Network policy for where agents may send traffic: an allowlist that auto-runs, a denylist that's always blocked and default-deny for everything else, plus DNS filtering and an HTTP proxy.