Moved from wrong forum:
Summary first: we are trying to limit a customer's CPE routing to a single IP, a "walled garden" or "penalty box" if you may, based on the cable modem's assigned policy.
We are using Cisco CNR 6.2 to assign and control the cable modems and attached CPE devices on our network. What we are trying to do is control the CPE policy assigned to a cable modem, based on the cable modem's class of service. If an unknown cable modem attempts to come online, we would like to allow it a baseline class of service to stop it from endlessly ranging, then assign it a specific CPE policy that directs to an information server with no other internet access allowed.
Unless I've missed something, there seems to be no way to directly specify a CPE policy to be used, based on the cable modem policy.