Solved

VLAN ACLs and Windows 2003 group policy replication - syslogs analysis

Posted on 2006-06-09
5
485 Views
Last Modified: 2008-02-26
I have been analyzing a problem and I wanted another opinion.

VLAN A - group policy replication works fine.  There are no ACLs between here and the server.
VLAN B - group policy replication does not work.  There are ACLs between here and the server.

    I have analyzed the syslog messages for a computer in VLAN A and VLAN B.  There are no denies in any of the syslog messages.  The only thing I can find which is "odd" is a TCP RESET-O setting for the /88 (Kerberos) quite often with the traffic in both VLANS.  There is NATing going on in the environment.  I wanted to find out if any of you have run across this issue and had any advice.  If there was deny traffic, it would be an open and shut case.  There isn't so it seems that something is related to network side of things, but I'm not seeing immediate issues.  Thanks for your suggestions.

Awakenings
0
Comment
Question by:awakenings
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 

Author Comment

by:awakenings
ID: 16873139
The duration on the TCP RESET-O is 00:00:00 if that helps.
0
 
LVL 4

Expert Comment

by:tomerlei
ID: 16873946
Hi,
TCP RESET -O is when a server doesn't listen to a protocol, does it say which protocol or which server?
0
 

Author Comment

by:awakenings
ID: 16873974
Really...  I'll have the team check on this too.  The protocol is kerberos.  I'll have to follow up with this on Monday.
0
 

Author Comment

by:awakenings
ID: 16873979
Do you have a web site that explains all the TCP resets?
0
 
LVL 4

Accepted Solution

by:
tomerlei earned 500 total points
ID: 16874233
TCP Reset-O means that the computer sent a query to a server in specific protocol and that server was not listening for this protocol, port 88 is the standard port that is being used by kereberos.
Does the event log says which server did he try to query?
From what you say i belive he tries to query your DC and for some reason the server does not reply to him.
And from what i understood your server is connected to two seperate VLANS right?
if it does, then how exactly it is connected? the server has two NICs or a 802.1q supporting NIC?
And what is the IP range that is being used in each vlan?
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question