Secure Web Gateway

Secure Web Gateway (SWG) is an optional add-on to Coro Network. From the SWG screen, admin users can activate domain name system (DNS) filtering and create allowlists and blocklists. DNS filtering allows admin users to restrict or allow access to specific domains, as well as groups or categories of domains. For example, an admin user may block access to suspected malware sites, or enforce company policy by blocking access to gambling sites or social networks.

SWG and DNS filtering are available on macOS, Windows, iOS, and Android.

To access SWG:

  1. Sign in to the Coro console .
  2. From the sidebar, select Control Panel to access the Control Panel .
  3. Select Network :

    Network from Control panel

  4. Select the SWG tab:

    SWG screen

    Coro displays the SWG page.

DNS filtering

In the DNS filtering section, admin users can enable or disable DNS filtering. By default, DNS filtering is disabled.

note

Even if DNS filtering is disabled, other DNS filters are not compatible with devices using the VPN.

When DNS filtering is enabled, devices that are using virtual private network (VPN) or zero trust network access (ZTNA) automatically receive DNS filtering. Additional devices can be added to DNS filtering by entering their labels:

DNS filtering labels

When filtering is enabled, admin users can enable DNS resolver anonymous mode, which offers privacy to users by not tracking individual data. This option ensures that Coro does not analyze or store the DNS request history:

DNS resolver anonymous mode

Allow/Block Lists

Below the DNS filtering section are the allowlists and blocklists. When an admin user enables DNS filtering for the first time, a predefined inactive set of external blocklists are added to the Allow/Block Lists section. Admin users can view and enable these lists.

DNS filtering

Admin users can add URLs, IP ranges, subnets, and wildcards to lists by entering them manually or uploading them in a text file. To facilitate creating a valid text file, Coro provides a link to a template in the Import URL to allowlist/blocklist dialog. Each entry should be on its own line:

Download templated

View, delete, disable, or enable allowlists and blocklists from the three-dot menus next to each list. Disabled lists appear grayed out:

Menu of allow/block lists