Tag

Gateway

3 posts · RSS

Network policy L4 — blocking non-HTTP, DoH bypass, and app rules

2025-05-19

Network policy deep dive: blocking non-HTTP (SSH, RDP, SMTP), preventing DoH bypass, app rules for SaaS, WARP keeping user traffic on Gateway, prod checklist, hardening playbook....

KhaVan
13 min read

Gateway HTTP filtering and TLS decryption — when DNS isn't enough

2025-05-07

Cloudflare Cloudflare One Gateway TLS

HTTP inspection deep dive: installing the root CA (MDM, GPO), cert pinning gotchas, DLP patterns, CASB tenant control, legal/privacy guardrails, staged rollout, prod checklist....

KhaVan
17 min read

Gateway DNS filtering — the first layer of a Secure Web Gateway

2025-05-03

Cloudflare Cloudflare One Gateway DNS

Gateway DNS deep dive: resolver architecture, policy order, DoH per-device vs DNS location per-site, threat categories, custom lists, OS bypasses, SIEM pipeline, prod checklist....

KhaVan
16 min read

Gateway

Network policy L4 — blocking non-HTTP, DoH bypass, and app rules

Gateway HTTP filtering and TLS decryption — when DNS isn't enough

Gateway DNS filtering — the first layer of a Secure Web Gateway

Ask the blog

Sources