i'm confused, i have a new domain controller set up with windows firewall enabled - just default configuration nothing's changed.
windows firewall blocks ICMP, however dcdiag on a member server complains that it can't ping the DC.
what's the deal, should ICMP be enabled on the firewall by default, or not? how does one do this on windows firewall? it's not possible to disable the ICMP-blocking rules since 'This rule has been applied by the system administrator'.