The logs you're seeing are not necessarily indicative of an issue. They seem to be informational messages about URL lookups from the firewall engine. These are URLs that your system is trying to access, and the firewall is retrieving information about them.

Here's what these messages are saying:

• "returned from url lookup, url_info is ***********" : This means the system looked up the URL and returned some information.

• "DataMessaging_GetURLData: Returning URL_DBTYPE for [URL]" : This tells you that the system is retrieving URL data for the specified URL.

If these messages are causing issues or you wish to stop them, you may consider the following:

1. If the messages are related to a specific application, consider checking the settings of the application to limit its internet access or restrict it to certain URLs.

2. Check your firewall rules. If these URLs are not necessary, you may be able to block them or limit their access.

3. If you're debugging, you might be able to adjust your logging level to exclude these informational messages.

If you find my reply solved your question or issue, kindly click the 'Accept as Solution' button and vote it as helpful.

You can also learn more about Secure Firewall (formerly known as NGFW) through our live Ask the Experts (ATXs) session. Check out Cisco Network Security ATXs Resources [https://community.cisco.com/t5/security-knowledge-base/cisco-network-security-ask-the-experts-resources/ta-p/4416493] to view the latest schedule for upcoming sessions, as well as the useful references, e.g. online guides, FAQs.