https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174584#M62 <P>I'm not sure what you mean by cascade. &nbsp;But the PA rule base is such that if you match the conditions in that rule it applies and the rule is operative and further processing stops. &nbsp;</P><P>&nbsp;</P><P>If you don't match the conditions the next rule is check and so on down the rule base until a match is found or there are no more rules and the default action occurs.</P><P>&nbsp;</P><P>So as soon as you match the web filtering rule and evaluate it further processing stops.</P> Mon, 04 Sep 2017 12:07:00 GMT pulukas 2017-09-04T12:07:00Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174504#M61 <P>To the world, creating Security rule for a specific user (call it, a rule to permit access dodgy website access), what's involved in "cascading" the rule - so, if there's no matches on that rule, that same user would be challenged against a General Web Access Rule?&nbsp; Is it possible to cascade the rules?&nbsp; Regards, Christopher</P> Sun, 03 Sep 2017 23:15:32 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174504#M61 chriss2011 2017-09-03T23:15:32Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174584#M62 <P>I'm not sure what you mean by cascade. &nbsp;But the PA rule base is such that if you match the conditions in that rule it applies and the rule is operative and further processing stops. &nbsp;</P><P>&nbsp;</P><P>If you don't match the conditions the next rule is check and so on down the rule base until a match is found or there are no more rules and the default action occurs.</P><P>&nbsp;</P><P>So as soon as you match the web filtering rule and evaluate it further processing stops.</P> Mon, 04 Sep 2017 12:07:00 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174584#M62 pulukas 2017-09-04T12:07:00Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174791#M63 <P>Thanks "<A href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/9524" target="_self"><FONT color="#333333">pulukas</FONT></A> " - thinking maybe of another way in answering question, saying ...</P><P>&nbsp;</P><P>* If one Rule has a specific URL-filter applied (and want to apply this to a specific user), how do I configure it to check "just one custom category" then ...</P><P>* Fall down to the next rule</P><P>&nbsp;</P><P>So just test one (1) custom category?&nbsp; Vs a url filter that tests all categories?</P><P>&nbsp;</P><P>&nbsp;</P> Mon, 04 Sep 2017 23:36:44 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174791#M63 chriss2011 2017-09-04T23:36:44Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174863#M64 <P>No, this is just not how firewalls in general work. &nbsp;Not just Palo Alto.</P><P>&nbsp;</P><P>They operate on a a match and done basis.</P> Tue, 05 Sep 2017 09:35:38 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/174863#M64 pulukas 2017-09-05T09:35:38Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/175268#M65 <P>Thanks "pulukas" - something tells me what I'm asking is still not coming across correctly (not around the Access element, but around the "match only 1 URL" filtering), that's ok - I'll do some digging / testing / etc...</P> Wed, 06 Sep 2017 20:44:09 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/175268#M65 chriss2011 2017-09-06T20:44:09Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/175504#M66 <P>YEA!&nbsp; I found what I was looking for!&nbsp; Had to speak the language of the 'net! (tell it do vs want it do, etc...)</P><P>&nbsp;</P><P><A href="https://www.reddit.com/r/paloaltonetworks/comments/5ul5yx/file_blocking_exception_for_specific_websites/" target="_self">https://www.reddit.com/r/paloaltonetworks/comments/5ul5yx/file_blocking_exception_for_specific_websites/</A></P><P>&nbsp;</P><P>&nbsp;</P><P>Not sure of the compariable article within LIVE?</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 07 Sep 2017 20:05:56 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cascading-url-filters/m-p/175504#M66 chriss2011 2017-09-07T20:05:56Z