/paloalto-dynamic-list

paloalto-dynamic-list

This page can be used for dynamic blocking list from Insign-IT

Config

Security Rule name:

Block Inbound InsignIT Lists
Block Outbound InsignIT Lists

External Dynamic Lists:

EDL - InsignIT-Blocklist-Outbound - https://raw.githubusercontent.com/insignit/paloalto-dynamic-list/main/outbound-block.txt
EDL - InsignIT-Blocklist-Inbound - https://raw.githubusercontent.com/insignit/paloalto-dynamic-list/main/inbound-block.txt

How to Add this to Palo?

First we need to create a external dynamic list
Alt text

Use the correct format. Look at the top of this Readme File. Beware you have to create 2 items (inbound and outbound).
Alt text

Ater creating a external dynamic list. We must sure to use this list within a Security Rule.
Create a security rule look at below: Alt text

Use the correct name format look at the top of this readme file. Beware you have to create 2 items(inbound and outbound). Alt text

Be aware this for Outbound Rule
Alt text

Be aware this for Inbound Rule
Alt text

Be aware this for Outbound Rule
Alt text

Use any
Alt text

For services we need to also block any
Alt text

We need to Block the traffic so define Block
Alt text

This is a example how it should be.
Alt text