Can't comment on the first part of your questions as I don't widely use L7 firewall rules. As for the second part, you can apply L7 firewall rules to specific clients by using Group Policies. You can then assign the group policy to the VLAN (which will apply it to all clients on that VLAN), or manually assign it to specific clients.
... View more
