I'm trying to use Access Restriction to prevent a range of IP from accessing the internet. I have a Server 2003 running DHCP and DNS. It provides DHCP services to the workstations, not the WRV54G. It also provides DNS to the workstations and forwards all non-local queries to the WRV54G and than RR's address. I Enable a new policy I call "NoInternet", Edit List and enter 192.168.0.10-254 for A RANGE, select Deny, Everyday, 24hrs. Than I use either HTTP as the service or even the "allports" service I created which is range 1-65535. I save the settings and have even rebooted the router. However, the workstatons in the IP range are still able to access the Internet! The only way I am able to block anything is by using a domain name (i.e. yahoo.com) for testing. What am I doing wrong? Is it that the WRV54G isn't providing DHCP and DNS? Thanks.