cloudflare · maxvp · Oct 16, 2024 · Oct 15, 2024 · Oct 15, 2024 · Oct 15, 2024
@@ -6,10 +6,9 @@ sidebar:
 head:
   - tag: title
     content: Common DLP policies
-
 ---
 
-import { GlossaryTooltip, Render } from "~/components"
+import { GlossaryTooltip, Render } from "~/components";
 
 The following in-line DLP policies are commonly used to secure data in uploaded and downloaded files.
 
@@ -24,6 +23,8 @@ The **Allow** action functions as an implicit logger, providing visibility into
 
 <Render file="gateway/policies/block-file-types" />
 
+For more information on what file formats DLP can scan, refer to [Supported file types](/cloudflare-one/policies/data-loss-prevention/#supported-file-types).
+
 ## Block uploads/downloads for specific users
 
 You can configure access on a per-user or group basis by adding [identity-based conditions](/cloudflare-one/policies/gateway/identity-selectors/) to your policies. The following example blocks only contractors from uploading/downloading Financial Information to file sharing apps.

@@ -6,10 +6,9 @@ sidebar:
 head:
   - tag: title
     content: Common HTTP policies
-
 ---
 
-import { Render } from "~/components"
+import { Render } from "~/components";
 
 The following policies are commonly used to secure HTTP traffic.
 
@@ -53,7 +52,7 @@ Gateway [evaluates Do Not Inspect policies first](/cloudflare-one/policies/gatew
 
 :::note
 
-You can select either individual applications or the entire Do Not Inspect set, which will update as new applications are added. 
+You can select either individual applications or the entire Do Not Inspect set, which will update as new applications are added.
 :::
 
 ## Check device posture
@@ -97,6 +96,8 @@ When accessing origin servers with certificates not signed by a public certifica
 
 <Render file="gateway/policies/block-file-types" />
 
+For more information on supported file types, refer to [Download and Upload File Types](/cloudflare-one/policies/gateway/http-policies/#download-and-upload-file-types).
+
 ## Block Google services
 
 To enable Gateway inspection for Google Drive traffic, you must [add the Cloudflare certificate to Google Drive](/cloudflare-one/connections/connect-devices/warp/user-side-certificates/install-cloudflare-cert/#google-drive-for-desktop).

@@ -460,12 +460,57 @@ Use this selector to match against a domain and all subdomains -- for example, i
 ### Download and Upload File Types
 
 :::caution[Deprecated selectors]
-
 The **Download File Types** and **Upload File Types** selectors supersede the **Download File Type** and **Upload File Type** selectors. Gateway will still evaluate policies with the previous selectors. However, Cloudflare recommends migrating any policies with deprecated selectors to the new corresponding selectors.
-
 :::
 
-These selectors will scan file signatures in the HTTP body. You can select from file categories or specific file types, including executables, archives and compressed files, Microsoft 365/Office documents, and Adobe files.
+These selectors will scan file signatures in the HTTP body. You can select from file categories or specific file types, such as executables, archives and compressed files, Microsoft 365/Office documents, and Adobe files:
+
+<Details header="Supported file types">
+
+**Compressed**
+
+- 7-Zip archive (`.7z`)
+- `bzip2` archive (`.bz2`)
+- GNU Gzip archive (`.gz`)
+- Microsoft Cabinet file (`.cab`)
+- Microsoft Compiled HTML Help file (`.chm`)
+- RAR archive (`.rar`)
+- `xz` archive (`.xz`)
+- ZIP archive (`.zip`)
+
+**Documents**
+
+- Microsoft Office/365 files
+  - Word document (`.doc`, `.docx`, `.docm`)
+  - Excel spreadsheet (`.xls`, `.xlsx`, `.xlsm`)
+  - PowerPoint presentation (`.ppt`, `.pptx`, `.pptm`)
+- PDF document (`.pdf`)
+
+**Executable**
+
+- Dynamic-link library (DLL) file (`.dll`)
+- Executable and Linkable Format (ELF) file (`.elf`)
+- Java archive (JAR) package (`.jar`)
+- Java class file (`.class`)
+- Mach object (Mach-O) file (`.macho`)
+- Microsoft Windows installer (`.msi`)
+- Microsoft Windows executable (`.exe`)
+
+**Image**
+
+- Adobe Photoshop document (`.psd`)
+- Bitmap image (`.bmp`)
+- GIF image (`.gif`)
+- Icon file (`.ico`)
+- JPEG image (`.jpg`, `.jpeg`)
+- PNG image (`.png`)
+- WebP image (`.webp`)
+
+**Other**
+
+- BitTorrent file (`.torrent`)
+
+</Details>
 
 | UI name             | API example                                         |
 | ------------------- | --------------------------------------------------- |

@@ -1,13 +1,12 @@
 ---
 {}
-
 ---
 
 ## Block file types
 
 Block the upload or download of files based on their type.
 
-| Selector           | Operator | Value                                 | Logic | Action |
-| ------------------ | -------- | ------------------------------------- | ----- | ------ |
-| Upload File Type   | in       | Microsoft Office Word Document (docx) | And   | Block  |
-| Download File Type | in       | PDF (pdf)                             |       |        |
+| Selector           | Operator | Value                                   | Logic | Action |
+| ------------------ | -------- | --------------------------------------- | ----- | ------ |
+| Upload File Type   | in       | _Microsoft Office Word Document (docx)_ | And   | Block  |
+| Download File Type | in       | _PDF (pdf)_                             |       |        |