Palo Alto Networks Knowledgebase: Complete List of PAN-DB URL Filtering Categories

Complete List of PAN-DB URL Filtering Categories

237740
Created On 10/01/19 17:07 PM - Last Updated 10/01/19 17:07 PM
URL Category URL Filtering 8.1 8.0 9.0 PAN-OS
Resolution

If there is a specific site that you would like to determine the URL category, please visit this site to test the URL:https://urlfiltering.paloaltonetworks.com/
The following is a complete list of PAN-DB URL filtering categories:

CategoryDescriptionExample
AbortionSites that pertain to information or groups in favor of or against abortion, details regarding abortion procedures, help or support forums for or against abortion, or sites that provide information regarding the consequences/effects of pursuing (or not) an abortion.


www.prochoiceamerica.org
www.prochoice.org
www.prolifeaction.org
 

Abused DrugsSites that promote the abuse of both legal and illegal drugs, use and sale of drug related paraphernalia, manufacturing and/or selling of drugs.


www.cannabis.com
www.getkush.ca
www.magicmushroom.com
 

AdultSexually explicit material, media (including language), art, and/or products, online groups or forums that are sexually explicit in nature. Sites that promote adult services such as video/telephone conferencing, escort services, strip clubs, etc. Anything containing adult content (even if it's games or comics) will be categorized as adult.


www.playboyplus.com
www.redtube.com
 

Alcohol and TobaccoSites that pertain to the sale, manufacturing, or use of alcohol and/or tobacco products and related paraphernalia. Includes sites related to electronic cigarettes.


www.wine.com
www.thompsoncigars.com
www.cigarsinternational.com
www.thegoodwineguru.com
www.webtender.com
 

AuctionsSites that promote the sale of goods between individuals.
www.ebay.com
www.internethorseauctions.com
 
Business and EconomyMarketing, management, economics, and sites relating to entrepreneurship or running a business. Includes advertising and marketing firms. Should not include corporate websites as they should be categorized with their technology.
Also shipping sites, such as fedex.com and ups.com.


www.bothsidesofthetable.com
www.ogilvy.com
www.geisheker.com
www.imageworksstudio.com
www.linearcreative.com
www.saleforce.com
www.xfinity.com
 

Command and Control
URLs and domains used by malware and/or compromised systems to surreptitiously communicate with an attacker’s remote server to receive malicious commands or exfiltrate data.
 
Computer and Internet InfoGeneral information regarding computers and the internet. Should include sites about computer science, engineering, hardware, software, security, programming, etc. Programming may have some overlap with reference, but the main category should remain computer and internet info.


www.redhat.com
www.freebsd.org
www.microsoft.com
www.symantec.com
www.oreilly.com
www.alexa.com
 

Content Delivery NetworksSites whose primary focus is delivering content to 3rd parties such as advertisements, media, files, etc.
Also includes image servers.


www.limelight.com
www.cdnvideo.com
www.akamai.com
 

Copyright Infringement
Web pages and services that are dedicated to illegally offer videos, movies or other media for download infringing copyrights of others.
Should not include sites that provide peer-to-peer file exchange services or general streaming media.
 

 
DatingWebsites offering online dating services, advice, and other personal ads.


www.match.com
www.eharmony.com
www.okcupid.com
 

Dynamic DNSSites that provide and/or utilize dynamic DNS services to associate domain names to dynamic IP addresses. Dynamic DNS is often used by attackers for command-and-control communication and other malicious purposes.


www.no-ip.com
www.dnsexit.com
 

Educational InstitutionsOfficial websites for schools, colleges, universities, school districts, online classes, and other academic institutions. These refer to larger, established educational institutions such as elementary schools, high schools, universities, etc. Tutoring academies can go here as well.


www.ucla.edu
www.phoenix.edu
www.sfusd.edu
 

Entertainment and ArtsSites for movies, television, radio, videos, programming guides/tools, comics, performing arts, museums, art galleries, or libraries. Includes sites for entertainment, celebrity and industry news.


www.variety.com
www.tmz.com
www.moma.org
www.eventbrite.com
 

ExtremismWebsites promoting terrorism, racism, fascism or other extremist views discriminating people or groups of different ethnic backgrounds, religions or other beliefs.
Should not include websites discussing controversial political or religious views.


