Palo Alto Networks


Palo Alto Networks firewalls natively support importing openDBL lists as EDLs (also called External Dynamic Lists).
When using multiple lists from openDBL they might have some overlapping IP addresses which will trigger rule shadowing warnings on commit. These can be safely ignored.
A possible workaround is to utilize Minemeld from Palo Alto Networks, it can aggregate multiple feeds of both IPs and other IOCs and sanitize them.
Minemeld is available as a free opensource tool or as a supported service through Palo Alto Networks Autofocus.


Example from PANOS 8.1.4: