I figured out how to block MSN Messanger using the Blocked Services feature on the Access Restrictions tab. I simply block port 443 (https) and MSN cannot log in. This will keep my kids off. What I want to do is limit the time of day they can have access to MSN but still access the web. So for example I only want them to use MSN from say 7pm to 8pm, let them surf till 10pm and then shut down access completely and get to bed! I can block HTTPS all the time but that's not what I want to do. Another thing, do the BLOCKED SERVICES only apply to the given policy or is the policy separate from the Blocked Services. Does that make sense??