I'm in the process of using policy and class maps to prevent aol, msn and yahoo IM traffic. But there are some people in IT who rely on using the IM for certain things. Whether its help for something or a quick message or whatever. But our IT department is on a different vlan than all the other users. Is there a way that I can still use the policy and class maps to drop IM traffic for all vlans except the IT vlan using ACLs?