https://live.paloaltonetworks.com/t5/general-topics/website-filtering-dillema/m-p/1232222#M124620 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/320999">@buppd96</a>,</P> <P>The examples that you have listed are all categorized as games, can you just block the category for students? Most schools that I've worked with will end up blocking games, proxy-avoidance-and-anonymizers, unknown, and newly-registered-domain to deal with this sort of thing. Then you can make exceptions for any particular domains that you actually want to allow.</P> <P>&nbsp;</P> <P>I'd also caution that you need policies to actually drive this and technology is just there as assistance and identification. You aren't going to be able to fully prevent students from bypassing filtering, they simply have too much time to try and find ways around your filtering and are too incentivized to do so.&nbsp;</P> Fri, 20 Jun 2025 13:45:36 GMT BPry 2025-06-20T13:45:36Z https://live.paloaltonetworks.com/t5/general-topics/website-filtering-dillema/m-p/1232217#M124619 <P data-unlink="true">Good morning, I've got a situation where some students are going to an inappropriate gaming site that also bypasses the content filtering I have in place and allows access to some adult content, this is one of the websites:&nbsp;<A href="https://friv2025.com," target="_blank">https://friv2025.com,</A>&nbsp;the issue I'm having is I can block this particular URL, but all they need to do is change the year in the URL and the site is again accessable, example: friv2024.com, friv2023.com, friv2018.com, etc.&nbsp; I've tried different wild cards (they seem ineffective since the year is in the parent domain and not a sub-domain), I've tried blocking by site IP's, tried looking up name servers for these sites and blocked those, I did find one of these sites, I think it was friv2018.com redirected to&nbsp;<A href="http://www.weslack.com," target="_blank">www.weslack.com,</A>&nbsp;however adding that weslack.com URL to my block list prevented direct access to that site, but did not stop any redirects to it via one of the "friv.com" URL's.&nbsp;</P> <P data-unlink="true">&nbsp;</P> <P data-unlink="true">I did find that cloudflare.com is what these sites are using, however I cannot block cloudflare since that would block many URL's that my programs use are dependant on cloudflare.&nbsp; &nbsp;I have a PA440 running PAN-OS&nbsp;<SPAN>11.1.4-h7, Global Protect 6.3.3, Dynamic Updates 8990-9489, and DLP 5.0.5.&nbsp; &nbsp;</SPAN></P> <P data-unlink="true">&nbsp;</P> <P data-unlink="true">Does anyone have a suggestion on how I could block access to all of the "friv.com" sites even if the students change the year in the URL without having to resort to doing any crazy and extraordinary configations to the firewall and/or client machines?</P> <P data-unlink="true">&nbsp;</P> <P data-unlink="true">Thanks.&nbsp;</P> Fri, 20 Jun 2025 11:54:46 GMT https://live.paloaltonetworks.com/t5/general-topics/website-filtering-dillema/m-p/1232217#M124619 buppd96 2025-06-20T11:54:46Z https://live.paloaltonetworks.com/t5/general-topics/website-filtering-dillema/m-p/1232222#M124620 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/320999">@buppd96</a>,</P> <P>The examples that you have listed are all categorized as games, can you just block the category for students? Most schools that I've worked with will end up blocking games, proxy-avoidance-and-anonymizers, unknown, and newly-registered-domain to deal with this sort of thing. Then you can make exceptions for any particular domains that you actually want to allow.</P> <P>&nbsp;</P> <P>I'd also caution that you need policies to actually drive this and technology is just there as assistance and identification. You aren't going to be able to fully prevent students from bypassing filtering, they simply have too much time to try and find ways around your filtering and are too incentivized to do so.&nbsp;</P> Fri, 20 Jun 2025 13:45:36 GMT https://live.paloaltonetworks.com/t5/general-topics/website-filtering-dillema/m-p/1232222#M124620 BPry 2025-06-20T13:45:36Z