https://live.paloaltonetworks.com/t5/vm-series-in-the-public-cloud/knowledge-base-article-limiting-access-to-aws-s3-buckets/m-p/235965#M434 <P>Dear Knowledge Base Team,</P><P>&nbsp;</P><P>The article <A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClDICA0" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClDICA0</A> discussing Limiting access to AWS S3 buckets contains wrong instruction. The author did not understand what was the difference between AWS S3 service and S3 bucket. It is impossible to deny access to an S3 bucket using AWS IP address ranges.</P><P>&nbsp;</P><P>Instead, you should use URL-Filtering with a custom url category in order to filter the url with the S3 bucket name.</P><P>&nbsp;</P><P>Cheers,</P><P>&nbsp;</P><P>James Ren</P> Thu, 18 Oct 2018 09:18:49 GMT JamesRen 2018-10-18T09:18:49Z https://live.paloaltonetworks.com/t5/vm-series-in-the-public-cloud/knowledge-base-article-limiting-access-to-aws-s3-buckets/m-p/235965#M434 <P>Dear Knowledge Base Team,</P><P>&nbsp;</P><P>The article <A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClDICA0" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClDICA0</A> discussing Limiting access to AWS S3 buckets contains wrong instruction. The author did not understand what was the difference between AWS S3 service and S3 bucket. It is impossible to deny access to an S3 bucket using AWS IP address ranges.</P><P>&nbsp;</P><P>Instead, you should use URL-Filtering with a custom url category in order to filter the url with the S3 bucket name.</P><P>&nbsp;</P><P>Cheers,</P><P>&nbsp;</P><P>James Ren</P> Thu, 18 Oct 2018 09:18:49 GMT https://live.paloaltonetworks.com/t5/vm-series-in-the-public-cloud/knowledge-base-article-limiting-access-to-aws-s3-buckets/m-p/235965#M434 JamesRen 2018-10-18T09:18:49Z