This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Who rated this post

Vickynet
L2 Linker

‎03-05-2024 05:51 AM

@M.Bathgate wrote:

 I need to allow files of a specific name of a specific type to be exempted from a security profile file type blocking rule .

Eg i want to allow a specific Chrome extension file (crx) from their webstore but no others .

The file blocking security profile definition can block CRX,  but i cant find away to allow a file of a specific name (the chrome webstore unique guid for the extension)  of the crx type to be allowed to be downloaded.

Any assistance much appreciated

Hello @M.Bathgate 

I understand you are looking to create an exception for a specific file name whose file type is configured to be blocked in File Blocking. The file blocking profile does not provide the ability to configure exceptions, however, the URN to the file can be used to configure an exception leveraging the "Service/URL Category" field in a Security Policy rule.

So to go about this, you need to attempt the file name from the webstore to determine the security policy rule name that was blocking the file. From your Monitor > Data Filtering, you should be able to see the rule name and also possibly the URN which is blocked.

Go to Objects > Custom Objects > URL Category and create a new category that will be used for File Blocking exceptions. While creating the URL category, you need to click on 'Add' and specify the URN to the file. (Do not prepend http:// for the entry).

Clone the current Security Policy rule so that it precedes the currently matched Security Policy rule (blocking the file).

Open the newly cloned Security Policy rule for editing. Define a new name for it different from the security policy rule that is blocking the file name URN. Also, select the "Service/URL Category" tab, and define the URL Category you previously created.

Go to the Actions tab. Make sure that the newly cloned Security Policy either has no File Blocking profile defined (None), or that the one selected does not block the file-type that needs to be allowed.

Finally, commit your changes. After Commit succeeds, access to the otherwise blocked file will now be allowed.

Reference Link:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HAtvCAG&lang=en_US%E2%80%A...

View solution in original post

(1)
Who rated this post
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks