Additional information
DNS policies
What is the issue you’re encountering
We need to block all websites except those in our allow lists. We’ve created a DNS policy that blocks all continents. Some websites are still not blocked by this.
We created a DNS block list containing all the TDL’s using this list, https://data.iana.org/TLD/tlds-alpha-by-domain.txt . Had to create two lists since there are 1443 TDL’s in the list. This is working better. However, there are still some sites that are showing blocked in the Gateway logs but they are actually loading in the our browsers. We’ve had to resort to creating Edge GPO’s to block the sites that are getting through. Not ideal.
This topic was automatically closed after 15 days. New replies are no longer allowed.