EDL dynamic list is URL access error

Reply
L4 Transporter

EDL dynamic list is URL access error

i  have created the new EDL  with this  URL  (http://panwdbl.appspot.com/lists/mdl.txtbut unable to fetch We have changed the service route with outside interface but the same issue was happening.

 

 

Joshan_Lakhani_0-1583264831448.png

 


Accepted Solutions
Cyber Elite

@Joshan_Lakhani,

Look through your traffic logs and ensure that you are actually allowing the traffic to pass. The error message you are being presented means that something is blocking the firewall from accessing that URL, if it simply couldn't process the list you would be getting a completely different error message. 

View solution in original post


All Replies
L3 Networker

Try using https://panwdbl.appspot.com/lists/mdl.txt

 

____________________

Just another I.T. Guy

L4 Transporter

Dear I have try both URL Using HTTP as well as HTTPS  but issue still same.

Cyber Elite

@Joshan_Lakhani,

Look through your traffic logs and ensure that you are actually allowing the traffic to pass. The error message you are being presented means that something is blocking the firewall from accessing that URL, if it simply couldn't process the list you would be getting a completely different error message. 

View solution in original post

L0 Member

This post pertains to version 9.1.4. I will post an update after upgrading.

 

It appears the the firewall is using TLS 1.2 when 1.3 is required by the Web server. (https://check.torproject.org/cgi-bin/TorBulkExitList.py).  

 

This is a firewall attempting to lookup Tor exit nodes.  The web server issues an "Encrypted Alert" with TLS 1.2

Screen Shot 2020-10-02 at 1.38.17 PM.png

 

This is a workstation using TLS 1.3 and receiving the expected list of Tor exit nodes.

Screen Shot 2020-10-02 at 1.28.40 PM.png

 

 

L0 Member

Did you resolve your issue with connecting to https://panwdbl.appspot.com/lists/ettor.txt

I’m also receiving a ‘URL access error.’ The system log displays a ‘ tls-edl-auth-failure’ while attempting to connect.

Cyber Elite

@willie.lasticly,

The panwdbl.appspot.com domain isn't active anymore. Luigi moved these to be hosted directly on GitHub instead, so you're going to have to modify your entries.

The new Tor Exit Nodes list can be found HERE and that link can simply replace what you already have configured without issue. The new GitHub page can be found at the following link.

 

https://github.com/jtschichold/panwdbl-actions

L0 Member

Thanks!  It works!

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!