We recently changed our Rule to a White list type layout. After working with SurfControl on a problem, I though I'd pass along the resolution.

We had a specific secure (HTTPS) site we were trying to allow. Even though we added the following in the Allow rule, no one could access.


So we used nslookup to find the IP address for the site by opening a command screen an typing nslookup. At the > sign, we entered the site address ("nrsservicecenter.com") which returned the IP address

We then changed the rule as follows:


Our users were then able to access the site.