We recently changed our Rule to a White list type layout. After working with SurfControl on a problem, I though I'd pass along the resolution.

We had a specific secure (HTTPS) site we were trying to allow. Even though we added the following in the Allow rule, no one could access.

https://*.nrsservicecenter.com/*

So we used nslookup to find the IP address for the site by opening a command screen an typing nslookup. At the > sign, we entered the site address ("nrsservicecenter.com") which returned the IP address 155.188.162.54.

We then changed the rule as follows:

http://*.nrsservicecenter.com:443/*

Our users were then able to access the site.