Palo Alto Networks Knowledgebase: How to Allow One URL and Block Other Associated URLs

How to Allow One URL and Block Other Associated URLs

(972 Views)
Created On 09/26/18 13:51 PM - Last Updated 09/26/18 13:59 PM
Categories:  URL Filtering

Issue:


Solution:


Overview

This describes how to allow a single URL and block other associated URLs. In this example www.baidu.com will be allowed but mp3.baidu.com and news.baidu.com will be blocked.

Steps

Use one of the following two configuration options.

Option 1: Use URL Category

  1. Go to Objects > Custom URL Category, and create a category called "Baidu," for example. Add "*.baidu.com" to the category.
  2. Go to Objects > Custom URL Category, and create a category called "Everything," for example. Add "*" to the category. This will cover all URLs.
  3. Add a security policy that permits from any to any.
  4. Under Service/URL Category, add the category "Baidu."
  5. Add another security policy that blocks from any to any. Under Service/URL Category add the category "Everything."
    The first rule should permit access to *.baidu.com, while the second rule should act as a catch-all rule that blocks access to all URLs.

Option 2: Use URL filtering

  1. Go to Objects > Custom URL Category, and create a category called "Baidu" for example. Add "*.baidu.com" to the category.
  2. Go to Objects > URL Filtering, and create a url filtering profile called "Baidu-URL."
  3. Select the category "Baidu" to allow and the rest of the categories to block. This will block all URLs except www.baidu.com.
  4. Add a security policy that permits from any to any. Under Actions > Profile Setting > Profile Type <select profiles>, select the url filtering profile "Baidu-URL."
    Note: This rule should only permit access to *.baidu.com.

owner:  bpappas

Attachments:

Actions:
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000CltmCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Change Language: