creating security policy to allow specif users to use applications web-browsing and SSL with destination any with using SSL decryption policy which decrypt all.
after this policy there is implicit deny .
the issue that palo alto cant` detect youtube application , monitoring shows that is web-browsing is permitted and falsh is denied !!!!
how i can block youtube appliaction ?
i did create a deny rule to deny youtube but it didn`t work ,...
.the main issue that the device is not detecting Youtube-saftey application , the only application is detected is youtube-base.
as shown below only flash is detected ,, note that destination ip is related to google .. really i cant understand why ???
this can identify youtube with a destination ip ( google !!!!)...
Google made a change a few months ago to the way they implement YouTube Safety Mode, which affects our ability to accurately identify this traffic with our youtube-safety-mode App-ID signature. As such, the App-ID for YouTube Safety Mode will likely not show up anymore. If you would like to enforce YouTube Safety Mode, you can do this via a URL filtering feature, "SafeSearch Enforcement". When enabled, any Google, Yahoo or Bing web searches will be checked to make sure that the strictest Safe Search setting is enabled, and this applies to YouTube Safety Mode as well. If the settings are correct, the search is allowed. Otherwise, a block page is displayed, with instructions on how to correctly fix their settings. Once this has been done, all subsequent searches will go through. In order to ensure that YouTube Safety Mode is covered, please be sure to install content version 422 or later.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!