If you are connecting to your Content Policy using Cloudflare, it's important to prevent intentional or accidental bypassing of the Cloudflare connection to ensure that content blocking continues to work properly.
Device-Specific Configurations
Protection techniques vary depending on your device. Check out the below articles for instructions based on your device:
Cloudflare App Preferences
If you're using the Cloudflare One or Cloudflare WARP app to connect to your content policy using a VPN connection, there are some app preferences that can be set to prevent bypass by making changes in the app. You can manage your App Preferences in the Tech Lockdown dashboard by going to Settings > App Preferences.
We specifically recommend double-checking these options:
- Lock Filter Switch: Prevents users from turning the filter off if they've installed the VPN App. Make sure this is enabled.
- Allow Logging out of App: Prevents users from logging out of the VPN App. Make sure this is enabled.
Learn how Configure your Cloudflare Account settings for more information.
Block Websites used for Anonymous Browsing
VPNs and proxies can conflict with a content policy, so we recommend restricting access to them.
- Create a block rule and select the CIPA category to restrict access to VPN websites where a VPN can be downloaded. It will also cause some VPNs to not work properly.
- We also recommend selecting the Security Threats preset. This will block Anonymizers, which is another bypass technique.
