Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
15555
Views
25
Helpful
7
Replies

Import of Office365 URLs and IPs into FMC/FTD2130 ACL(s)

Go to solution
brian.emil.harris
Level 1
Level 1

‎10-22-2018 08:48 AM - edited ‎02-21-2020 08:22 AM

I need to create an ACL (or multiple ACLs) on my FTD2130 to allow hosts to the huge list of IPs and URLs required for Office365 (located here: https://support.content.office.net/en-us/static/O365IPAddresses.xml )

 

How can I do this automatically/scriptomatically? I would really prefer not manually entering each IP/range or URL into the ACL(s).

6 people had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
bart.raat
Level 1
Level 1

‎10-25-2018 01:38 AM

You can use this: https://github.com/chrivand/Firepower_O365_Feed_Parser

This will fill object groups with the Office 365 URL's and IP's.

View solution in original post

7 Replies 7

Go to solution
MarcHop
Level 1
Level 1

‎10-24-2018 01:56 PM

I opened a case with TAC on this, and with my VAR. (This very list, actually.) There was no way they could find to script this and have it become a feed into the ACL.

 

0 Helpful

Go to solution
MarcHop
Level 1
Level 1
In response to MarcHop

‎10-25-2018 08:30 AM

I am LOVING the fact that the community just proved me wrong! THANK YOU!

 

0 Helpful

Go to solution
bart.raat
Level 1
Level 1

‎10-25-2018 01:38 AM

You can use this: https://github.com/chrivand/Firepower_O365_Feed_Parser

This will fill object groups with the Office 365 URL's and IP's.

Go to solution
brian.emil.harris
Level 1
Level 1
In response to bart.raat

‎10-25-2018 07:21 AM - edited ‎10-25-2018 07:33 AM

Good timing!  I was just forwarded this same link earlier in the week, and just yesterday implemented it.  I had planned to post the URL, but you beat me to it! :)

 

A caveat for anyone seeking to use this script:  Check the pull requests, as the original script imports the URLs with asterisks/wildcards, which don't work in the FMC.  The pull update cleans up some of the parsing, and strips the asterisks quite nicely.

 

The package contains two scripts - one authenticates to the FMC's REST API, the second does the download, parsing and update of the URL and IP objects you create as part of the package.  I'm setting up a scheduled task on a management system I have to run this at least once a week.

 

The pull update also adds in a requirements file so you can update your Python installation to the specific package/module versions required for the script to work.

Go to solution
ckleopa
Cisco Employee
Cisco Employee
In response to brian.emil.harris

‎12-11-2024 05:31 AM

Just curious,

Is there a reason you chose to use an external script vs what we currently have now with all our Office 365 applications or even the "Dynamic Attributes Connector" with the Dynamic Objects that processes and updates all those IP's dynamically?

 

0 Helpful

Go to solution
brian.emil.harris
Level 1
Level 1
In response to ckleopa

‎12-12-2024 09:04 AM

When did this become available?  I set up this script something like 6 years ago.  The firewall(s) that use it are getting decom'd soon, but I'd be interested in learning about what you're talking about.

0 Helpful

Go to solution
ckleopa
Cisco Employee
Cisco Employee
In response to brian.emil.harris

‎12-12-2024 09:28 AM

See our details on the Dynamic Attributes Connector here.

There is also a table with all the connectors and respective versions for them.

https://secure.cisco.com/secure-firewall/docs/cisco-secure-dynamic-attribute-connector

For the Applications based Office 365 controls they have been there for years. It's one of our tags that lists all applications under O365 we support.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card