I have done some searches on this and found nothing on the site so far which answers this particular question, sorry if I missed it.
I have a newly installed AD on a 2003 enterpirse server. I have created serveral OUs in the AD and want to apply a windows firewall policy to them. Now I created the policy and it doesnt work when applied dirrectly to the OU, however if I apply the same policy to the top of the ad, domain.local container, it works fine. This does not make any sence to me. There are no other policys as I removed the default ones and yet policys set on OUs wont work but do work when set at the top of the hierarchy tree.
I might be missing something obviouse but any help would be appreciated!