Here are some firewall settings that we configure via GPO for both our AD environment but also for our cluster setups.
Domain linked GPO:
At the domain level, thus all systems are impacted by these settings, we configure Remote Desktop inbound, Remote Event Log Management, Remote Volume Management, and finally Remote Firewall management.
Cluster OU linked GPO:
Here we set the inbound rules that allow us to manage our clusters. The Inbound Rule for Remote Shutdown is a critical one to implement as that allows Cluster Aware Updating to run.
And, there is one rule that seems to be in both places. Chalk that up to export/import. :)
Microsoft Cluster MVP
Co-Author: SBS 2008 Blueprint Book
Chef de partie in the SMBKitchen ASP Project
Find out more at
Third Tier: Enterprise Solutions for Small Business