Can we allow only specific URL and block every other web application in browser using NG SWG solution??
If yes, how do we set a policy??
Userlevel 5
+16
Netskope's SWG policy is, by nature, one based on providing access. There is an (undisplayed) implicit permit at the end of the policy that permits all traffic not previously blocked. In fact, if you want this traffic logged; you would need to add a similar permit rule at end of your policy.
I use categories rather than "Any Web Traffic" to eliminate the need for a Source criteria. This does leave you open to potentially leaking traffic out when new categories are introduced unless you remember to update the policy to include them. The "All Categories" selection just adds the existing categories.
To block all traffic not previously permitted, you would need to either make another policy ahead of that rule (preserving documentation of the implied rule, even if it's never hit)
Alternatively, you could just change the previously defined Explict rule to a block.
Reply
Login to the community
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account
Login with SSO
Employee Partneror
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.