Use Block Settings in the Prisma Access UI.
To enable this functionality, reach out
to your Palo Alto Networks account representative or partner, who
will contact the Site Reliability Engineering (SRE) team and submit
a request.
When users access an internet destination using
Explicit Proxy, the DNS resolution for the internet destination
is performed by Explicit Proxy. To block access to an internet destination
at the DNS resolution stage, you can use block settings. You can
block based on DNS Security categories, URL Filtering categories
or
external dynamic lists (EDLs).
For
domains that you block, Prisma Access blocks the domains and users
receive a block page during the HTTP GET request (for unencrypted
websites) or HTTP Connect request (for encrypted websites), which
means that domains are blocked during the initial connection request.
When you block access to the site, user are shown a block page after
taking them through the authentication flow, and the username is
captured for further forensics and Security Operations Center (SOC)
workflows.
To configure block settings, complete the following
steps.