This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
External Dynamic Lists not working
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- General Topics
- Re: External Dynamic Lists not working
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
External Dynamic Lists not working
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
10-17-2016 08:46 AM
Hi all,
I have configured EDL of type Dynamic URL Lists with the next configuration
Then in URL filtering profile the ransomwaretracker_URL category is configured as BLOCK and the Profile is applied in the Security rule.
It seems configured correctly, I can list the EDL in CLI, but if I try to go to listed URL, it does not blocked.
PAN is working with 7.1.2 version.
Thanks,
Jordi
16 REPLIES 16
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
10-17-2016 12:11 PM
the user is running 7.1.2 PAN-OS
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
10-17-2016 01:20 PM - edited 10-17-2016 01:27 PM
l have just tested trying using http, getting redirected to https. If it is listed on firewall through the cli that is fine, should work. Also could run test button to see if you are connected successfully. Should just work. Please follow link posted by BPry:
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
10-18-2016 05:13 AM
Hi all,
Thanks for your opinions. The device is a PAN 3020 and I think that the list are supported, the number of entries is ok.
I have tried to configure the list without https but continues without block the URLs listed in file.
The test source URL is correct, the list can be oppened.
The traffic do match in rule with the profile applied.
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
10-18-2016 06:06 AM
@COMIP I just tried to run that list on my own 3020 and while the link tests okay it wasn't able to actually pull anything from the list; I would assume because of the formatting. Can you run the command request system external-list show name (name) with the correct name of your list and see if there is actually anything within the list? You could also do a refresh instead of a show and monitor the specific job of the DBL refresh and see if it actually completes.
Related Content
- I need answer for this question . in Next-Generation Firewall Discussions
- Global protect VPN disconnecting multiple times in GlobalProtect Discussions
- How to get/send DNS logs to on-prem SIEM -- DNS Proxy + DNS Security in General Topics
- Cortex XDR Blockage activity in Cortex XDR Discussions
- Enforcing Global Protect only on remote sessions in General Topics
Like what you see?
Show your appreciation!
Click Like if a post is helpful to you or if you just want to show your support.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks