URL blocking exceptions

• Chrome OS
• Chrome Browser for Windows, Mac and Linux

Blocked URLs

Prevents Chrome browser users from accessing specific URLs.

To configure this setting, enter up to 1,000 URLs on separate lines.

Blocked URL exceptions

Specifies exceptions to the list of blocked URL. To configure the setting, enter up to 1,000 URLs on separate lines.

URL syntax

Each URL must have a valid hostname (such as google.com), an IP address, or an asterisk (*) in place of the host. The asterisk functions like a wildcard, representing all hostnames and IP addresses.

URLs can also include:

• The URL scheme, which is http, https, or ftp, followed by ://
• A valid port value from 1 to 65,535
• The path to the resource
• Query parameters

Notes:

• To disable subdomain matching, put an extra period before the host.
• You cannot use user:pass fields, such as http://user:pass@ftp.example.com/pub/bigfile.iso. Instead, enter http://ftp.example.com/pub/bigfile.iso.
• When both blocked URLs and blocked URLs exception filters apply (with the same path length), the exception filter takes precedence.
• If an extra period precedes the host, the policy filters exact host matches only.
• You cannot use a wildcard at the end of a URL, such as https://www.google.com/* and https://google.com/*.
• The policy searches wildcards (*) last.
• The optional query is a set of key-value and key-only tokens delimited by '&'.
• The key-value tokens are separated by '='.
• A query token can optionally end with a '*' to indicate prefix match. Token order is ignored during matching.
• locking internal chrome://* and chrome-untrusted://* URLs can lead to unexpected errors or can be circumvented in some cases. Instead of blocking certain internal URLs, see if there are more specific policies available.

Examples