As part of a migration of Symantec Information Security products to the Google Cloud Platform, some customers using the DLP Cloud Services need to make changes in their environment.
For more information about this migration, please see the Product Advisory on the topic.
Instructions for any required changes are summarized at the following locations:
You use the DLP Cloud Service with your DLP Enforce Console, and want to verify your setup is ready in advance of the coming migration of the service to the Google Cloud Platform.
Customers using the DLP Cloud Service for Email with O365 in Reflecting mode need to follow steps in "B". Note that "Reflecting mode" means a mailflow as per the following:
End user email send => O365 Cloud => DLP Cloud Service for Email => O365 Cloud => End user email receipt
Customers using the DLP Cloud Service for Email in any other setup do not need to make further changes. Those setups include Forwarding mode (messages going to Email Security.cloud after DLP), as well as messages originating from a Gmail for Work setup.
Validating the Office365 Configuration for DLP Cloud Service for Email Reflecting Mode
Note:The following instructions reflect the Microsoft Exchange admin center user interface at the time this document was published. While the Microsoft Exchange user interface may change, the values you need to enter to configure the connection between Office 365 and Symantec Cloud Service for Email remain the same.
To log on to your Microsoft Exchange admin center account
To verify exceptions for the DLP Cloud Service IP address ranges:
*Current IP addresses for the service hosted in AWS are taken from the latest version of the Cloud Service for Email Implementation Guide, in the section "Configuring Office 365 to use Office 365 for email delivery (Reflecting mode)".
For cloud detectors in the US data center the list is:
For cloud detectors in the EU data center the list is: