Hi!

We have a Windows 2003 domain with GPO implemented so administrators can remote desktop to all servers and workstations. It's been working and still works for all Windows 2003 servers and XP clients. I've just joined a few Windows 2008 R2 servers to the domain but am having problem RDP to them, I can PING them and access their shared folders. When I check the Windows Firewall settings on the W2K8R2 servers, all of the GPO rules are enabled correctly except for "Remote Desktop". "Remote Desktop" shows "Enabled" but "Block". If I turn off Windows Firewall then I can RDP to them. Kindly assist on configuring GPO so RDP can be "Enabled" and "Allow".

CURRENT GPO SETTINGS (Domain & Standard Profiles)
Windows Firewall: Allow local program exceptions (Enabled)
Windows Firewall: Allow inbound file and printer sharing exception (Enabled: 192.168.x.0/24,192.168.y.0/24)
Windows Firewall: Allow ICMP exceptions (Enabled: Allow inbound echo request)
Windows Firewall: Allow local port exceptions (Enabled)
Windows Firewall: Define inbound port exceptions (Enabled: custom rules)
Windows Firewall: Allow inbound remote administration exception (Enabled: 192.168.x.0/24,192.168.y.0/24)
Windows Firewall: Allow inbound Remote Desktop exceptions (Enabled: 192.168.x.0/24,192.168.y.0/24)