www.kkk.com
www.stormfront.org
www.chimpmania.com
 

Financial ServicesWebsites pertaining to personal financial information or advice, such as online banking, loans, mortgages, debt management, credit card companies, and insurance companies.
Does not include sites relating to stock markets, brokerages or trading services.Includes sites for foreign currency exchange.
Includes sites for foreign currency exchange.



www.chase.com
www.paypal.com
www.salliemae.com

 

GamblingLottery or gambling websites that facilitate the exchange of real and/or virtual money. Related websites that provide information, tutorials or advice regarding gambling, including betting odds and pools.
Corporate websites for hotels and casinos that do not enable gambling are categorized under Travel.


www.fulltiltpoker.com
www.vegasbettinglines.com
www.bet365.com
 

GamesSites that provide online play or download of video and/or computer games, game reviews, tips, or cheats, as well as instructional sites for non-electronic games, sale/trade of board games, or related publications/media.
Includes sites that support or host online sweepstakes and/or giveaways.


www.gamespot.com
www.ign.com
www.1up.com
www.twitch.tv
 

GovernmentOfficial websites for local, state, and national governments, as well as related agencies, services, or laws.


www.ca.gov
www.sfgov.org
dmv.ca.gov
www.usps.com
 

HackingSites relating to the illegal or questionable access to or the use of communications equipment/software. Development and distribution of programs, how-to-advice and/or tips that may result in the compromise of networks and systems. Also includes sites that facilitate the bypass of licensing and digital rights systems.


www.hackspc.com
www.hackthissite.org
 

Health and MedicineSites containing information regarding general health information, issues, and traditional and non-traditional tips, remedies, and treatments.
Also includes sites for various medical specialties, practices and facilities (such as gyms and fitness clubs) as well as professionals. Sites relating to medical insurance and cosmetic surgery are also included.


www.kaiserpermanente.org
www.webmd.com
www.24hourfitness.com

Home and GardenInformation, products, and services regarding home repair and maintenance, architecture, design, construction, décor, and gardening.


www.bhg.com
www.homedepot.com
www.gardenweb.com
 

Hunting and FishingHunting and fishing tips, instructions, sale of related equipment and paraphernalia.


www.wildlifelicense.com
www.outdoorlife.com
 

Insufficient Content


Websites and services that present test pages, no content, provide API access not intended for end-user display or require authentication without displaying any other content suggesting a different categorization.
Should not include websites providing remote access, such as web based VPN solutions, web based email services or identified credential phishing pages.
 

Internet Communications and TelephonySites that support or provide services for video chatting, instant messaging, or telephony capabilities.
www.skype.com
www.slack.com
www.gotomeeting.com
 
Internet PortalsSites that serve as a starting point for users, usually by aggregating a broad set of content and topics.


www.yahoo.com
www.qq.com
www.msn.com
 

Job SearchSites that provide job listings and employer reviews, interview advice and tips, or related services for both employers and prospective candidates.


www.monster.com
www.indeed.com
www.simplyhired.com
 

LegalInformation, analysis or advice regarding the law, legal services, legal firms, or other legal related issues.


www.probono.net
www.findlaw.com
 

Malware
Sites containing malicious content, executables, scripts, viruses, trojans, and code.
 
MilitaryInformation or commentary regarding military branches, recruitment, current or past operations, or any related paraphernalia.


www.goarmy.com
www.pentagon.mil
 

Motor VehiclesInformation relating to reviews, sales and trading, modifications, parts, and other related discussions for automobiles, motorcycles, boats, trucks and RVs.


www.edmunds.com
www.carfax.com
www.audi.com
www.discounttire.com
 

MusicMusic sales, distribution, or information. Includes websites for music artists, groups, labels, events, lyrics, and other information regarding the music business.
Does not include streaming music.


www.u2.com
www.itunes.com
www.azlyrics.com
 

Newly Registered Domain*
Domains that have been registered within the last 32 calendar days.
 
