Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Group Policy does not apply across subnets????

Status
Not open for further replies.
eastwood357

eastwood357

Technical User
May 19, 2003
27
0
0
GB
Hello All

We have Group Policy in our domain, we have three subnets defined. 192.168.204 to 192.168.206

Thing is group policy applies when the machine is not part of any of the above subnets. add the machine to the subnet and the user part of the GPO doesnt run.

Any ideas how to fix?

Thanks

Eastwood
 
Sort by date Sort by votes
heres the excerpt from the link I provided you that applies to the problem your experiencing:

Group Policy
To successfully apply Group Policy, a client must be able to contact a domain controller over the DCOM, ICMP, LDAP, SMB, and RPC protocols. If any one of these protocols are unavailable or blocked between the client and a relevant domain controller, policy will not apply or refresh. For a cross-domain logon, where a computer is in one domain, and the user account is in another, these protocols may be required for the client, the resource domain, and the account domain to communicate. ICMP is used for slow link detection. For more information about slow link detection, click the following article number to view the article in the Microsoft Knowledge Base:
227260 ( How a slow link is detected for processing user profiles and Group Policy


System service name: Group Policy
Application protocol Protocol Ports
DCOM TCP + UDP random port number between 1024 - 65534
ICMP (ping) UCP 20
LDAP TCP 389
SMB TCP 445
RPC TCP 135, random port number between 1024 - 65534
 
Upvote 0 Downvote
Hi Drew

Thanks for the help, unfortunatly all ports are working fine.

I should also explain a bit more.

The machine in question (Test PC) has a 2.4.110 IP addy. Add that address to the sites and services subnet and it stop receiving GPO. Take it out and its all good.

Now caputering teh frames leads me to see how it talks when in the subnet and out.

When in it talks only to DC, and then seems to time out.

When out it talks to DC and a sqlServer where our redirect menu's sit, then goes back to DC to get GPO.

i am now wondering what my next step is going to be, i am trying to find out why when the pc is in subnet it doesnt talk to the sqlserver.

Thanks for you help once again
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
109
microsGuy16
microsGuy16
dpellegrini
  • Locked
  • Question
Website will load using hostname but not IP address
Replies
3
Views
189
mangentle
mangentle
ADB100
  • Locked
  • Question
Single Windows 7 Ultimate workstation not applying Registry, Drive Map or Printers GPO settings
Replies
1
Views
82
technome
technome
on3mansh0w
  • Locked
  • Question
[HELP] AD GPO not applied unexpectedly
Replies
0
Views
64
on3mansh0w
on3mansh0w
disturbedone
  • Locked
  • Question
Edge Chromium protected media not working
Replies
1
Views
63
disturbedone
disturbedone

Part and Inventory Search

Sponsor

Back
Top