惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Jina AI
Jina AI
V
Vulnerabilities – Threatpost
Security Latest
Security Latest
AI
AI
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
量子位
H
Help Net Security
Attack and Defense Labs
Attack and Defense Labs
The GitHub Blog
The GitHub Blog
L
LINUX DO - 最新话题
A
Arctic Wolf
博客园_首页
S
Securelist
S
Secure Thoughts
Google DeepMind News
Google DeepMind News
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
T
Tailwind CSS Blog
Apple Machine Learning Research
Apple Machine Learning Research
酷 壳 – CoolShell
酷 壳 – CoolShell
Stack Overflow Blog
Stack Overflow Blog
N
Netflix TechBlog - Medium
Cyberwarzone
Cyberwarzone
小众软件
小众软件
T
Threatpost
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Blog — PlanetScale
Blog — PlanetScale
N
News and Events Feed by Topic
NISL@THU
NISL@THU
Forbes - Security
Forbes - Security
博客园 - 聂微东
F
Fortinet All Blogs
Simon Willison's Weblog
Simon Willison's Weblog
H
Heimdal Security Blog
罗磊的独立博客
S
Security @ Cisco Blogs
B
Blog
T
Troy Hunt's Blog
Engineering at Meta
Engineering at Meta
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
The Hacker News
The Hacker News
The Last Watchdog
The Last Watchdog
Hacker News - Newest:
Hacker News - Newest: "LLM"
I
Intezer
T
Threat Research - Cisco Blogs
C
Cybersecurity and Infrastructure Security Agency CISA
The Cloudflare Blog
S
Schneier on Security
月光博客
月光博客
L
LINUX DO - 热门话题
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org

Todyl Blog

CyberChef: How to Decode & Decrypt Malicious Scripts (Step-by-Step Guide) Achieving Zero Trust with SASE: A Practical Roadmap for Modern Network Securityso like MSP Security Maturity Assessment: Why 79% of MSPs Are Stuck in 2025 The Rising Threat of Malicious AI: What Every Organization Needs to Know Iran Cyber Threat 2026: What SMBs and MSPs Need to Know The OneStart AI Browser Deception Cyber Insurance Requirements Based on Industry Why Third-Party Security Certification Is Your MSP's Competitive Edge Why Cyber Insurance Carriers Are Shifting to Security Assurance Iran Conflict and Cyber Risk: What North American Organizations Need to Know ‍ Why Cyber Resilience Requires Security, Compliance, and Insurance MSP Security Services: How to Position Identity Protection as Competitive Advantage Identity Security Gap Assessment: A Step-by-Step Guide for MSPs How Credential Theft Attacks Are Costing MSP Clients Millions Do I Need Cyber Insurance as a Small Business? Advanced Persistent Threats (APTs) Explained Preparing for CMMC Level 1: What Your Organization Needs to Do The Real Cost of Doing Nothing in Cybersecurity MSP Security: Build vs Buy SOC The Rise of a Cybercrime Alliance: What LockBit, Qilin, and DragonForce Mean for Business Risk Cyber Threat Recovery Strategies for MSPs What MSPs Need to Know about CIRCIA Final Rule ClickFix: The Evolution of Copy-Paste Social Engineering Akira Ransomware: Threat Assessment of a Scalable RaaS Operation The Dos and Don’ts of Applying for a Cyber Insurance Policy What Is Threat Hunting? A Practical Guide for MSPs and SMBs The Business Case for Cyber Threat Management Evaluating Free and Open Source SIEM Tools in 2026 How organizations can combat BEC Using SASE to help meet cyber insurance requirements Introducing the Anomaly Framework Stopping Identity Threats with ITDR through MXDR Security Operations Over Tools Beyond Tools: A Strategic Approach to Data Security Cyber Threat Response Strategies for MSPs Threat Advisory: Email Account Compromise BECs In the Wild: When Millions of People Are Expecting the Same Email Michigan and Wisconsin Proposed Age Verification Bills and the Impact on VPNs and SASE: What You Need to Know Cyber Threat Detection Strategies for MSPs Cyber Threat Prevention Strategies for MSPs Simplifying CMMC Level 1 with Todyl GRC How to Complete Your CMMC Level 1 Self-Assessment: A Step-by-Step Walkthrough Cyber Threats Don't Take Time Off How MSPs Build Lasting Client Relationships Through Proactive Operations Risk Management for MSPs: Why Business Context Changes Everything 5 Pillars for Security Program Growth in 2025 One Action MSPs can take to Address Risk and Secure Clients Building Resilience in a Perimeter-less World with Defense-in-Depth Aligning Technology Implementation to Business Outcomes Top 5 Myths about Cybersecurity How Conditional Access Transforms Your Cybersecurity Program Why MSPs need to embrace a prescriptive model How Texas SB 2610 Positions MSPs as Strategic Risk Advisors Simplifying cybersecurity maturity with managed cloud SIEM Addressing firewall vulnerabilities Understanding the Pitfalls of RDP MSP Zero-Day Response Plan: When Security Tools Can't Help You Old is Gold: Tackling Persistent Vulnerabilities How MXDR drives operational efficiencies Using SASE for secure remote access How to find the best endpoint security solution The Cyber Insurance Crisis: Why MSPs and Their Clients Are Struggling What to ask of a prospective endpoint security vendor Thinking Red, Acting Blue: Turning Attack Tactics in Your Favor Zero-Day Attacks and False Alarms: Lessons for MSPs Dissecting the Recent Rise in 2025 Zero Days MSP Security Monitoring Strategy: Identity and Cloud Blind Spots Introducing the Todyl Community: A Collaborative Platform for MSPs Threat Advisory: PDFast Freeware Compromise Navigating Today’s Cybersecurity Threat Landscape: Where MSPs Should Start Threat Advisory: Understanding the Recent SonicWall SSL VPN Vulnerability and How to Protect Your Clients Partner Spotlight: GoTech IT Solutions Threat Advisory: SQL Injection in FortiClient CVE-2023-48788 The Importance of SSL Inspection Navigating Compliance Frameworks: Common Challenges and Effective Solutions Iran & Middle-East Geopolitical Shifts: Emerging Cyber Risks for SMBs MSP Security KPIs That Matter: Beyond Vanity Metrics to Business Outcomes MSP Challenges Looking into 2025 Combining EDR and NGAV for Defense-in-Depth Starting Your Security Framework Journey: A Practical Implementation Guide Cyber Insurance vs. Warranties: Key Risk Management Elements Akira Ransomware: A Persistent Threat to MSP Operations Transforming Cyber Insurance for MSPs and Their Clients Two Truths, Double Whammy: Why Vulnerability Remediation Needs a Rethink Using LAN ZeroTrust for segmentation The role of SIEM in incident response Partner Spotlight: 917 Solutions Threat Advisory: Business Email Compromise Campaign using OVPN for Obfuscation Beyond Implementation: Creating an Ongoing Security Framework Program ClickFix: Fake Captcha Leads to Real Damage Streamlining Security and Compliance Information Gathering with Assessments EpiBrowser: A Sophisticated PUP Masquerading as Chromium Partner Spotlight: AnchorSix Tips to Help MSPs Set Goals for the New Year How SIEM helps detect insider threats Massive Wave of Network Security Vulnerabilities Demands Immediate Action FortiJump: The FortiManager Zero-Day Vulnerability Explained Use cases of SASE: Software-defined perimeter Threat Advisory: LightPerlGirl Malware Why MSPs Must Prioritize CIS Critical Security Controls v8.1 for Client Success
Making the most of SASE Web Filtering
Zach DeMeyer · 2026-01-09 · via Todyl Blog

