I have been asked to create a deny rule on my web site for 'unspecified clients' then add an allow entry and set it to *.secure.xx.com. I can do the deny rule but the allow will only take a specific IP address OR a range of IP address and then there is the option for a mask or prefix with the range option. When I use my IP address and try to type this in the mask section I get an error that says invalid subnet mask must be IP address or integer value IPV4 0-128. I tried with and without the iP and I can't see anywhere to add this value that works as an allow. Can someone tell me how to add this *.secure.xx.com to my allow entry?