Showing results for 
Search instead for 
Did you mean: 

Who rated this post

I've talked multiple times to PA support, but also Microsoft support.


from what i've learned, excluding all the office365 ranges should work to some extend, but not in all instances.

I've excluded all the ranges (see below current output from my minemeld instance).


Office365/teams uses it's own routing protocol(!!!) and bypasses the installed routes by global protect. This results in teams still routed through the VPN tunnel for some users. This is not a PA issue (i noticed other vendors have the same issues) but a Microsoft issue.

I've opted them implementing a fix so office365 can be forced to follow the routing table as any other normal application, but of course they are not responding.

My recommendation: use all the ranges provided (don't bother with fqdn or application executables) and log a case with Microsoft about this issue. 




Who rated this post