This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

PAN-DB cloud list loading failed (ERROR:SSL connect error

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

PAN-DB cloud list loading failed (ERROR:SSL connect error

S.Ramesh960545
L2 Linker

‎02-16-2025 05:28 PM

The active firewall is connected while the passive is not connected. In that case sometimes we getting, 

PAN-DB cloud list loading failed (ERROR:SSL connect error

I believe we can ignore this error message if it's getting the error once in awhile since it could be failed due to SSL connectivity error to Palo Alto update server.

The concern is it because of passive firewall is not connected ?

Preview file
25 KB
0 Likes Likes
6 REPLIES 6

mshekh
L4 Transporter

‎02-16-2025 06:12 PM

Hi @S.Ramesh960545 ,

 

IF passive device management interface doesn't have internet access then you will see this message, however if you have internet connection via management interface then you have to check in path if there is anything blocking the traffic.

 



Best Regards,
Mohammad Talib
0 Likes Likes

S.Ramesh960545
L2 Linker
In response to mshekh

‎02-16-2025 06:27 PM

Hi, are you talking about the error log message or for the 

> show url cloud status, output

0 Likes Likes

mshekh
L4 Transporter

‎02-16-2025 07:14 PM

Hi @S.Ramesh960545 ,

 

Both error logs and show url-cloud status output, what status do you see with running the command show url cloud status and do you see any error in system logs.

 



Best Regards,
Mohammad Talib
0 Likes Likes

S.Ramesh960545
L2 Linker
In response to mshekh

‎02-16-2025 08:23 PM

The system log error PAN-DB cloud list loading failed (ERROR:SSL connect error 

can only be seen in active firewall.

> show url cloud status (active)

PAN-DB URL Filtering
License :                          valid                                   
libcurl resolver :                 threaded                                
Current cloud server :             serverlist.urlcloud.paloaltonetworks.com
Cloud connection :                 connected                               
Cloud mode :                       public                                  
URL database version - device :    20250203.20043                          
URL database version - cloud :     20250203.20043  ( last update time 2025/02/03 10:30:54 )
URL database status :              good                                    
URL protocol version - device :    pan/2.0.0                               
URL protocol version - cloud :     pan/2.0.0                               
Protocol compatibility status :    compatible

> show url cloud status (passive)

 

SRamesh960545_1-1739766175869.png

 

 

0 Likes Likes

mshekh
L4 Transporter

‎02-16-2025 09:52 PM

Hi @S.Ramesh960545 ,

 

Thanks for sharing the output as currently passive device is not connected to cloud due to that you are getting the error. 

 

Looks like passive device doesn't have internet access via management interface due to that you are seeing the error..

 

You may check with failover traffic to passive device as if you are using data interface in service route to connect internet then it's expected..



Best Regards,
Mohammad Talib
0 Likes Likes

PavelK
Cyber Elite
Cyber Elite

‎02-17-2025 03:53 PM

Hello @S.Ramesh960545

 

could you have a look into below KBs:

HA passive device keeps making failed PAN-DB cloud connection

Why Does the PAN-DB Version Not Update on the Passive Firewall?

 

Kind Regards

Pavel   

Help the community: Like helpful comments and mark solutions.
  • 747 Views
  • 6 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks