Hi,

I wanted to block the internet for clients in an OU and make some exception websites. I have successfully blocked internet by creating the block rule. It did block my internet. After that  I have created one more rule to allow the websites which I wanted to make an exception. But my browser still blocks all the websites. The steps I have taken are mentioned below.

1. Added a blank rule.

2. On the application I have added my brwoser name with full path.

3. On the Host section added the Source IP address for which I wanted to block and Destination as "DNS Domain - *.* ".

4. Apllied the policy to the client group.

It worked and blocked all the websites for the browser.

Again I have added one more blank rule for the allowed websites and placed down the block rule.

I have added the brwser with full path.

On the host added same IP as source and destination DNS Domain - *.<the websites which I wanted to allow>.

But my client is till getting blocked all the sites.

What is the mistake I have done in this???

have you see below articles ?

How to Restrict Users to Specific Web Sites by Creating Firewall Rules for Managed Clients

Thanks guys for the support...

James 007 the article really helped me to find out the solution., Problem was on the placement of the policy and the allowed sites I have entered. I have added the name of the child domain insted of the root. Like insted of adding symantec.com added support.symantec.com. That really wont work.. 

Thanks again guys....