https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314757#M81157 <P>Well, it could be blocked of you're blocking the High Risk URL category.&nbsp; However, the point I was trying to make is that if Palo has classified that site as High Risk, it's possible someone else has also classified it as a risky site.&nbsp; I'm not sure whether Firefox checks any kind of list for site reputations or anything like that (I haven't used Firefox regularly in over a decade), but if it does, it could be deciding to warn you for that reason.&nbsp; The warning doesn't look like a standard Palo Alto block, but rather a block in Firefox.&nbsp; You really should look at your firewall logs to confirm whether that site is being blocked or allowed.&nbsp; Have you checked there for a log entry?</P><P>&nbsp;</P><P>It could be a certificate issue, as one of the other comments suggested.&nbsp; If you're doing SSL decryption, I don't think Firefox honors the Windows trusted CA store.&nbsp; I think you have to import the cert directly into Firefox itself.&nbsp; Do you experience the same problem with other browsers?</P> Thu, 05 Mar 2020 18:20:13 GMT OwenFuller 2020-03-05T18:20:13Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314592#M81136 <P>Hi,&nbsp;</P><P>&nbsp;</P><P>I have configured the URLs to allow through the firewall with an alert category.&nbsp;</P><P>&nbsp;</P><P>The firewall is allowing the URL but user get the "warning: Potential Security Risk Ahead" page with Go Back (recommended) and Advanced option.</P><P>&nbsp;</P><P>Is there any technique to allow user directly go onto the URL page instead go to advanced and continue to the website?</P><P>&nbsp;</P><P>I have also sent a reclassification request to Palo Alto. It takes 48 hours based on the Palo documentation. I think this is not an issue here. Might be user need to change settings on to their web browser!!<span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="image006.jpg" style="width: 999px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/24241iB37B1C9BD3514E8C/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="image006.jpg" alt="image006.jpg" /></span></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>Thanks for your support.&nbsp;</P><P>&nbsp;</P><P>Regards,</P><P>CP</P> Thu, 05 Mar 2020 04:15:54 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314592#M81136 ChiragP 2020-03-05T04:15:54Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314614#M81138 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/104473">@ChiragP</a>&nbsp; Check if website have valid certificate. Mostly such errors are due to expired or invalid certificate on websites. Also you can try by adding website in trusted sites to avoid such errors.</P><P>&nbsp;</P><P>hope it helps!</P><P>&nbsp;</P><P>Mayur</P> Thu, 05 Mar 2020 06:27:34 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314614#M81138 SutareMayur 2020-03-05T06:27:34Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314730#M81147 <P>Palo Alto classifies this URL as High Risk.&nbsp; It could be that Firefox also does some checking of a list of its own, and has determined that it could be an unsafe site.<BR /><BR /></P><P><A href="https://urlfiltering.paloaltonetworks.com/query/" target="_blank">https://urlfiltering.paloaltonetworks.com/query/</A></P><UL class="list-unstyled query-result-ul"><LI><STRONG>Category</STRONG>: High Risk</LI><LI><STRONG>Description</STRONG>: Sites that were previously confirmed to be malicious but have displayed benign activity for at least 30 days. Bulletproof ISP-hosted sites and sites with an IP address from an ASN that is known to allow malicious content. Sites that are associated with confirmed malicious activity (for example, they share the same domain). Unknown sites are considered high risk until PAN-DB completes a site analysis and categorization of the site.</LI></UL> Thu, 05 Mar 2020 16:25:01 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314730#M81147 OwenFuller 2020-03-05T16:25:01Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314737#M81149 <P>Hello,</P><P>Are you performing SSL decryption? If yes it could be that the client does not trust the certificate that the PAN is using for the decryption.</P><P>&nbsp;</P><P>The alert selection means that the PAN will log the traffic. That is the only difference between Allow and Alert.</P><P>&nbsp;</P><P>Just a thought</P> Thu, 05 Mar 2020 17:37:02 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314737#M81149 OtakarKlier 2020-03-05T17:37:02Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314750#M81154 <P>Hi OwenFuller,</P><P>&nbsp;</P><P>So if Palo classifies the URL as HIgh Risk that could be also blocked, is that right?&nbsp;</P><P>&nbsp;</P><P>I think this could be a browser own check as Mayuer said, however, I would like to know what happens&nbsp;<SPAN>until PAN-DB completes a site analysis and categorization of the site. Is this blocking even though we put the URL under the alert category?</SPAN></P><P>&nbsp;</P><P>I will check today the browser setting and allow URL as trust.&nbsp;</P><P>&nbsp;</P><P>Thanks,</P><P>&nbsp;</P> Thu, 05 Mar 2020 18:08:08 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314750#M81154 ChiragP 2020-03-05T18:08:08Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314757#M81157 <P>Well, it could be blocked of you're blocking the High Risk URL category.&nbsp; However, the point I was trying to make is that if Palo has classified that site as High Risk, it's possible someone else has also classified it as a risky site.&nbsp; I'm not sure whether Firefox checks any kind of list for site reputations or anything like that (I haven't used Firefox regularly in over a decade), but if it does, it could be deciding to warn you for that reason.&nbsp; The warning doesn't look like a standard Palo Alto block, but rather a block in Firefox.&nbsp; You really should look at your firewall logs to confirm whether that site is being blocked or allowed.&nbsp; Have you checked there for a log entry?</P><P>&nbsp;</P><P>It could be a certificate issue, as one of the other comments suggested.&nbsp; If you're doing SSL decryption, I don't think Firefox honors the Windows trusted CA store.&nbsp; I think you have to import the cert directly into Firefox itself.&nbsp; Do you experience the same problem with other browsers?</P> Thu, 05 Mar 2020 18:20:13 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314757#M81157 OwenFuller 2020-03-05T18:20:13Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314760#M81159 <P>Also, check the URL filtering policy that is attached to your security policy.&nbsp; What are the actions for the financial-services and high-risk categories?</P> Thu, 05 Mar 2020 18:42:08 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314760#M81159 OwenFuller 2020-03-05T18:42:08Z https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314842#M81174 <P>Hi All,</P><P>&nbsp;</P><P>There was a problem with certificate. They have not changed the certificate when moving the site from staging environment to production.&nbsp;</P><P>&nbsp;</P><P>The action for financial services is allowed.</P><P>&nbsp;</P><P>So I can say that even if the Palo classifies the URL as a high risk but allow explicitly it works.&nbsp;</P><P>&nbsp;</P><P>Thanks for your time.&nbsp;</P> Fri, 06 Mar 2020 04:09:55 GMT https://live.paloaltonetworks.com/t5/general-topics/url-filtering-with-alert-category/m-p/314842#M81174 ChiragP 2020-03-06T04:09:55Z