>
    Create Domain Exceptions and Allow | Block Lists (PAN-OS 9.1)
    Focus
    Download PDF
    Focus
    1. Home
    2. Advanced DNS Security Powered by Precision AI™
    3. Configure DNS Security Subscription Services
    4. Create Domain Exceptions and Allow | Block Lists
    5. Create Domain Exceptions and Allow | Block Lists (NGFW (Managed by PAN-OS or Panorama))
    6. Create Domain Exceptions and Allow | Block Lists (PAN-OS 9.1)
    Download PDF
    Advanced DNS Security Powered by Precision AI™

    Create Domain Exceptions and Allow | Block Lists (PAN-OS 9.1)

    Table of Contents

    Create Domain Exceptions and Allow | Block Lists (PAN-OS 9.1)

    Allow and block lists are not available in PAN-OS 9.1.
    • Log in to the NGFW.
    • Add domain signature exceptions in cases where false-positives occur.
      1. Select ObjectsSecurity ProfilesAnti-Spyware.
      2. Select a profile to modify.
      3. Add or modify the Anti-Spyware profile from which you want to exclude the threat signature, and select DNS Signatures > Exceptions.
      4. Search for a DNS signature to exclude by entering the name or FQDN.
      5. Select the DNS Threat ID for the DNS signature that you want to exclude from enforcement.
      6. Click OK to save your new or modified Anti-Spyware profile.

    © 2024 Palo Alto Networks, Inc. All rights reserved.