I actually submitted a ticket to Cloudflare and went through a few troubleshooting steps with them, but I haven’t gotten a response in 2 weeks even after repeatedly asking for an update.
I’ve already checked the Community questions and it seems like some people have had similar problems but I don’t see any resolutions.
I’ve got some domains blocked in Gateway Policies, but and they’re showing up in the logs, so I know that the requests are being transmitted correctly to Cloudflare, but the domain is showing up as “allowed”.
How to reproduce:
- Go to Gateway > Policies
- Create a test policy like: Domain in “xyz.com”.
Action = Block
- Go to the computer and do a ping or nslookup for xyz.com
- Go to the Gateway Activity Log and see that query “xyz.com” was Allowed and that the Resolver decision was “Allowed On No Policy Match”, which is not true.
Any ideas on how to fix this?