I think you can put "securetrading.net" as an allow rule and it will allow any machine in that domain. Steve Wood HPL Prototypes Limited +44 24 7640 8231 +44 7966 280167 -----Original Message----- From: Graham Walsh [mailto:graham.walsh@xxxxxxxxxxxxx] Sent: 22 April 2002 13:59 To: [ISAserver.org Discussion List] Subject: [isalist] HTTPS Sites http://www.ISAserver.org All I have a customer that wants to block all sites apart from a destination set that contains the sites they want the call centre people to access to process credit card details. When I enable the S&C rules, the users can access the normal sites but not the HTTPS part of the site. In the Destination Set what should I be putting, eg www.securetrading.net or https://securetrading.net with the path of /* The config is W2k, ISA SP1 and NT4 Clients with the FW client installed. Your help would be much appreciated. Regards Graham ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: sew@xxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')