This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

URL Filtering Order of Operations

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience.

URL Filtering Order of Operations

Go to solution
dan731028
L3 Networker

‎08-19-2014 11:37 AM

Could someone tell me the order of operations the firewall uses when evaluating a site for URL Filtering (using PAN-DB if that makes a difference) in terms of how the firewall examines a URL and when it makes a match based on custom url categories, default categories, url filtering block list, and url filtering allow list.  I'm wanting to get a better understanding how the firewall does this.  I have a scenario where I added *.info to a custom URL category to block this for everyone in my environment.  I added a specific url www.mysite.info (for example only.  Not real URL) to a custom URL category that I want to allow for everyone in my environment.  Even though I did this, the site was still blocked.  I added www.mysite.info to to the URL filtering profile allow list and I could then get to www.mysite.info while other .info sites were blocke

What I'm really wanting to know is if the configuration described above is correct, or if there would be a better way to pull off what I am trying to do.  I wanted to be able to edit one or two custom URL custom categories instead of touching all of URL profiles.

Thanks!
-D

Labels:
0 Likes Likes
1 accepted solution

Accepted Solutions

Go to solution
hshah
L6 Presenter

‎08-19-2014 11:42 AM

Hello Dan,

Please find bellow document for order.

What order does the PAN use to check for URL categories?

Add following tow in allow list, it will work.

*.mysite.info/

mysite.info/

Regards,

Hardik Shah

View solution in original post

3 REPLIES 3

Go to solution
hshah
L6 Presenter

‎08-19-2014 11:42 AM

Hello Dan,

Please find bellow document for order.

What order does the PAN use to check for URL categories?

Add following tow in allow list, it will work.

*.mysite.info/

mysite.info/

Regards,

Hardik Shah

Go to solution
hvcomputech
L3 Networker

‎08-19-2014 11:55 AM

Remember that if you put it on the allow list, it will be allowed but it won't be logged.

Go to solution
dan731028
L3 Networker

‎08-19-2014 12:14 PM

Thanks,
I knew this info was out there somewhere.

0 Likes Likes
  • 1 accepted solution
  • 4425 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2025 - Palo Alto Networks