Custom Blocklist Policy

Create your own domain and URL pattern restrictions for granular access control.

Granular access control and restrictions

The Custom Blocklist Policy gives you complete control over which domains and URL patterns are blocked in your organization. Unlike automated threat detection policies, this allows you to define specific restrictions based on your business requirements, compliance needs, and organizational policies.

What It Does

This policy allows you to create custom restrictions for:

Specific domains

That violate your organization's policies

URL patterns

Using wildcards to block content categories

Whitelist exceptions

To override other blocking policies

External threat feeds

Integration for additional protection

Pattern-based blocking

For sophisticated filtering rules and advanced control

Maximum Control

This policy provides the most granular control over access restrictions and can be used to implement organization-specific security and compliance requirements.

Why You Need This

Regulatory Compliance

Many industries have specific requirements about what types of content or services employees can access during work hours or from company networks.

Financial Services: Block cryptocurrency trading platforms and gambling sites to comply with regulatory restrictions and prevent conflicts of interest.

Healthcare: Restrict access to social media and entertainment sites during clinical hours to maintain HIPAA compliance and patient focus.

Government: Block foreign-hosted services and specific communication platforms to meet security clearance requirements.

Business Policy Enforcement

Organizations often need to restrict access to certain types of content or services for productivity, security, or liability reasons.

Productivity Management: Block social media, gaming, and entertainment sites during business hours while allowing access to business-related content.

Intellectual Property Protection: Restrict access to file-sharing sites, cloud storage services not approved by IT, and communication platforms that don't meet data retention requirements.

Vendor Management: Block access to competitors' sites, unauthorized software download sites, and services that haven't been approved through your vendor management process.

Security-Specific Restrictions

Supplement automated threat detection with organization-specific security controls.

Supply Chain Security: Block access to domains used in previous attacks against your industry or organization.

Data Loss Prevention: Restrict access to personal cloud storage, file-sharing services, and communication platforms that could be used to exfiltrate data.

Insider Threat Mitigation: Block access to anonymization services, VPN providers, and other tools that could be used to hide malicious activity.

The Custom Blocklist Policy provides the flexibility to implement organization-specific security and compliance requirements while maintaining the ability to adapt to changing business needs.