This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

not-resolved URL for s3.us-central-1.wasabisys.com

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

not-resolved URL for s3.us-central-1.wasabisys.com

Vic_Kat
L1 Bithead

‎10-20-2022 01:55 PM

,

 

Could you help me see why the s3.us-central-1.wasabisys.com comes back as a not-resolved category and is a threat?

 

0 Likes Likes
8 REPLIES 8

Adrian_Jensen
L5 Sessionator

‎10-20-2022 02:23 PM

That appears to be categorized as "Online Storage and Backup" in the URL filtering. You can test for your self here:

https://urlfiltering.paloaltonetworks.com/

 

As for why your particular firewall is having a problem resolving that, it could be a number of things. See the following to debug:

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/url-filtering/troubleshoot-url-filtering/u...

 

The default Objects->Security Profiles->URL Filtering profile treat not-resolved as "Allow". So I would guess you are using a custom URL Filtering profile which has that category set to "Block". As a bypass, you could also create a custom URL Category with that URL and add it as Allow in your custom URL Filtering profile.

0 Likes Likes

Vic_Kat
L1 Bithead
In response to Adrian_Jensen

‎10-20-2022 02:38 PM

Thank you. I did. I think it is an issue with the firewall communication or a bug in our currently running firewall version (9.1.9).

I added it to the exclude allow-list until we upgrade our firewall and see that resolved this issue.

 

Thank you,

 

Victor

0 Likes Likes

Adrian_Jensen
L5 Sessionator

‎10-20-2022 03:40 PM

We have been running 9.1.14-h4 for some time and haven't had any issues with it. We did have problems when upgrading the URL filtering from PAN-DB to Advanced URL though as we have "not-resolved" and "unknown" blocked by default and that prevented the database from getting updates initially. Once we bypassed those categories temporarily the url-cloud could connect and download the initial database, at which point the categories could be blocked again and updates happened normally. 

0 Likes Likes

Vic_Kat
L1 Bithead
In response to Adrian_Jensen

‎10-20-2022 03:50 PM

Hi, We have the same situation. We have advanced URL filtering and now switching over from a standard local database to online when the license is expired from the standard and gets switched to the advanced one. Could you describe how to fix this issue? Disabled that two categories? Thanks in advance get more detailed descriptions.

 

Victor

 

0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks