Custom Blocklist Policy
Create your own domain and URL pattern restrictions for granular access control.
Granular access control and restrictions
The Custom Blocklist Policy gives you complete control over which domains and URL patterns are blocked in your organization. Unlike automated threat detection policies, this allows you to define specific restrictions based on your business requirements, compliance needs, and organizational policies.
What It Does
This policy allows you to create custom restrictions for:
Specific domains
That violate your organization's policies
URL patterns
Using wildcards to block content categories
Whitelist exceptions
To override other blocking policies
External threat feeds
Integration for additional protection
Pattern-based blocking
For sophisticated filtering rules and advanced control
Maximum Control
This policy provides the most granular control over access restrictions and can be used to implement organization-specific security and compliance requirements.
Why You Need This
Regulatory Compliance
Many industries have specific requirements about what types of content or services employees can access during work hours or from company networks.
Financial Services: Block cryptocurrency trading platforms and gambling sites to comply with regulatory restrictions and prevent conflicts of interest.
Healthcare: Restrict access to social media and entertainment sites during clinical hours to maintain HIPAA compliance and patient focus.
Government: Block foreign-hosted services and specific communication platforms to meet security clearance requirements.
Business Policy Enforcement
Organizations often need to restrict access to certain types of content or services for productivity, security, or liability reasons.
Productivity Management: Block social media, gaming, and entertainment sites during business hours while allowing access to business-related content.
Intellectual Property Protection: Restrict access to file-sharing sites, cloud storage services not approved by IT, and communication platforms that don't meet data retention requirements.
Vendor Management: Block access to competitors' sites, unauthorized software download sites, and services that haven't been approved through your vendor management process.
Security-Specific Restrictions
Supplement automated threat detection with organization-specific security controls.
Supply Chain Security: Block access to domains used in previous attacks against your industry or organization.
Data Loss Prevention: Restrict access to personal cloud storage, file-sharing services, and communication platforms that could be used to exfiltrate data.
Insider Threat Mitigation: Block access to anonymization services, VPN providers, and other tools that could be used to hide malicious activity.
The Custom Blocklist Policy provides the flexibility to implement organization-specific security and compliance requirements while maintaining the ability to adapt to changing business needs.