Content translations are temporarily unavailable due to site maintenance. We apologize for any inconvenience. Visit our blog to learn more.
01-03-2025 02:43 PM
Hello Team,
We are experiencing an issue with URL filtering on a Palo Alto PA-440 running version 11.1.4 -h7. Despite having valid licenses, URL filtering is not functioning as expected.
Here’s what we’ve tried so far:
Cleared the cache and deleted the URLs from the database multiple times.
Created rules with custom URL categories, ensuring all possible URLs and subdomains are included.
However, the traffic still hits the "interzone-deny" rule.
when we removed the security profiles and set "any any" in all fields, URL filtering worked. It appears that the URL filtering database might not be functioning properly.
Has anyone encountered a similar issue? Any suggestions or advice on how to resolve this?
Looking forward to your insights.
01-05-2025 06:01 PM
Hello @Jagdeep1 ,
Can you provide more context on the security policy with an example?
Also do you have SSL decryption enabled?
Olivier
PCSNE - CISSP
Best Effort contributor
Check out our PANCast Channel
Disclaimer : All messages are my personal ones and do not represent my company's view in any way.
01-05-2025 10:20 PM
I advise you to take a pcap of the traffic you are trying to allow and check the SNI field on the server certificate when connecting to the website, that specific field is the field the Palo sees to determine the URL in question, sometimes the SNI would be a non-related to the URL we think we are allowing
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
