Strangeness with EDL - for Office 365

L4 Transporter

Strangeness with EDL - for Office 365



I have minemeld mining O365 address for my PA's.  Moved to the new API as well.


I have a hybrid Exchange setup.

I have moved some mailboxes up to the cloud

What I have found recently is mail stops flowing 


I have a rule that basically say


MS Public IPv4 to my beachhead port 25 smtp


O365 attempts to talk to me and gets blocked.

I check the src address and its in the EDL range.

If I clone the rule and place it below it and then commit and push (from panorama) 

once the push has finished it starts to work . same src ip and it matches the original policy.


almost like there is a TTL on the edl ip addresses 


Now I have the EDL set to refresh at 6am.  guessing I can change that to every hour ?


Any one else had issues





Cyber Elite


What's the target firewall and what PAN-OS version is it running? 

L4 Transporter





I have done a 


resquest system to look at the EDL - and the right ip address range is there

I have done a test and it matches against the right policy.


and the way I have been fixingin it recently is to do a 

request system refresh on the edl


Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!