1. Open Organization Settings by clicking the gear icon in the upper right hand corner of the navigation.
2. Select the organization you would like to turn dynamic blocking on, scroll to the Network section and click Enable.

This enables dynamic block lists to be serves from the sensor (this can take up to 24 hours to become fully functional)

There are options to consume 3 different URL’s into the dynamic block list configuration of the firewall.

http://sensorip/palo/ips.txt contains IP addresses that are added to the list.

http://sensorip/palo/domains.txt contains domains that are added to the list.

http://sensorip/palo/urls.txt contains URLs that are added to the list.

Below is documentation from vendors on how to enable dynamic block list functionality in various platforms.

FirePOWER: https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-firepower-services/200449-Configure-IP-Blacklisting-Using-Cisco-S.html#anc8

Fortinet: https://help.fortinet.com/fos60hlp/60/Content/FortiOS/fortigate-whats-new/security-external-block-list.htm

Palo Alto: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFOCA0