We have policy to allow all servers access to microsoft then i have a firewall policy and set the destination to all microsoft internet service.
However i found some microsoft url still blocked by implicit denied and this mean microsoft internet service not contains all microsoft url. Anyone know how to solve this?
Â
Â
It is not matching Microsoft ISDB since those IP address belongs to Akamai.
You need to add Akamai ISDB to make it work.
All this IP are matching Akamai ISDB
Hansolo-kvm11 # diagnose internet-service match root 23.52.40.97 255.255.255.255
Internet Service: 7929993(Akamai-CDN), matched entry num: 3, matched num: 3
Hansolo-kvm11 # diagnose internet-service match root 23.40.40.33 255.255.255.255
Internet Service: 7929993(Akamai-CDN), matched entry num: 3, matched num: 3
Hansolo-kvm11 # diagnose internet-service match root 23.202.33.105 255.255.255.255
Internet Service: 7929993(Akamai-CDN), matched entry num: 3, matched num: 3
Hansolo-kvm11 # diagnose internet-service match root 23.40.40.82 255.255.255.255
Internet Service: 7929993(Akamai-CDN), matched entry num: 3, matched num: 3
You can also refer below link to check the Geo location where it shows IP belongs to Akamai
https://www.maxmind.com/en/geoip-web-services-demo
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
