01-16-2024 06:03 AM
01-16-2024 06:06 AM
We have SSL decryption running on our PAN for selective URL categories however we noticed that at times PAN logs decrypt action for categories not included in decrypt rule. Any idea why this may be happening ? This is not always but we see many traffic/URL filtering logs that has proxy flag set to "yes" for categories we do not decrypt per decrypt rule.
01-17-2024 11:04 AM
Some URLs are in multiple categories.
For example dns.google is in in Computer-and-Internet-Info and Encrypted-DNS categories.
Check "URL Category List" value for the URL.
01-17-2024 09:51 PM
I did check and the URL is part of categories which are not part of decrypt rule. I suspect it is issue with proxy engine on PAN platform
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
