05-05-2025 06:09 AM
Hi,
We want to integrate Cortex XDR EDL with PANGFW EDL. We did everything with this guide -- https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Manage-Exte...
After finishing setup we initiated test url access and it gave us url access error. In this case PANGFW cannot retrieve EDL added ip and domain names.
Can anyone help?
05-06-2025 01:56 PM
I assume that you can access the EDL with the information that you are using on the firewall? Have you verified that the firewalls traffic to the EDL is actually being allowed through the traffic logs?
05-07-2025 05:18 AM
Hi,
I found the problem reason. Problem was the security policy. After creating EDL list in PANGFW you should create block rule for edl inbound to outbound and outbound to inbound. After creating this rule External Dynamic List will reach to the Cortex XDR's EDL and it will retrieve the data (IP and Domain) to Firewall. In our environment Security Policy didn't configured correctly thats why this situation is happened.
Thanks for your time.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
