https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291537#M77282 <P>Is there any way to restrict amazon-cloud-drive-upload for certain websites?&nbsp;</P><P>&nbsp;</P><P>For example, say the website is <A href="http://www.mywebsite.com&nbsp;" target="_blank" rel="noopener">www.mywebsite.com&nbsp;</A> (public IP 1.1.1.1) and has an applet that allows users to upload files.&nbsp; When the user attempts to upload the files, the firewall detects this as application "amazon-cloud-drive-upload".&nbsp; You can't create a firewall rule that&nbsp; with a destination of 1.1.1.1 and allow app&nbsp;<SPAN>amazon-cloud-drive-upload</SPAN>, since that function is using amazon's IP address range (52.216.0.0/15). &nbsp; However, if you allow the application for that aws region, then these users can upload to any site that is in that region, which is not ideal.</P><P>&nbsp;</P><P>Hopefully, this makes sense</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 04 Oct 2019 20:25:53 GMT MikeC 2019-10-04T20:25:53Z https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291537#M77282 <P>Is there any way to restrict amazon-cloud-drive-upload for certain websites?&nbsp;</P><P>&nbsp;</P><P>For example, say the website is <A href="http://www.mywebsite.com&nbsp;" target="_blank" rel="noopener">www.mywebsite.com&nbsp;</A> (public IP 1.1.1.1) and has an applet that allows users to upload files.&nbsp; When the user attempts to upload the files, the firewall detects this as application "amazon-cloud-drive-upload".&nbsp; You can't create a firewall rule that&nbsp; with a destination of 1.1.1.1 and allow app&nbsp;<SPAN>amazon-cloud-drive-upload</SPAN>, since that function is using amazon's IP address range (52.216.0.0/15). &nbsp; However, if you allow the application for that aws region, then these users can upload to any site that is in that region, which is not ideal.</P><P>&nbsp;</P><P>Hopefully, this makes sense</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 04 Oct 2019 20:25:53 GMT https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291537#M77282 MikeC 2019-10-04T20:25:53Z https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291557#M77283 <P>Hello,</P><P>I dont quite follow. However if its using the app, then its probably AWS on the backend. Check the logs and it should show you.</P><P>&nbsp;</P><P>Regards,</P> Fri, 04 Oct 2019 21:17:30 GMT https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291557#M77283 OtakarKlier 2019-10-04T21:17:30Z https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291561#M77285 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/27580">@OtakarKlier</a>&nbsp;</P><P>&nbsp;</P><P>Yes, I meant to come back and delete the post. I was able to figure it out. I had to uncheck Log Container Page Only in my URL profile, to see the exact URL for aws. &nbsp;</P><P>&nbsp;</P><P>appreciate the reply though</P> Fri, 04 Oct 2019 21:39:24 GMT https://live.paloaltonetworks.com/t5/general-topics/restrict-amazon-cloud-drive-upload/m-p/291561#M77285 MikeC 2019-10-04T21:39:24Z