EDL dynamic list is URL access error

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

EDL dynamic list is URL access error

L4 Transporter

i  have created the new EDL  with this  URL  (http://panwdbl.appspot.com/lists/mdl.txtbut unable to fetch We have changed the service route with outside interface but the same issue was happening.

 

 

Joshan_Lakhani_0-1583264831448.png

 

1 accepted solution

Accepted Solutions

@Joshan_Lakhani,

Look through your traffic logs and ensure that you are actually allowing the traffic to pass. The error message you are being presented means that something is blocking the firewall from accessing that URL, if it simply couldn't process the list you would be getting a completely different error message. 

View solution in original post

7 REPLIES 7

L3 Networker

Try using https://panwdbl.appspot.com/lists/mdl.txt

 

____________________

Just another I.T. Guy

Dear I have try both URL Using HTTP as well as HTTPS  but issue still same.

@Joshan_Lakhani,

Look through your traffic logs and ensure that you are actually allowing the traffic to pass. The error message you are being presented means that something is blocking the firewall from accessing that URL, if it simply couldn't process the list you would be getting a completely different error message. 

L0 Member

This post pertains to version 9.1.4. I will post an update after upgrading.

 

It appears the the firewall is using TLS 1.2 when 1.3 is required by the Web server. (https://check.torproject.org/cgi-bin/TorBulkExitList.py).  

 

This is a firewall attempting to lookup Tor exit nodes.  The web server issues an "Encrypted Alert" with TLS 1.2

Screen Shot 2020-10-02 at 1.38.17 PM.png

 

This is a workstation using TLS 1.3 and receiving the expected list of Tor exit nodes.

Screen Shot 2020-10-02 at 1.28.40 PM.png

 

 

Did you resolve your issue with connecting to https://panwdbl.appspot.com/lists/ettor.txt

I’m also receiving a ‘URL access error.’ The system log displays a ‘ tls-edl-auth-failure’ while attempting to connect.

@willie.lasticly,

The panwdbl.appspot.com domain isn't active anymore. Luigi moved these to be hosted directly on GitHub instead, so you're going to have to modify your entries.

The new Tor Exit Nodes list can be found HERE and that link can simply replace what you already have configured without issue. The new GitHub page can be found at the following link.

 

https://github.com/jtschichold/panwdbl-actions

Thanks!  It works!

  • 1 accepted solution
  • 13138 Views
  • 7 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!