How do you configure it to allow access to certain URLs and block others?

Set up two custom URL libraries:

1. First define a policy for the URL addresses that are allowed to be accessed.
2. Re-define the policy representing all URL addresses.
3. In the Internet policy object, allow (1) and deny (2), and finally apply the Internet policy object rules to the organizational structure for it to take effect.