6.13 Ensure secure URL filtering is enabled for all security policies allowing traffic to the Internet


Apply a secure URL filtering profile to all security policies permitting traffic to the Internet. The URL Filtering profile may be applied to the security policies directly or through a profile group.
URL Filtering policies dramatically reduce the risk of users visiting malicious or inappropriate websites. In addition, a complete URL history log for all devices is invaluable when performing forensic analysis in the event of a security incident. Applying complete and approved URL filtering to outbound traffic is a frequent requirement in corporate policies, legal requirements or regulatory requirements.
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.


To Set URL Filtering:
For each Security Profile that transits traffic to the internet, navigate to Policies > Security > Security Profiles > [Policy Name] > URL Filtering.
Set a URL Filtering profile that complies with the policies of the organization is applied to all Security Policies that transit traffic to the public internet.
Not having an effective URL Filtering configuration can leave an organization open to legal action, internal HR issues, non-compliance with regulatory policies or productivity loss.

Default Value:
Not Configured

See Also


Item Details


References: 800-53|AC-4(8), 800-53|CM-6b., CSCv6|7.6, CSCv7|7.4, CSCv7|7.5

Plugin: Palo_Alto

Control ID: 1c7a764836993c1969926de27ca973dacc1b7c7914df26faf666959eb2c0e239