I have this issue now cropping up as well. We are getting Entrust encrypted emails, that is adding on .enp to the existing file name. I tried to write a rule, but I'm not sure if it is working right. allow \.xls.enp$ - - Is this going to let the encrypted file name through? Thanks. -- -=/>Thom