|I appreciate everyone's response. I will look further into all of this. I was really just trying this as a test of sorts because I'm having trouble with the policy in my firewall and I was trying different approaches to see what was working and what was not, with and without the firewall.|
Oddly enough, before you guys started responding, I removed the domain name portion of my host file edit, and entered the ip address instead. so it read 127.0.0.1 220.127.116.11 (for example) and at the moment, nobody can get to that site on the network. Again, this was by editing the host file on the AD server where dns is running, not on the workstation machines.
I don't know if it's working, or if something else is going on... But I appreciate everyone's comments and suggestions.