Hello,
I need to make filter-firewall, where all services from Microsoft will be allowed. The goal is to run forms.office.com after some authentification to Azure account. Here is my idea:
- make it by filter rule + static address list (destination of microsoft subnets) - but was not successful, can be due to old address-list.
- Add some domains, i have list but it is like *.office.com - i dont know how to add domain names with *
- I have seen raw rules or filter rules with advanced field “content” but i dont know how it works in this case.
- Or should i use L7 protocol?
Bonus: some phones using this wireless network disconnect from this wireless network when i drop all other traffic then traffic using 1st rule.
Hi there,
It sounds like you’re trying to create a filter firewall that allows all services from Microsoft and enables access to forms.office.com after authenticating with an Azure account. Here are some suggestions that may help you achieve this:
Ensure that you have the latest Microsoft subnets list in your static address list. You can get the updated list from Microsoft’s website or through PowerShell. You can also try creating a firewall rule that allows all traffic to and from the IP ranges associated with Microsoft services.
To add domain names with * in the firewall rule, you can use the wildcard character to represent any number of characters. For example, you can use *.office.com to allow all subdomains of office.com. Make sure that you only add trusted domains to your firewall rule.
The “content” field in raw rules or filter rules with advanced settings can be used to specify the type of traffic that should be allowed. For example, you can specify HTTP traffic to and from forms.office.com. However, this may require additional configuration and may not be necessary if you can achieve your goal using firewall rules that allow traffic to specific IP addresses or domains.
L7 protocol may be useful if you want to apply more granular controls to the traffic. However, it may require additional configuration and may not be necessary for your use case.
As for the issue with phones disconnecting from the wireless network when you drop all other traffic, it’s possible that the phone’s network settings are configured to only allow certain types of traffic. You may need to adjust the network settings on the phones to allow all traffic or configure your firewall rules to allow the necessary traffic for the phones to function properly.
I hope this helps! Let me know if you have any further questions or concerns.
Also explore: microsoft office 365 key