The firewall is not downloading IP addresses from MineMeld. Based on the image, what most likely is wrong?
The firewall is not downloading IP addresses from MineMeld. Based on the image, what most likely is wrong?
The firewall is unable to download IP addresses from MineMeld because it is essential to select a Certificate Profile that contains the CA certificate when using an HTTPS URL as the source. This ensures that the firewall can authenticate the server that hosts the list, verifying its identity and establishing a secure connection. Without the proper CA certificates in the Certificate Profile, the firewall cannot properly authenticate the SSL/TLS connection, leading to failures in downloading the IP addresses.
D: First thing, download the certificate of the CA of the AutoFocus/MineMeld SSL certificate from the following link: https://certs.godaddy.com/repository/gd-class2-root.crt
D - "If the list source is secured with SSL (i.e. lists with an HTTPS URL), enable server authentication. Select a Certificate Profile or create a New Certificate Profile for authenticating the server that hosts the list. The certificate profile you select must have root certificate authority (CA) and intermediate CA certificates that match the certificates installed on the server you are authenticating."
the answer is D
D appears to be correct
common sense question, so D
D is valid choice I set this up just today (Pan-OS 9.1). It works perfectly without a cert profile BUT since this is sensitive data you shoud add a cert profile. this enables the firewall to verify whom it's talking to.