I've run up against the 128 ACL limit, mainly because of the lack of port ranges. I have found that Group Policies don't have the port range restriction. I have only MS switches and MR access points; no MX firewalls.
1) Is there a limit to the number of Layer 3 firewall rules in a GP? Or even a practical one?
2) I've added my PC's to a test deny rule to block a particular gaming website. However, I can still resolve the URL. I can even set it to Protocol "All" and it still resolves and doesn't block my pings.
Can I do what I would like to do with Group Policies on my switches? Any advice would be appreciated.