In the exception setting for the Anti-Spyware Inline Cloud Analysis, a custom URL list appears in the pull down menu instead of an EDL

In the exception setting for the Anti-Spyware Inline Cloud Analysis, a custom URL list appears in the pull down menu instead of an EDL

1143
Created On 02/17/25 09:00 AM - Last Modified 10/21/25 22:36 PM


Symptom


In the exception setting for the Anti-Spyware Inline Cloud Analysis, there is a setting called "EDL URL". When trying to add an EDL, only a custom URL list appears in the pull down menu instead of an EDL.

 

Environment


  • Next Generation Firewall
  • Threat Prevention subscription

Cause


Firstly, it's normal to see a custom URL as an option. For the exception setting of the Anti-Spyware Inline Cloud Analysis, the firewall supports both custom URL and EDL.

 

Reference:

Administration Guide

Exclude from Inline Cloud Analysis > EDL URL > "External Dynamic Lists containing a series of URLs or a custom URL category."

 

The reason why an EDL is not shown as an exclusion is because the firewall does not have a valid EDL configuration.

 

Resolution


Please check the items below and make sure that the firewall has a valid EDL configuration.

 

  • The EDL type must be "URL list".

Note: If you are making a new EDL, please make sure to commit the configuration.

 

  • The EDL should have a list of entries. Otherwise, nothing will be excluded even if it's configured. Here is an example.

 

The following CLI commands might be useful for troubleshooting.

request system external-list refresh type url name <the name of the EDL>
request system external-list show type url name <the name of the EDL>

 

  •  The EDL is now shown in the pull down menu.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sdPICAY&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language