Link to home
Create AccountLog in
Avatar of jdroger2
jdroger2Flag for United States of America

asked on

IPSEC Service Fails and switches to block mode

We're getting IPSEC error 4292 in the system log on a server.  The issue is intermittent.  Always a manual reboot of the server will fix it.  We have followed the instructions of the microsoft article http://support.microsoft.com/kb/912023, which appeared to solve the issue for a couple of days, but the problem has now returned.  

Attempts to replicate the issue by rebooting the server using the nightly reboot schedule have been unsuccessful, so we have been unable to recreate the issue on demand to troubleshoot.  Any suggestions are welcome.

Thanks,
Matt
Avatar of Jeffrey Kane - TechSoEasy
Jeffrey Kane - TechSoEasy
Flag of United States of America image

Please also see http://support.microsoft.com/kb/870910

Jeff
TechSoEasy
Avatar of jdroger2

ASKER

The steps in that article are exactly the same as the one we had previously followed, while these steps resolve the specific incident, they do not help us determine what is causing the corruption to the IPSEC policy or prevent it from continuing to happen.

Thanks,
Matt
ASKER CERTIFIED SOLUTION
Avatar of Jeffrey Kane - TechSoEasy
Jeffrey Kane - TechSoEasy
Flag of United States of America image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Avatar of Seankubin
Seankubin

Use this registry key to "bypass" block mode.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\IPSec
Value name: OperationMode
Value type: REG_DWORD
Value data: 1=turn on Block mode (bad) 0=bypass Block mode aka prevent block mode.