I am trying to block web based email for users connected to the client VPN. I have been told that the only way to do this would be to apply a group policy to each individual client in Network Wide > Clients. This does not seem to be a manageable solution. I know this can be done at the overall firewall level but we don't want it blocked on our Guest Network so my plan is to apply a group policy to our production/workstation VLAN, but this does not cover client VPN. Has anyone been able to apply a Layer 7 firewall rule like this to client VPN, and if so, how did you do it? Thank you.