12-09-2018 03:10 PM
Hi
I have minemeld mining O365 address for my PA's. Moved to the new API as well.
I have a hybrid Exchange setup.
I have moved some mailboxes up to the cloud
What I have found recently is mail stops flowing
I have a rule that basically say
MS Public IPv4 to my beachhead port 25 smtp
O365 attempts to talk to me and gets blocked.
I check the src address and its in the EDL range.
If I clone the rule and place it below it and then commit and push (from panorama)
once the push has finished it starts to work . same src ip and it matches the original policy.
almost like there is a TTL on the edl ip addresses
Now I have the EDL set to refresh at 6am. guessing I can change that to every hour ?
Any one else had issues
12-09-2018 07:49 PM
What's the target firewall and what PAN-OS version is it running?
12-09-2018 08:06 PM
pa-5220
8.0.12
I have done a
resquest system to look at the EDL - and the right ip address range is there
I have done a test and it matches against the right policy.
and the way I have been fixingin it recently is to do a
request system refresh on the edl
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
