Solved

XP Pro Point-of-Sale server denying connection from front-of-house terminals - Event log shows possible DoS

Posted on 2008-10-23
5
934 Views
Last Modified: 2013-11-18
We have a point-of-sale fileserver in a restaurant with 7 front-of-house terminals, all running XP Pro. Every other day, the terminals fail to connect to the fileserver, even though I can VNC to them from the fileserver and ping back to the server by NetBIOS name (so they are obviously still connected). Upon searching the Windows Event Logs, I found this: Event ID 2027 - "The server has detected a potential Denial-of-Service attack caused by consuming all the work-items.  Some connections were disconnected to protect against this.  If this is not the case, please raise the MaxWorkItems for the server or disable DoS detection.  This event will not be logged again for 24 hours." I need to know how to prevent this and keep the connections open.

The server has 2 separate NICs - one for the internet connection for credit card processing and remote support (they're 250 miles away from me), and another for the internal POS network. Only the POS network seems to be affected, so I am looking for a way to disable the DoS detection for that NIC, if possible, or another reason for the blocked connections with an appropriate solution.
0
Comment
Question by:TechGuyMike
  • 3
  • 2
5 Comments
 
LVL 18

Expert Comment

by:sk_raja_raja
Comment Utility
0
 

Author Comment

by:TechGuyMike
Comment Utility
Already found those solutions, but it sounds like MaxWorkItems should be a dynamic value and I'm hesitant to change it. The event says "OR" disable DoS detection... how do I do that?
0
 
LVL 18

Expert Comment

by:sk_raja_raja
Comment Utility
0
 

Author Comment

by:TechGuyMike
Comment Utility
The Google Books link doesn't provide any information of value for this situation. The NIC in question is on-board, and besides, the site is 250 miles from me, so I am looking for a software config solution I can do remotely.
0
 

Accepted Solution

by:
TechGuyMike earned 0 total points
Comment Utility
Found the specific solution I am looking for. Here is how to disable DoS detection in Windows:
1. Click Start, click Run, type regedit in the Open box, and then click OK.
2. Locate and then click the following registry subkey:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanManServer\Parameters
3. On the Edit menu, point to New, and then click DWORD Value.
4. Type DisableDos for the name of the DWORD value, and then press ENTER.
5. Right-click DisableDos, and then click Modify.
6. In the Value data box, type 1 to disable denial of service attack detection, and then click OK.

Note To enable denial of service attack detection, type 0 in the Value data box.
7. Quit Registry Editor.

Thanks anyway...
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Read about how to choose the best possible content marketing agency to suit your needs. Content marketing has become an integral part of running a successful tech business, so it is wise to be informed.
For both online and offline retail, the cross-channel business is the most recent pattern in the B2C trade space.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now