Enabling Firewall from GPO blocks GPUPDATE /force

Copper Contributor

Microsoft best practice and other security organizations recommend enabling the built-in Windows Firewall. I admit that over years in a domain environment having the firewall on caused me headaches when managing windows computers. Well I am in a different position and enabling the firewall is required.

The Problem:

When I enable the firewall using GPO, it seems to be blocking my ability to use gpupdate /force. I have allowed the gpupdate program and I have allowed ports 137 and 445, but it still fails. Below is screen shot of failure.


If I remove the GPO it works again.


Looking for any help please.



1 Reply
I had problem with GPO updating after I blocked port 139 on firewall. Is this port open?