awakenings
asked on
VLAN ACLs and Windows 2003 group policy replication - syslogs analysis
I have been analyzing a problem and I wanted another opinion.
VLAN A - group policy replication works fine. There are no ACLs between here and the server.
VLAN B - group policy replication does not work. There are ACLs between here and the server.
I have analyzed the syslog messages for a computer in VLAN A and VLAN B. There are no denies in any of the syslog messages. The only thing I can find which is "odd" is a TCP RESET-O setting for the /88 (Kerberos) quite often with the traffic in both VLANS. There is NATing going on in the environment. I wanted to find out if any of you have run across this issue and had any advice. If there was deny traffic, it would be an open and shut case. There isn't so it seems that something is related to network side of things, but I'm not seeing immediate issues. Thanks for your suggestions.
Awakenings
VLAN A - group policy replication works fine. There are no ACLs between here and the server.
VLAN B - group policy replication does not work. There are ACLs between here and the server.
I have analyzed the syslog messages for a computer in VLAN A and VLAN B. There are no denies in any of the syslog messages. The only thing I can find which is "odd" is a TCP RESET-O setting for the /88 (Kerberos) quite often with the traffic in both VLANS. There is NATing going on in the environment. I wanted to find out if any of you have run across this issue and had any advice. If there was deny traffic, it would be an open and shut case. There isn't so it seems that something is related to network side of things, but I'm not seeing immediate issues. Thanks for your suggestions.
Awakenings
Hi,
TCP RESET -O is when a server doesn't listen to a protocol, does it say which protocol or which server?
TCP RESET -O is when a server doesn't listen to a protocol, does it say which protocol or which server?
ASKER
Really... I'll have the team check on this too. The protocol is kerberos. I'll have to follow up with this on Monday.
ASKER
Do you have a web site that explains all the TCP resets?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER