Under URL filtering I have the hacking category blocked. My security guy wants to download kali linux and access the repo but kali.org is included in the hacking category that is blocked.
I created a custom url category and added *.kali.* to the list and then adjusted my url profile to allow this custom list. But this didn't work. From my research, if there are two conflicting items in a url profile, blocked becomes the default.
Any suggestions on how to whitelist URLs that are blacklisted in a pre defined URL profile?
Many thanks,
Jon
Hi Jon Custom categories take precedence over built-in categories for all actions, you may simply not be hitting your string. *.kali.* requires that there is a subdomain (www.) for the connection to match. You may need to add kali.* to get a positive match
@Jonathan Nelson
This issue is that kali.org is misclassified in the hacking category, right?
As far as I can see, "www.backtrack-linux.org" is categorized under "Computer-and-Internet-Info", so"www.kali.org" should be "Computer-and-Internet-Info" as well, it seems.
That is, as the description of "https://www.backtrack-linux.org/" says, "BackTrack is now Kali Linux. (Since 2013)", arguing that BackTrack and Kali are essentially the same and should be treated similarly.
Please follow the instructions below to request a change in Incorrect PAN-DB URL Categorization.
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClStCAK&lang=en_US
I've even done this a few times, but the changes are immediately accepted and reflected in the next day's content.