This article describes how to view allowed URLs in the web filter logs:

• Category based filter.
• Static URL.

To identify URLs allowed in web filter logs, log in to the GUI of the firewall, go to Policy & Objects -> concerned IPv4 Policy -> Security Profiles -> Web Filter, choose the relevant web filter under the specific web filter category, set the action to 'Monitor', and select 'OK'. Make sure log all sessions' is enabled in the policy.

Another way to see the allowed URLs in the web filter logs is by performing the steps below. In this way, there is no need to change the action set (from Allow to Monitor) of each category one by one.

config webfilter profile
    edit "default"
        set log-all-url enable
    next
end

To identify Allowed URLs in the static URL, log in to the GUI of the firewall, go to Policy & Objects -> concerned IPv4 Policy -> Security Profiles -> Web Filter, choose the relevant web filter -> static URL filter -> URL filter, set the keep action category to 'Monitor', and select 'OK'.

Go to Log & Report -> Web Filter and add the specific filter. Allowed URLS can now be viewed. In v7.2 or higher, go to Log & Report -> Security Events -> Web Filter.