Create a test policy
To ensure a smooth deployment, we recommend testing a simple policy before deploying DNS filtering to your organization.
- Go to Gateway > Firewall policies.
- Create a policy to block all security categories:
Selector Operator Value Action Security Categories in All security risks Block - In the browser, go to
malware.testcategory.com. You should see a generic Gateway block page. - In Logs > Gateway > DNS, verify that you see the blocked domain.
You have now validated DNS filtering!
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Products
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark