I have a Remote Desktop TCP GPO for Windows Firewall that only allows clients with specific IP ranges to connect. When I apply the GPO, it is being overridden by the pre-existing Remote Desktop rule. When I disable the existing rule locally, my GPO works fine.
I don't want to have to manually disable the existing, default rule on all the servers I deploy for this purpose. I want to set up a GPO once in Active Directory that:
1. Restricts RD access to the IP ranges I specify.
2. Overrides the existing, more relaxed local firewall policy for remote desktop.
Having trouble getting good search results on this one so I thought someone could help.