Cloudflare Docs
Cloudflare Zero Trust
Visit Cloudflare Zero Trust on GitHub
Set theme to dark (⇧+D)

Gateway policies

Cloudflare Gateway, our comprehensive Secure Web Gateway, allows you to set up policies to inspect DNS, Network, and HTTP traffic.

​​ Selecting a policy type

The recommended policy type depends on what kind of traffic you are trying to filter. Generally speaking:

  • To block websites, create an HTTP policy.
  • To block non-HTTP traffic such as SSH and RDP, create a network policy.
  • To block malware and other security threats, create both DNS and HTTP policies.

Refer to the DNS, network, and HTTP configuration pages to see the available filtering options within each policy builder.