You want to block a top-level domain (TLD) using Web URL Filtering Policies without causing False Positives for domains that contain the same string.
For example, you want to block the TLD ( .ru ) but not a domain such as www.runnershaven.org
Adding top-level domain in the format of *.tld can have unintended consequences such as triggering domains that contain the same string.
1.*.news would trigger on www.fakenews.ca and a TLD such .news
2.*.ru would trigger on www.runnershaven.org and a TLD such as .ru
To block a TLD without causing False Positives for other domains, enter the TLD in the following notation: *.tld/
1. *.news/ would only trigger on the TLD .news
*.news/ would not trigger on http://www.fakenews.ca
*.news/ would trigger on https://demonstration.news
2. *.ru/ would only trigger on the TLD .ru
*.ru/ would not trigger on http://www.runnershaven.org
*.ru/ would trigger on http://www.domain.ru