You didn't give me much to work with. For instance, if I had a "NAT capable ROUTER" based on Linux that served as your gateway to the internet, all this would be too easy. The FIREWALL would be programmed to do as you please.
Let me be blunt, I will not supply any step-by-step procedures, but will point to documentation and such may have step by step procedures. And even that may not be enough since some basic understanding of TCPIP networking will make questions such as "Why am I doing this?" at each step not be a hindrance.
Simple methods:
1. Program the firewall to do this.
2. Don't use the DNS of your ISP. Setup your own DNS and maintain it yourself with just the entries that are authorized. Figure about an hour each week to month to keep it working.
Bob
I want to be able to surf the internet at my leisure and surf whatever I want, whenever I want (typical). I don't want my employees checking their emails at work, text messaging at work, surfing the net at work. The net is at work for a couple specific web-site's which employee's need to access for work related items. If I cannot get around this problem then I will make a hand-written rule which everyone signs which tells them the internet is for work items only, and if you are on the internet you will be diciplined (I don't like doing this as it is military style). I would rather just have the internet access limited by default (except for me). Can I do this?

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic