EDL Fail with error "Unable to fetch external dynamic list. Failure when receiving data from the peer. Using old copy for refresh"

EDL Fail with error "Unable to fetch external dynamic list. Failure when receiving data from the peer. Using old copy for refresh"

3206
Created On 04/04/25 20:24 PM - Last Modified 08/06/25 03:39 AM


Symptom


  • EDL not updating the entries.
  • Error message "Unable to fetch external dynamic list. Failure when receiving data from the peer. Using old copy for refresh" is displayed.
  • Another similar error is as below.
  • EDL server certificate authentication failed. A local copy of associated external dynamic list will be used, so it won't impact your policy. EDL Name: , EDL Source URL: https://<URL>/, CN: *.<wildcard>, Reason: self signed certificate in certificate chain

Environment

Cause


  • The error message indicates that the EDL server certificate authentication had failed.
  • The full chain that is presented by the server needs to be be presented and not just the what is seen on a browser.

Resolution


  1. Review the URL on SSL Labs (ssllabs.com) to get the full certificate chain that is being requested.
  2. Download the all certificates requested by the server.
  3. Upload all certificates to the firewall.
  4. Add CA certificates to the a Certificate profile.
  5. Assign the Certificate profile the the EDL.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sddFCAQ&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail