Palo Alto Networks URL Filtering

the palo alto networks url filtering connector enables automated querying of url categories, aiding in the enforcement of web security policies palo alto networks url filtering is a robust web security solution that classifies urls to prevent access to malicious websites this connector enables swimlane turbine users to automate the retrieval of url categories, enhancing security workflows by quickly identifying potential threats by integrating with palo alto networks url filtering, users can leverage real time data to enforce security policies and reduce manual categorization efforts this streamlined process aids in the prevention of web based threats, ensuring a secure and compliant network environment prerequisites to effectively utilize the palo alto networks url filtering connector in swimlane turbine, ensure you have the following custom authentication with the necessary parameters url the endpoint for the palo alto networks url filtering api api key a valid api key provided by palo alto networks to authenticate requests asset setup you need the following inputs url api key capabilities the palo alto url filtering integration provides the following capabilities get url category additional information the following table outlines the ids for potential url categories id category description 1 real estate information on property rentals, sales and related tips or information includes sites for real estate agents, firms, rental services, listings (and aggregates), and property improvement 2 dynamic dns sites that provide and/or utilize dynamic dns services to associate domain names to dynamic ip addresses dynamic dns is often used by attackers for command and control communication and other malicious purposes 3 financial services websites pertaining to personal financial information or advice, such as online banking, loans, mortgages, debt management, credit card companies, and insurance companies does not include sites relating to stock markets, brokerages or trading services 4 business and economy marketing, management, economics, and sites relating to entrepreneurship or running a business 5 computer and internet info general information regarding computers and the internet 6 auctions sites that promote the sale of goods between individuals 7 shopping sites that facilitate the purchase of goods and services includes online merchants, websites for department stores, retail stores, catalogs, as well as sites that aggregate and monitor prices 9 travel information regarding travel tips, deals, pricing information, destination information, tourism, and related services includes websites for hotels, local attractions, casinos, airlines, cruise lines, travel agencies, vehicle rentals and sites that provide booking tools such as price monitors 10 abused drugs sites that promote the abuse of both legal and illegal drugs, use and sale of drug related paraphernalia, manufacturing and/or selling of drugs 11 adult sexually explicit material, media (including language), art, and/or products, online groups or forums that are sexually explicit in nature sites that promote adult services such as video/telephone conferencing, escort services, strip clubs, etc 12 home and garden information, products, and services regarding home repair and maintenance, architecture, design, construction, decor, and gardening 13 military information or commentary regarding military branches, recruitment, current or past operations, or any related paraphernalia 14 social networking user communities and sites where users interact with each other, post messages, pictures, or otherwise communicate with groups of people does not include blogs or personal sites 16 stock advice and tools information regarding the stock market, trading of stocks or options, portfolio management, investment strategies, quotes, or related news 17 training and tools sites that provide online education and training and related materials 18 dating websites offering online dating services, advice, and other personal ads 19 sex education information on reproduction, sexual development, safe sex practices, sexually transmitted diseases, birth control, tips for better sex, as well as any related products or related paraphernalia includes websites for related groups, forums or organizations 20 religion information regarding various religions, related activities or events includes websites for religious organizations, officials and places of worship 21 entertainment and arts sites for movies, television, radio, videos, programming guides/tools, comics, performing arts, museums, art galleries, or libraries includes sites for entertainment, celebrity and industry news 22 personal sites and blogs personal websites and blogs by individuals or groups 23 legal information, analysis or advice regarding the law, legal services, legal firms, or other legal related issues 25 streaming media sites that stream audio or video content for free and/or purchase 26 job search sites that provide job listings and employer reviews, interview advice and tips, or related services for both employers and prospective candidates 27 gambling lottery or gambling websites that facilitate the exchange of real and/or virtual money related websites that provide information, tutorials or advice regarding gambling, including betting odds and pools corporate websites for hotels and casinos that do not enable gambling are categorized under travel 28 translation sites that provide translation services, including both user input and url translations these sites can also allow users to circumvent filtering as the target page's content is presented within the context of the translator's url 29 reference and research personal, professional, or academic reference portals, materials, or services includes online dictionaries, maps, almanacs, census information, libraries, genealogy and scientific information 30 shareware and freeware sites that provide access to software, screensavers, icons, wallpapers, utilities, ringtones, themes or widgets for free and/or donations also includes open source projects 31 peer to peer sites that provide access to or clients for peer to peer sharing of torrents, download programs, media files, or other software applications 33 hacking sites relating to the illegal or questionable access to or the use of communications equipment/software development and distribution of programs, how to advice and/or tips that may result in the compromise of networks and systems also includes sites that facilitate the bypass of licensing and digital rights systems 34 games sites that provide online play or download of video and/or computer games, game reviews, tips, or cheats, as well as instructional sites for non electronic games, sale/trade of board games, or related publications/media includes sites that support or host online sweepstakes and/or giveaways 35 philosophy and political advocacy sites containing information, viewpoints or campaigns regarding philosophical or political views 36 weapons sales, reviews, descriptions of or instructions regarding weapons and their use 38 hunting and fishing hunting and fishing tips, instructions, sale of related equipment and paraphernalia 39 society topics relating to the general population, issues that impact a large variety of people, such as fashion, beauty, philanthropic groups, societies, or children also includes restaurant websites 40 educational institutions official websites for schools, colleges, universities, school districts, online classes, and other academic institutions 42 sports information about sporting events, athletes, coaches, officials, teams or organizations, sports scores, schedules and related news, and any related paraphernalia includes websites regarding fantasy sports and other virtual sports leagues 43 swimsuits and intimate apparel sites that include information or images concerning swimsuits, intimate apparel or other suggestive clothing 44 questionable sites containing tasteless humor, offensive content targeting specific demographics of individuals or groups of people, criminal activity, illegal activity, and get rich quick sites 47 online storage and backup websites that provide online storage of files for free and as a service 50 search engines sites that provide a search interface using keywords, phrases, or other parameters that may return information, websites, images or files as results 51 internet portals sites that serve as a starting point for users, usually by aggregating a broad set of content and topics 52 web advertisements advertisements, media, content, and banners 55 web based email any website that provides access to an email inbox and the ability to send and receive emails 56 malware (malicious) sites containing malicious content, executables, scripts, viruses, trojans, and code 57 phishing (malicious) seemingly reputable sites that harvest personal information from its users via phishing or pharming 58 proxy avoidance and anonymizers proxy servers and other methods that bypass url filtering or monitoring 59 command and control (malicious) domains and urls used by malware to establish command and control, data exfiltration, and other actions over the network after a system is compromised 60 music music sales, distribution, or information includes websites for music artists, groups, labels, events, lyrics, and other information regarding the music business 61 government official websites for local, state, and national governments, as well as related agencies, services, or laws 62 nudity sites that contain nude or seminude depictions of the human body, regardless of context or intent, such as artwork includes nudist or naturist sites containing images of participants 63 news online publications, newswire services, and other websites that aggregate current events, weather, or other contemporary issues includes newspapers, radio stations, magazines, and podcasts 65 content delivery networks sites whose primary focus is delivering content to 3rd parties such as advertisements, media, files, etc 66 internet communications and telephony sites that support or provide services for video chatting, instant messaging, or telephony capabilities 68 abortion sites that pertain to information or groups in favor of or against abortion, details regarding abortion procedures, help or support forums for or against abortion, or sites that provide information regarding the consequences/effects of pursuing (or not) an abortion 69 health and medicine sites containing information regarding general health information, issues, and traditional and non traditional tips, remedies, and treatments also includes sites for various medical specialties, practices and facilities (such as gyms and fitness clubs) as well as professionals sites relating to medical insurance and cosmetic surgery are also included 71 extremism websites promoting terrorism, racism, fascism or other extremist views discriminating people or groups of different ethnic backgrounds, religions or other beliefs 72 insufficient content (disabled) websites and services that present test pages, no content, provide api access not intended for end user display or require authentication without displaying any other content suggesting a different categorization 73 copyright infringement web pages and services that are dedicated to illegally offer videos, movies or other media for download infringing copyrights of others 74 newly registered domains (disabled) domains that have been registered within the last 32 days 75 parked urls which host limited content or click through ads which may generate revenue for the host entity but generally do not contain content that is useful to the end user 76 alcohol and tobacco sites that pertain to the sale, manufacturing, or use of alcohol and/or tobacco products and related paraphernalia includes sites related to electronic cigarettes 80 recreation and hobbies information, forums, associations, groups, and publications on recreations and hobbies 81 motor vehicles information relating to reviews, sales and trading, modifications, parts, and other related discussions for automobiles, motorcycles, boats, trucks and rvs 82 web hosting free or paid for hosting services for web pages, including information regarding web development, publication, promotion, and other methods to increase traffic 100 high risk (disabled) sites that were previously confirmed to be malicious but have displayed benign activity for at least 30 days bulletproof isp hosted sites and sites with an ip address from an asn that is known to allow malicious content sites that are associated with confirmed malicious activity (for example, they share the same domain) unknown sites are considered high risk until pan db completes a site analysis and categorization of the site 101 medium risk (disabled) sites confirmed to be malicious that have displayed only benign activity for at least 60 days all sites categorized as online storage and backup are medium risk by default 102 low risk (disabled) sites that are not medium or high risk are considered low risk these sites have displayed benign activity for a minimum of 90 days the low risk category includes both sites that have a history of only benign activity, and sites found to be malicious in the past, but that have displayed benign activity for at least 90 days 251 private ip addresses (disabled) this category includes ip addresses defined in rfc 1918, 'address allocation for private intranets which are 10 0 0 0 10 255 255 255 (10/8 prefix) 172 16 0 0 172 31 255 255 (172 16/12 prefix) 192 168 0 0 192 168 255 255 (192 168/16 prefix) 169 254 0 0 169 254 255 255 (169 254/16 prefix) it also includes domains not registered with the public dns system (such a local) 255 unknown (disabled) unknown the website has not yet been categorized, so it does not exist in the url filtering database on the firewall or in the url cloud database when deciding on what action to take for traffic categorized as unknown, be aware that setting the action to block may be very disruptive to users because there could be a lot of valid sites that are not in the url database yet if you do want a very strict policy, you could block this category, so websites that do not exist in the url database cannot be accessed configurations palo alto url filtering asset configuration parameters parameter description type required url a url to the target host string required key api key for url filtering string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions get url category retrieves the category of a specified url from palo alto networks url filtering service input argument name type required description url string required url endpoint for the request target string optional parameter for get url category input example {"url" "string","target" "string"} output parameter type description status code number http status code of the response reason string response reason phrase output example {"status code" 200,"response headers" {},"reason" "ok","json body" {}} response headers header description example content type the media type of the resource application/json date the date and time at which the message was originated thu, 01 jan 2024 00 00 00 gmt