How to inspect email contents within outlook.office365.com?

Reply
Highlighted
L4 Transporter

How to inspect email contents within outlook.office365.com?

I have decryption turned ON for outlook.office365.com url but firewall cannot really inspect the contents that are inside the email. Is it because Microsoft encrypts the email and Palo doesn't know how to decrypt it? has anyone tried decrypting outlook email traffic and successfully log the data files inside them?

Highlighted
Cyber Elite

Hi @SThatipelly 

What PAN-OS version do you have installed? It could be related to the protocol http/2 and because of that the firewall does not unterstand it and cannot see and block/log files.

Maybe it is the same with a case that I have opened some months ago where a firewall on PAN-OS 8.1 was not able to block files on a specific website. What the exact reason was I would have to check again, but at least this one isn't fixed in PAN-OS 9.1.

Highlighted
L4 Transporter

@vsys_remo I'm running 9.0 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!