I work for a public school system. We need to restrict peoples access during critical online testing periods. To do this we disabled the default allow rule. Then we created a rule that allowed access based upon site ip address. All of the sites we allowed access worked. However some of the sites we needed blocked could still access the ISA box. Any ideas? Shane