Thursday, June 26, 2014

IP Addresses for Office 365

When implementing a hybrid configuration of Exchange Server and Office 365, the configuration wizard automatically limits connectivity to the Exchange server by setting address ranges on the receive connector of Office 365 in the on-premises Exchange. If you want the additional security of limiting access to the hybrid server at the firewall level, you can copy the configured addresses into your firewall rule.

Alternatively, if you prefer the following links provide lists of the IP addresses used by Office 365 services.

Exchange Online Protection (EOP):
Forefront Online Protection for Exchange (FOPE)
Various Office 365 services:

1 comment:

  1. As an update to this, please note that this is the behaviour for Exchange 2010 Hybrid. For Exchange 2013 and Exchange 2016 the Default Front End connector is updated to use certificate authentication and TLS for connectivity with O365. No new connector is created and there is not list of IP address restrictions. If you want IP address restrictions, then you need to create your own based on the documentation of IP address in O365 provided by Microsoft.