From c6a642b9031d76913d883b4da458c639e021d0b5 Mon Sep 17 00:00:00 2001
From: Max Phillips <mphillips@cloudflare.com>
Date: Mon, 18 Nov 2024 16:53:35 -0600
Subject: [PATCH 1/2] Add policies

---
 .../network-policies/common-policies.mdx      | 19 ++++++++++++++++++-
 1 file changed, 18 insertions(+), 1 deletion(-)

diff --git a/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx b/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
index 09912313f67f018..6d89ffd3e499c03 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
@@ -26,7 +26,24 @@ Require devices to have certain software installed or other configuration attrib
 
 ## Enforce session duration
 
-[Require users to re-authenticate](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-sessions/) after a certain amount of time has elapsed.
+To require users to re-authenticate after a certain amount of time has elapsed, configure [WARP sessions](/cloudflare-one/connections/connect-devices/warp/configure-warp/warp-sessions/).
+
+## Allow only approved traffic
+
+Restrict access to only specific sites or applications as configured in your [HTTP policies](/cloudflare-one/policies/gateway/http-policies/).
+
+### 1. Allow HTTP and HTTPS traffic
+
+| Selector          | Operator | Value       | Logic | Action |
+| ----------------- | -------- | ----------- | ----- | ------ |
+| Detected Protocol | is       | _TLS_       | And   | Allow  |
+| Destination Port  | in       | `80`, `443` |       |        |
+
+### 2. Block all other traffic
+
+| Selector | Operator | Value        | Action |
+| -------- | -------- | ------------ | ------ |
+| Protocol | in       | _UDP_, _TCP_ | Block  |
 
 ## Restrict access to private networks
 

From b4e7f1570c6bc8e3bcdde44ce6d7dce867999359 Mon Sep 17 00:00:00 2001
From: Max Phillips <mphillips@cloudflare.com>
Date: Mon, 18 Nov 2024 16:54:08 -0600
Subject: [PATCH 2/2] Reword

---
 .../policies/gateway/network-policies/common-policies.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx b/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
index 6d89ffd3e499c03..9098cd11c3331ff 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/network-policies/common-policies.mdx
@@ -30,7 +30,7 @@ To require users to re-authenticate after a certain amount of time has elapsed,
 
 ## Allow only approved traffic
 
-Restrict access to only specific sites or applications as configured in your [HTTP policies](/cloudflare-one/policies/gateway/http-policies/).
+Restrict user access to only the specific sites or applications configured in your [HTTP policies](/cloudflare-one/policies/gateway/http-policies/).
 
 ### 1. Allow HTTP and HTTPS traffic