External Palo Alto Dynamic List

Announcements

ATTENTION Customers, All Partners and Employees: The Customer Support Portal (CSP) will be undergoing maintenance and unavailable on Saturday, November 7, 2020, from 11 am to 11 pm PST. Please read our blog for more information.

Reply
Highlighted
L1 Bithead

External Palo Alto Dynamic List

Hi Team 

 

 

Have a PA220   licensed for Wild fire, Threat prevention, and PANDB URL filtering .

 

Though I had configured the External Dynamic List based on the best practice, I could not get the default  PaloAlto Dynamic IP lists feed : Palo Alto Networks - High-risk IP addresses and the Known malicious IP addresses  showing up 

 

 

Could someone please guide me on how to configure the prefined Palo Alto  list  ?

 

Thanks

RK

 

 


Accepted Solutions
Highlighted
L1 Bithead

The default list is not appearing because the PA is not having the Antivirus  installed . To get this please run the following command using the CLI.

 

"request url-filtering download status vendor paloaltonetworks "

 

Go to Devices\Dynamic Updates and do " check now "

 

The PA will download the Antivirus  -install the same 

 

Viola --- the default Dynamic IP list appears under Objects/External Dynamic List ...  :)

 

Regards

 

Rk

View solution in original post


All Replies
Highlighted
L3 Networker

Palo Alto Networks - High risk IP addresses and

Palo Alto Networks - Known malicious IP addresses

are selectable as source address or destination address in your security rules without any other prior configuration.

You can view them as Predefined in Objects > External Dynamic Lists if you wish

 

Hope that helps

 

Kind regards

Highlighted
L1 Bithead

Thanks for the reply.

 

Those two lists are not showing up under Dynamic list. I  too thought that after syncing with the license and other updates, I should be able to see those default list under External Dynamic list but it is not.

 

Is it possible to create them manually?

 

Regards

 

RK

 

 

Highlighted
Cyber Elite

@RanjithDass,

I'm going to guess that you are not running 8.0.* at all? 

Highlighted
L1 Bithead

Thanks Bpry for the reply .

 

 It is a  brand new PA220  and running on  8.0.6.

 

Regards

 

RK

Highlighted
Cyber Elite

@RanjithDass,

Well that is really weird, as it should have them included without you having to manually create them. That being said, if you do the following you should be able to create them manually.  

 

1) Create a new External Dynamic Lists entry and under Type, switch it to Predefined IP List. 

2) Under Source you'll have two options High risk IP addresses, and Known malicious IP addresses. 

Capture.PNG

Highlighted
L1 Bithead

 

 Thanks again --I know  :(

 

My license License partLicense part

 

I can create new EDL list but the default ones are not showing up 

 

the drop down options not showing upthe drop down options not showing up

Not sure why the default ones were not showing up 

 

Regards

 

Rk

Highlighted
Cyber Elite

@RanjithDass,

I would contact TAC or reinstall the OS at this point. These lists should be populating perfectly fine. 

Highlighted
L1 Bithead

Thanks again for the reply . 

There should be some steps on how to add it since i have tried  a factory reset and built it  from the scratch so definitely, a setup  issue somewhere 

 

Regards

 

Rk

Highlighted
L1 Bithead

The default list is not appearing because the PA is not having the Antivirus  installed . To get this please run the following command using the CLI.

 

"request url-filtering download status vendor paloaltonetworks "

 

Go to Devices\Dynamic Updates and do " check now "

 

The PA will download the Antivirus  -install the same 

 

Viola --- the default Dynamic IP list appears under Objects/External Dynamic List ...  :)

 

Regards

 

Rk

View solution in original post

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!