Home > Enterprise security devices or applications > Paloalto firewall > Paloalto URL filtering

Creating desired URL filtering policy

Clone the default URL filtering policy default and configure a URL filtering policy as per organization (Eg block violence sites). The meaning of category eg business is not explained anywhere on the interface and is left up to interpretation. However there is a check URL link.

https://urlfiltering.paloaltonetworks.com/

If we click that link and on the page that opens type a URL such as www.chess.com then we can properly see the category as sports. For a few URL such as www.icicibank.com the categroy can be both "Banking and Finance" and also low-risk.

Apply policy on LAN-WAN rules with destination any

Once we configure the appropriate URL filtering profile. Then in security for LAN-WAN of specific stations (or any) we can change profile from none to profiles. Then we can enable URL filtering profile created above.

Note that applying URL filtering one rules for LAN-DMZ or to specific WAN destiantions does not makes much sense.

Whitelist or blacklist custom URLs

Go to URL category and create a new category such as whitelisted URLs. Then add sites such as www.icicibank.com. Then go back to URL filtering profile. Against this custom category enable allow / allow both for sites and user credential submission.

Similarly we can create a custom category called blocked URLs. Add any example URL which might have already been blocked due to other category. Then go to URL filtering profile and against this custom category select block/drop appropriately.

Home > Enterprise security devices or applications > Paloalto firewall > Paloalto URL filtering