Group Policy Management for Firewall

I used the GPO in my domain controller  to set my server firewall - domain outbound block except allow all Core Networking of File and Printer Sharing rules.

After I set this up,  I use gpupdate /force on my server to update my firewall on the server.  That works well.

Subsequent gpupdate /force on my server no longer work.

It seems I might have stopped some outbound rules that is necessary for GPO update to work.

Is there any way I can change my server to accept GPO update, since my firewall on server is under GPO now.

tommym121Asked:
Who is Participating?
 
Krzysztof PytkoConnect With a Mentor Senior Active Directory EngineerCommented:
Hi,

modify your GPO with firewall settings to allow also these ports

TCP,UDP 389, 445, 3269

on affected server, disable all firewall's profile temporairly and run

gpupdate /force or reboot it

after that re-enable firewall's profiles and check if it works again

Regards,
Krzysztof
0
 
tommym121Author Commented:
THanks
0
 
Krzysztof PytkoSenior Active Directory EngineerCommented:
You're welcome :)

Krzysztof
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.