• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 308
  • Last Modified:

Group Policy Management for Firewall

I used the GPO in my domain controller  to set my server firewall - domain outbound block except allow all Core Networking of File and Printer Sharing rules.

After I set this up,  I use gpupdate /force on my server to update my firewall on the server.  That works well.

Subsequent gpupdate /force on my server no longer work.

It seems I might have stopped some outbound rules that is necessary for GPO update to work.

Is there any way I can change my server to accept GPO update, since my firewall on server is under GPO now.

  • 2
1 Solution
Krzysztof PytkoSenior Active Directory EngineerCommented:

modify your GPO with firewall settings to allow also these ports

TCP,UDP 389, 445, 3269

on affected server, disable all firewall's profile temporairly and run

gpupdate /force or reboot it

after that re-enable firewall's profiles and check if it works again

tommym121Author Commented:
Krzysztof PytkoSenior Active Directory EngineerCommented:
You're welcome :)

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Train for your Pen Testing Engineer Certification

Enroll today in this bundle of courses to gain experience in the logistics of pen testing, Linux fundamentals, vulnerability assessments, detecting live systems, and more! This series, valued at $3,000, is free for Premium members, Team Accounts, and Qualified Experts.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now