[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 493
  • Last Modified:

VLAN ACLs and Windows 2003 group policy replication - syslogs analysis

I have been analyzing a problem and I wanted another opinion.

VLAN A - group policy replication works fine.  There are no ACLs between here and the server.
VLAN B - group policy replication does not work.  There are ACLs between here and the server.

    I have analyzed the syslog messages for a computer in VLAN A and VLAN B.  There are no denies in any of the syslog messages.  The only thing I can find which is "odd" is a TCP RESET-O setting for the /88 (Kerberos) quite often with the traffic in both VLANS.  There is NATing going on in the environment.  I wanted to find out if any of you have run across this issue and had any advice.  If there was deny traffic, it would be an open and shut case.  There isn't so it seems that something is related to network side of things, but I'm not seeing immediate issues.  Thanks for your suggestions.

Awakenings
0
awakenings
Asked:
awakenings
  • 3
  • 2
1 Solution
 
awakeningsAuthor Commented:
The duration on the TCP RESET-O is 00:00:00 if that helps.
0
 
tomerleiCommented:
Hi,
TCP RESET -O is when a server doesn't listen to a protocol, does it say which protocol or which server?
0
 
awakeningsAuthor Commented:
Really...  I'll have the team check on this too.  The protocol is kerberos.  I'll have to follow up with this on Monday.
0
 
awakeningsAuthor Commented:
Do you have a web site that explains all the TCP resets?
0
 
tomerleiCommented:
TCP Reset-O means that the computer sent a query to a server in specific protocol and that server was not listening for this protocol, port 88 is the standard port that is being used by kereberos.
Does the event log says which server did he try to query?
From what you say i belive he tries to query your DC and for some reason the server does not reply to him.
And from what i understood your server is connected to two seperate VLANS right?
if it does, then how exactly it is connected? the server has two NICs or a 802.1q supporting NIC?
And what is the IP range that is being used in each vlan?
0

Featured Post

Become a Leader in Data Analytics

Gain the power to turn raw data into better business decisions and outcomes in your industry. Transform your career future by earning your MS in Data Analytics. WGU’s MSDA program curriculum features IT certifications from Oracle and SAS.  

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now