DO policy (Lan mode 1) deployed on 75k devices, all of them comanaged.
Compliance dashboard show 75k devices clearly contacting with peers on the same subnet, but only 1% is achieving >0 bytes savings..
DO inbound rules are opening 7680 UDP & TCP by default on windows firewall.
Our proxy show allowed connections to mandatory Cloud URLs for DO, and its allowing http range bytes.
Same results uninstalling our antivirus.
1% working DO peers doesn't share location.
Intune only devices are also failing.
AADJoin devices are also failing.

Recently we used our DPs as Connected Cache Server. Those DPs really seems to be acting as a hostpeer, and clearly are saving data for us, but is not enough. We need also W10 peering.

To recap...
PCs are getting updates from CDN, then chaching that content and offering themselfs as peers to WU Servers.
Then new PCs contact WU, WU point them to those HostPeers, then new PCs connect with them, but 99% there's no transfer, so after a timeout those PCs are pointing again to CDN causing tons of traffic.

If such location has a Connected cache available, that connection to the CacheServer seems to be working.
Why our cache servers are achiving the transfers, but not our regular W10 boxes?
Which piece of the puzzle I'm missing?

I'm completely desesperate, with feature upgrade paused as we cannot afford such payloads without destroying the networks.
Mayday! Any idea, any clue?