 
NewsOnline publications, newswire services, and other websites that aggregate current events, weather, or other contemporary issues. Includes newspapers, radio stations, magazines, and podcasts.


www.reuters.com
www.abcnews.com
www.weather.com
 

Not-resolved
Indicates that the website was not found in the local URL filtering database and the firewall was unable to connect to the cloud database to check the category. When a URL category lookup is performed, the firewall first checks the dataplane cache for the URL, if no match is found, it will then check the management plane cache, and if no match is found there, it queries the URL database in the cloud. When deciding on what action to take for traffic that is categorized as not-resolved, be aware that setting the action to block may be very disruptive to users.
 
NuditySites that contain nude or seminude depictions of the human body, regardless of context or intent, such as artwork. Includes nudist or naturist sites containing images of participants.


www.nudistbeaches.nl
 

Online Storage and BackupWebsites that provide online storage of files for free and as a service.


www.dropbox.com
www.evernote.com
www.slideshare.net
 

Parked
URLs which host limited content or click-through ads which may generate revenue for the host entity but generally do not contain content that is useful to the end user.
 
Peer-to-PeerSites that provide access to or clients for peer-to-peer sharing of torrents, download programs, media files, or other software applications. This is primarily for those sites that provide bittorrent download capabilities.
Does not include shareware or freeware sites.


www.thepiratebay.org
www.emule-project.net
www.bitcomet.com
 

Personal Sites and BlogsPersonal websites and blogs by individuals or groups. Should try to first categorize based on content. For example, if someone has a blog just about cars, then the site should be categorized under "motor vehicles". However, if the site is a pure blog, then it should remain under "personal sites and blogs".


www.blogspot.com
www.wordpress.com
www.blogger.com
 

Philosophy and Political AdvocacySites containing information, viewpoints or campaigns regarding philosophical or political views.


www.bradyunited.org
www.ontheissues.org
www.the-philosophy.com
 

Phishing
Seemingly reputable sites that harvest personal information from its users via phishing or pharming.
 
Private IP AddressesThis category includes IP addresses defined in RFC 1918, 'Address Allocation for Private Intranets? It also includes domains not registered with the public DNS system ( *.local and *.onion).



10.0.0.0 - 10.255.255.255 (10/8 prefix)
172.16.0.0 - 172.31.255.255 (172.16/12 prefix)
192.168.0.0 - 192.168.255.255 (192.168/16 prefix)
169.254.0.0 - 169.254.255.255 (169.254/16 prefix)
 
 

Proxy Avoidance and AnonymizersProxy servers and other methods that bypass URL filtering or monitoring.


www.proxify.com
www.hide.me
www.anonym.to
 

QuestionableSites containing tasteless humor, offensive content targeting specific demographics of individuals or groups of people, criminal activity, illegal activity, and get rich quick sites.


www.collegehumor.com
www.9gag.com
 

Real EstateInformation on property rentals, sales and related tips or information. Includes sites for real estate agents, firms, rental services, listings (and aggregates), and property improvement.


www.realtor.com
www.redfin.com
www.zillow.com
 

Recreation and HobbiesInformation, forums, associations, groups, and publications on recreations and hobbies.


www.cross-stitching.com
www.modelaircraft.org
 

Reference and ResearchPersonal, professional, or academic reference portals, materials, or services. Includes online dictionaries, maps, almanacs, census information, libraries, genealogy and scientific information.


www.wikipedia.org
www.reference.com
www.m-w.com
 

ReligionInformation regarding various religions, related activities or events. Includes websites for religious organizations, officials and places of worship.Includes sites for fortune telling.


www.vatican.va
www.sjkoreancatholic.org
www.biblesociety.ca
 

Search EnginesSites that provide a search interface using keywords, phrases, or other parameters that may return information, websites, images or files as results.


www.google.com
www.baidu.com
www.bing.com
 

Sex EducationInformation on reproduction, sexual development, safe sex practices, sexually transmitted diseases, birth control, tips for better sex, as well as any related products or related paraphernalia. Includes websites for related groups, forums or organizations.


www.plannedparenthood.org
www.sexetc.org
 

Shareware and FreewareSites that provide access to software, screensavers, icons, wallpapers, utilities, ringtones, themes or widgets for free and/or donations. Also includes open source projects.


www.download.com
www.sourceforge.net
www.github.com
 

ShoppingSites that facilitate the purchase of goods and services. Includes online merchants, websites for department stores, retail stores, catalogs, as well as sites that aggregate and monitor prices. Sites listed here should be online merchants that sell a variety of items (or whose main purpose is online sales). A webpage for a cosmetics company that also happens to allow online purchasing should be categorized with cosmetics and not shopping.


