SRX Services Gateway
Highlighted
SRX Services Gateway

Wilcard DNS entry in security policys

a week ago

Hello,

 

We have a requirement to bypass the proxy for certain wildcard URL's e.g. "*.outlook.office.com" which is fine but we have the issue in terms of allowing this traffic through out SRX firewall when we don't have all the specific IP addresses to define at the destination address.

 

I have read that the SRX does not support wildcard DNS address book entries to define within a security policy.

 

I am looking for advice in what others have done in order to work around this. Or the alternative solutions you had to put in place?

Many Thanks!