The Todyl Secure Access Service Edge (SASE) consolidates multiple network security point products into a single, easy-to-use platform. One of its key capabilities is Web Filtering, enabling organizations to fine-tune their end users’ access to the Internet. Our team recently updated Web Filtering to make it even easier to control user access with the flexibility and granularity our partners require to support their end customers.

We’ll cover a few techniques to optimize Web Filtering in your SASE instance, but first, how web filtering through SASE helps boost your online security presence.

Why SASE Web Filtering?

SASE Web Filtering lets you specify which websites users can access. Allow or deny lists are enforced across your user base and office locations through policies that can be tuned to block sites based on various criteria and categories.

Doing this helps you control which websites users can and cannot access. This approach provides several key benefits:

  • Internet security: Restricting access to known and potentially malicious sites minimizes common Internet surfing security risks. It also helps reduce the impact of phishing emails or similar forms of cyberattack.
  • Productivity: Controlling which sites users can access optimizes internet usage to promote productivity. Cutting out access to social media, gambling, sports, or other non-work-related websites ensures that your users only use their devices for work activities.
  • Access control: Because it’s policy-driven, you can use Web Filtering to restrict user access to sensitive resources based on role and location. This helps you to promote zero trust security by enforcing access based on least privilege, minimizing potential risks of unauthorized access.

Getting started with Web Filtering

Here are a few ways to optimize your Web Filtering usage and promote Internet security across your organization.

Creating a policy

Creating a Web Filtering policy within Todyl is easy. Once you’ve clicked the button to get started and named your policy, you can start customizing. First is location-based policy, choosing which network the policy applies to.

As a part of the SASE module, Web Filtering applies across any established network within your SASE instance. This can be tailored according to specific tenants or as a global policy for all your clients to help you include or exclude distinct offices, regions, remote workers, etc.

After selecting whether the policy is Allow or Deny, you can choose which site categories it applies to.

To help you identify which categories a site may apply to, use the Domain Lookup tool to check on specific sites.

Each policy enables you to force search engines to use Safe Search to restrict the content they pull up to help limit access to questionable/explicit content even further.

Fine tune your policy

After setting up these steps, you can tailor your policy further by deciding which groups and/or users it applies to. This delivers increased flexibility and control, with the option to specify users, identity groups, and license groups within Todyl.

You can apply multiple policies concurrently, fine-tuning access control across privileged individuals and groups. This level of access control is critical to creating an adaptive Internet security approach.

Allow/Block listing

Beyond specific policies, you can use Web Filtering to establish organization-wide Allow/Block lists. When you designate a site in one of these lists, they bypass other Web Filtering policies to enable or prevent access globally. Doing so is essential for enabling access to websites that may fall under multiple categories or putting a hard block on any specific sites you do not want users to navigate to.

These lists can also be applied to specific devices, further expanding your control over users’ Internet experience.

Try Web Filtering today

Use Web Filtering to start fine-tuning your users’ access to websites to promote Internet security, productivity, and tighter access controls. Web Filtering is one of many solutions consolidated into the Todyl SASE module.

See all of SASE and the rest of the Todyl platform in action; book a demo today.

About Zach DeMeyer

Zach DeMeyer is Todyl's Product Marketing Specialist, sharing the story of how businesses can use the Todyl platform to consolidate their security operations with SASE, SIEM, MXDR, Endpoint, SOAR, and more. He loves being on the forefront of new and exciting technologies, spending the past 8 years working in identity, UCaaS, and other SaaS products in the cybersecurity and IT software space. When he's not working, Zach enjoys camping and hiking with his wife, dog, and friends, playing music, sewing, and eating tasty food.