www.amazon.com
www.pricegrabber.com
www.lightningdrops.com
www.aliexpress.com
 

Social NetworkingUser communities and sites where users interact with each other, post messages, pictures, or otherwise communicate with groups of people. Does not include blogs or personal sites.


www.facebook.com
www.twitter.com
www.linkedin.com
 

SocietyTopics relating to the general population, issues that impact a large variety of people, such as fashion, beauty, philanthropic groups, societies, or children. Also includes restaurant websites.Includes websites designed for children as well as restaurants.


www.redcross.org
www.harpersbazaar.com
www.foodnetwork.com
www.savethechildren.org
 

SportsInformation about sporting events, athletes, coaches, officials, teams or organizations, sports scores, schedules and related news, and any related paraphernalia. Includes websites regarding fantasy sports and other virtual sports leagues.


www.espn.com
www.nba.com
sports.yahoo.com
 

Stock Advice and ToolsInformation regarding the stock market, trading of stocks or options, portfolio management, investment strategies, quotes, or related news.


www.thestreet.com
www.bloomberg.com
www.investopedia.com
 

Streaming MediaSites that stream audio or video content for free and/or purchase.Includes online radio stations and other streaming music services.


www.hulu.com
www.youtube.com
www.pandora.com
www.spotify.com
 

Swimsuits and Intimate ApparelSites that include information or images concerning swimsuits, intimate apparel or other suggestive clothing.


www.victoriassecret.com
www.brazilianswimwear.com
 

Training and ToolsSites that provide online education and training and related materials.Can include driving/traffic schools, workplace training, etc.


www.trafficschoolonline.com
www.moodle.com
www.redvector.com
www.quizlet.com
 

TranslationSites that provide translation services, including both user input and URL translations. These sites can also allow users to circumvent filtering as the target page's content is presented within the context of the translator's URL.


translate.google.com
bing.com/translator
babelfish.com
 

TravelInformation regarding travel tips, deals, pricing information, destination information, tourism, and related services. Includes websites for hotels, local attractions, casinos, airlines, cruise lines, travel agencies, vehicle rentals and sites that provide booking tools such as price monitors.Includes websites for local points of interest/tourist attractions such as the Eiffel Tower, the Grand Canyon, etc.


www.kayak.com
www.farecompare.com
www.tripadvisor.com
www.jetblue.com
 

Unknown
The website has not yet been categorized, so it does not exist in the URL filtering database on the firewall or in the URL cloud database. When deciding on what action to take for traffic categorized as unknown, be aware that setting the action to block may be very disruptive to users because there could be a lot of valid sites that are not in the URL database yet. If you do want a very strict policy, you could block this category, so websites that do not exist in the URL database cannot be accessed.
 
WeaponsSales, reviews, descriptions of or instructions regarding weapons and their use.


www.israeli-weapons.com
www.grabagun.com
 

Web AdvertisementsAdvertisements, media, content, and banners.


www.doubleclick.com
www.popads.net
 

Web HostingFree or paid for hosting services for web pages, including information regarding web development, publication, promotion, and other methods to increase traffic.


www.godaddy.com
www.fatcow.com
 

Web-based EmailAny website that provides access to an email inbox and the ability to send and receive emails.


126.com
outlook.com
gmail.com
 

 
CategoryDescription
High Risk*
Sites that were previously confirmed to be malicious but have displayed benign activity for at least 30 days. Sites hosted on bulletproof ISPs or using an IP from an ASN that has known malicious content. Sites sharing a domain with a known malicious site. All sites in the “Unknown” category will be high risk.
 
Medium Risk*
Sites confirmed to be malicious but have displayed benign activity for at least 60 days. All sites in the “Online Storage and Backup” category will be medium risk by default.
 
Low Risk*
Any site that is not High Risk or Medium Risk. This includes sites that were previously confirmed as malicious but have displayed benign activity for at least 90 days.
 
 

*This category requires PAN-OS 9.0 and higher. Please see the Multi-Category URL Filtering feature description for more information.
PAN-OS version 8.0 and above has a way of blocking Corporate Credential Submissions. Refer Prevent Credential Phishing for details.



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5hCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language