Miffed about the firewall?

[dubsdj]

Hi, I'm slightly miffed about the internal firewall in my default domain policy..

I have enabled the domain profile on all computers in my domain (includes servers)

why is active directory still working perfectly? I have set the block all except specified ports. However the only inbound port I have had to open so far is port 83 for my RDweb.

I'm not complaining, but I'm just a bit surprised because I'm sure AD uses a load of ports to replicate etc.. I was expecting to see a ton of erros in the eventvwr... but nothing... just info messages no warnings.

I said yes to Exempt ICMP from ipsec but I found that clients can ping servers but servers cant ping the clients??..

a bit confused..

Edited January 23, 2012 by dubsdj

[dubsdj]

Just thought is it really worth the hassle. I have a corporate firewall which is pretty good...

disabled Domain Internal Firewall..