Palo Alto Networks Knowledgebase: URL Categorization of SSL Websites
URL Categorization of SSL Websites
Created On 02/07/19 23:41 PM - Last Updated 02/07/19 23:42 PM
URL category will only apply to traffic that is valid HTTP/HTTPS. In the case of non-http traffic, the URL category is ignored as a matching criteria by design.
URL categorization will happen for SSL regardless of whether it is HTTP inside or not. It is not possible to tell what protocol is inside without SSL Decryption so the categorization is done either by IP or via the Common Name from the SSL certificate or Server Name Indication (SNI).