-365-Access-Control/tac-p/152427#M4237" target="_self">FAQ - Office 365 Access Control</A></P><P>&nbsp;</P><P><A href="https://support.office.com/en-us/article/Office-365-URLs-and-IP-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2#bkmk_mobile" target="_blank">Office 365 IPs and FQDNs</A></P> Thu, 13 Apr 2017 14:18:06 GMT https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/152566#M50438 jeff6strings 2017-04-13T14:18:06Z https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/152574#M50440 <P>I haven't gotten there myself, but I am unfortunately all too familiar with your problem and I share your pain, but what my environment has chosen to do, I can't recommend to anyone. so that said...</P><P>&nbsp;</P><P>you may want to consider Palo Alto's Mine Meld which is a free, open source project. I believe the intent was initially to take in various threat intelligence feeds and compile them into EDL/DBLs that could be used on the PA, but they also include a list specifically for O365 which they claim is kept up to date.</P><P>&nbsp;</P><P><A href="https://www.paloaltonetworks.com/products/secure-the-network/subscriptions/minemeld" target="_blank">https://www.paloaltonetworks.com/products/secure-the-network/subscriptions/minemeld</A></P><P><A href="https://live.paloaltonetworks.com/t5/MineMeld-Articles/How-to-Safely-Enable-access-to-Office-365-using-MineMeld/ta-p/120280" target="_blank">https://live.paloaltonetworks.com/t5/MineMeld-Articles/How-to-Safely-Enable-access-to-Office-365-using-MineMeld/ta-p/120280</A></P><P>&nbsp;</P><P>hopefully someone with more/better experience than I will chime in, but this may be a good starting point for you.</P><P>&nbsp;</P><P>ETA: Just taking a glance at it, it looks like PA is basically offering a 'recipe' to harvest a list of IPs and domains from various published lists, which includes Microsoft's own.</P> Thu, 13 Apr 2017 14:30:48 GMT https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/152574#M50440 bradk14 2017-04-13T14:30:48Z https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/153687#M50710 <P>Thank you for the update and we are considering using Mine Meld.</P><P>&nbsp;</P><P>Jeff</P> Fri, 21 Apr 2017 19:36:47 GMT https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/153687#M50710 jeff6strings 2017-04-21T19:36:47Z https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/273897#M75089 <P>Jeff,</P><P>&nbsp;</P><P>Are the links (config ) available now.&nbsp; The links above are broken or the content has been removed.</P><P>&nbsp;</P><P>Phil</P> Fri, 28 Jun 2019 17:22:27 GMT https://live.paloaltonetworks.com/t5/general-topics/office-365-security-policy-question/m-p/273897#M75089 NS-NetSec 2019-06-28T17:22:27Z