What's the simplest way to block a Top-Level-Domain (*.ru/* for example )in web protection?

Question

What is the simplest way to block all users from visiting a TLD? This seems like a basic functionality but I haven't found a good answer.

Eren Ertas · Answer

Hello 
 You can use those regex for allowing on XG at Web > Exceptions but for blocking a top level domain you can use firewall rules 
 Action Drop 
 From Lan to Wan 
 From Any to FQDN Host - *.ru 
 Log if you want. 
 There are some other options like creating url groups, or web categories -Need to write all domains and subdomains in this- but i always prefer Firewall Rule for this.

Michael Dunn · Answer

Custom categories and URL Groups do not support RegEx. 
 See here for more details: 
 https://community.sophos.com/kb/en-us/127270 
 I'm not 100% sure but I believe a URL Group just containing "ru" will do it. 
 
 FQDN Host objects appear to not like a top level domain. 
 
 You should also consider country blocking (uses GeoIP). Set the Destination Zone to WAN and the Destination Network to Russian Federation. This will block anything hosted in Russia but not .ru sites that are hosted elsewhere.