![]() ![]() Policies > Security > Add > Under Service / URL Category you can set the EDL per the screenshot:Īll done! You are now automatically blocking malicious threats with a curated dynamic list. MineMeld further integrates with the Palo Alto Networks AutoFocus contextual threat intelligence service, allowing you to identify high-value, targeted indicators in AutoFocus and block them on your next-generation firewall with export lists and MineMeld. Alternatively you can create a security policy that references your EDL: ![]() Set the list to Block (Site Access) and Block (User Credential Submission).Ĥ. The aggregator node into a format that can be consumed using the PAN-OS External Dynamic List (EDL) feature. Objects > URL Filtering > Click on your URL filter > Under External Dynamic URL Lists: I have a URL filtering policy so I am going to block the list as a category like so: Note that the PA will not download the list unless it is a security policy. – Check for updates, this is configurable, set to hourly. – If you enabled authentication on your feed, tick the client authentication box and fill in the credentials – Set the source URL to the https link from your minemeld feed. Create a new certificate profile and add the chain certificates from your Minemeld server:Ģ. Device > Certificate Management > Certificate Profile. Minemeld uses standard https for access to your feeds.ġ. The steps here pertain to a PA, however other vendors firewalls offer the same feature but the principal is the same. Each Feed URL below contains an external dynamic list (EDL) that is checked daily for any new endpoints added to the publicly available Feed URLs published by the SaaS application provider. ![]() We will now configure the External Dynamic List feature of a Palo Alto Firewall to consume your Minemeld feed. The EDL Hosting Service is a list of Software-as-a-Service (SaaS) application endpoints maintained by Palo Alto Networks. This post follows on from my article detailing the setup of Palo Alto Minemeld on Ubuntu 18.04. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |