I'd like to be able to block my kids using HotspotShiled VPN (or other VPNs) to bypass the Parental Control restrictions. I can see in FlexQoS that the Trendmicro engine recognizes the traffic to HotspotShiled and marks it with Mark 0B0041. Based on that I can easily assign it to desired Class from QoS point of view (in FlexQoS) but I was wondering if I can block the Outbound traffic based on Application Mark e.g. 0B0041?