[Samba] Group Policies are not applied

[Pisch Tamás]

> CMD : ipconfig /all
> Check dns-suffix and primary domain suffix..
ad.ourdomain.hu: thats ok.

> What is windows event ID telling?
1053 and 1055. Windows cannot resolve user/computer name.
> And, did you test with the firewall off.. of not at least try it.
Unfortunately not. It let in the vpn traffic, and it has several other
important rules. As I see, traffic between dc2 and the client Win10 is
not filtered. dc2 runs on a Windows 2008 hypervisor. I'm going to move
it to Vmware in 1-2 days, because I've read an article about that
Windows 2008 has a network problem what could cause similar problem
(yes, Windows 2008 is too old, but I inherited that environment).

Regards,

Tamás.
>
> Greetz,
> Louis
>
>
> > -----Oorspronkelijk bericht-----
> > Van: samba [mailto:samba-bounces at lists.samba.org] Namens Pisch Tamás via
> > samba
> > Verzonden: maandag 12 april 2021 11:29
> > Aan: samba at lists.samba.org
> > Onderwerp: Re: [Samba] Group Policies are not applied

> >
> > > https://wiki.samba.org/index.php/Samba_AD_DC_Port_Usage
> > >
> > > here you go.
> > My problem still exists (I get error message when I run gpupdate
> > /force from home through vpn, but it runs without error when the
> > client is in the local network). I copied my dcs to home into
> > Virtualbox, and tried to run gpupdate /force. It was succesful. Ok,
> > then it looks that it is really a firewall problem. But:
> > I ran iptraf on the dcs, while I ran gpupdate. I wrote down the ports
> > on which the client connected: 135,445,53,88,389.
> > (back to the dcs I run on my workplaces. I enabled all IP traffic
> > towards the dcs) I tried to connect to these ports with telnet. I can
> > connect to all ports from home remotely. So the firewall doesn't block
> > me. I ran iptraf on the remote dcs while I ran gpupdate. It showed
> > that client connects to port 135,53,389 (it didn't connect to 88 and
> > 445).
> >