why don't we still not have the ability to automatically query https://endpoints.office.com/endpoints/Worldwide?ClientRequestId=<guid> and populate (predefined) FW aliases for all service areas and products, so that we easily can write a firewall rule that allows Exchange Server outbound connections to Exchange Online or Azure Core common services? that would be very helpfull, and avoids "any" rules...
such as "MicrosoftEndpoints_Exchange_993", "MicrosoftEndpoints_Skype_443", "MicrosoftEndpoints_Common_80", etc. and all these would be of type "Network" with relevant IPv4 ranges inside, obtained through the above service.
wouldn't that be great? Enterprise Players, such als PaloAlto have this for a longer time now....
https://forum.opnsense.org/index.php?topic=19472.msg89803#msg89803