PaloAlto Firewall is accessing an unknown URL "prod.itpdownloads.paloaltonetworks.com" during signature updates

PaloAlto Firewall is accessing an unknown URL "prod.itpdownloads.paloaltonetworks.com" during signature updates

9331
Created On 01/07/20 01:19 AM - Last Modified 01/07/20 01:45 AM


Symptom


Around since November 2019, PaloAlto Firewall has been accessing an unknown URL "prod.itpdownloads.paloaltonetworks.com" during signature updates.
Because of this behavior, if your system is configured not to allow  firewall management traffic to access this URL, the traffic will be blocked, and thus signature updates will fail.

 

Environment


Any PAN-OS (Firewall and Panorama)

Cause


This is expected behavior due to a change in Palo Alto Networks Content Delivery Network (CDN) infrastructure.

 

Resolution


If you are failing in signature updates by not allowing "prod.itpdownloads.paloaltonetworks.com", allow the URL as well as "updates.paloaltonetworks.com" and "downloads.paloaltonetworks.com".

 

Additional Information


Please check PAN-OS Administrator's Guide for  the latest information on the URLs that PAN-OS devices access for signature updates.
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PO5hCAG&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail