Skip to content
Cloudflare for Teams
Visit Cloudflare for Teams on GitHub
Set theme to dark (⇧+D)

Secure Web Gateway policies

With Secure Web Gateway polices, Cloudflare for Teams allows you to set up policies to inspect DNS, HTTP, and Network traffic.

This section describes how to create DNS, HTTP and Network policies on the Cloudflare for Teams Dashboard. To review how to connect networks and devices to Cloudflare, check out the Connections section.

Check that a policy is working

Once you've created a policy to block a domain, you can use either dig or nslookup on your to see if the policy is working as intended.

If you are using a policy to block, you can do the following to see if Gateway is blocking

  1. Open your terminal.

  2. Type dig (nslookup if you are using Windows) and press enter

  3. If the Block page is disabled for the policy, then you should see REFUSED in the answer section:

    Blocked when block page disabled

    If the Block page is enabled for the policy, then you should see NOERROR in the answer section and and as the answers when the domain is successfully blocked.

    Blocked when block page enabled