NimbostratusImporting Exchange Online IP addresses into LTM configuration for Exchange 2016 and Office 365
I have just set up an environment using the iApp, and I noticed that it does not create a virtual server for incoming SMTP connections on port 25, so I created that manually.
Now I would like to restrict access to this virtual server to IP addresses that Microsoft use for their connections. There used to be an XML file containing all IP addresses, this is now being phased out (see https://docs.microsoft.com/en-us/office365/enterprise/office-365-ip-web-service for details). Instead there is now a huge list here: https://endpoints.office.com/endpoints/worldwide?clientrequestid=b10c5ed1-bad1-445f-b386-b919946339a7
The list is not static and gets updated at irregular intervals.
Would anybody have an idea whether it is possible to point the LTM at this list and extract the IP addresses from a specific section automatically?
My solution for now is to add the required IP addresses manually to a data group list that gets queried via an irule. Anything that doesn't match the list gets dropped. This list of course has to be updated regularly, is there a more elegant way?
Thanks in advance!
Gunde