[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Wsus3 Clients connected to wrong wsus Server

Posted on 2009-05-05
6
Medium Priority
?
638 Views
Last Modified: 2012-05-06
Hi


We have an issue where a few clients from a few offices are connected to the wrong wsus server. It is also downloading something from the wsus3 server and causing heavy network traffic

If i run a netstat on a client that is registred to stockholmwsus, i see connections to glasgowwsus.

We have used tpcview, and the connections are: system:4 connections.

Why are some clients connected to a diffrent wsusbox while they are registred on the correct one and can be seen as active on the correct wsusserver, but still is downloading stuff from another wsusserver which is not specified in gpo??

All XP, GPO's used. Clients are in correct GPO.

Thanks /Dabosa
0
Comment
Question by:Dabosa
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 4

Expert Comment

by:rentonc
ID: 24303125
Assuming you have checked the GPO and confirmed by looking at the registry settings on the affected machines
in the follwoing key
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate

It couild be a DNS issue on the affected machines, can you ping to your stockholmwsus from the affected machines to make sure they are not resolving to the ip of the glasgowwsus

0
 

Author Comment

by:Dabosa
ID: 24303462
GPO is checked and correct, also the correct server stockholmwsus is specified in this registry key.
Still there are connections to the glasgowwsus.

The clint ip settings are correct, the stockholmwsus resolves fine.

I have now checked the IP config on both wsus servers and they have the same correct  dns's and wins's.
0
 
LVL 4

Expert Comment

by:rentonc
ID: 24303793
1 final thought - is that maybe it is in the middle of a large update so the cookie may still point to the old server - maybe you could try this from the command prompt
wuauclt /resetauthorization /detectnow

0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:Dabosa
ID: 24303856
Just tried it, command went fine, but still i see connection to wrong wsus server.

I have used the taskkill /F /PID "nr" on client tio kill connection and it sussessfully removes the connection but its instantly re-establishes connectivity once removed.
0
 
LVL 47

Expert Comment

by:Donald Stewart
ID: 24306641
What does this command return?
 
reg query "HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" /s  
0
 

Accepted Solution

by:
Dabosa earned 0 total points
ID: 24314029
It is solved now. This was the problem: In the same subnet we had a rightfax server

It just so happens that it used  to be the same IP address as the new Glasgow WSUS Server. No IP confilct events on the wsus though:(

The problem is arising when users have accidently printed to the Rightfax driver (possibly because it was set a default at one point.)

These then attempt to connect to the WSUS Server.

The size of the print seems to have some bearing on the connections also, but Im not sure where the downloading is coming from, or if the prints determine the size.

WSUS was fine all along - All fine now.

Thanks for all troubleshoot input! /D

0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes clients can lose connectivity with the Lotus Notes Domino Server, but there's not always an obvious answer as to why it happens.   Read this article to follow one of the first experiences I had with Lotus Notes on a client's machine, my…
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question