Add Top-Level Domains to Destination Lists

A top-level domain (TLD) is the last segment of a domain name; for example, .com, .org, .net, .gov, .biz or .edu. TLDs can be added to your destination list to block or allow all domains on that particular TLD.

Note: Use caution when adding TLDs. Adding a TLD to an allow list may open your network to malware threats, and adding a TLD to a block list may block more domains than expected due to CNAMEs and CDNs.



  1. Navigate to Policies > Policy Components > Destination Lists and click Add or expand an existing destination list.
  1. Add a List Name for your destination list and then select Blocked or Allowed for the action taken against all destinations added to this list.
  1. Add the TLD to your destination list without punctuation and click Save.
    For example, to allow or block the TLD .ru, add ru to your destination list.

Wildcards and Destination Lists < Add Top-Level Domains to Destination Lists > Add Punycode Domain Name to Destination List