Solved

Windows XP NLA Service Polling Cycle

Posted on 2009-05-05
6
747 Views
Last Modified: 2012-05-06
In Windows XP SP2 & SP3 does anyone know what the default polling / timeout settings are for the NLA service? How can I change this vaule in the registry?
0
Comment
Question by:compdigit44
  • 4
  • 2
6 Comments
 
LVL 26

Expert Comment

by:Pber
ID: 24316766
The NLA service is doesn't actually poll the network itself at a set interval.  It just provides the functions and methods for applications to invoke queries.
This MSDN site explains how applications can use it: http://msdn.microsoft.com/en-us/library/ms700657(VS.85).aspx
The TCP/IP Protocol Driver and Winsock (afd.sys) use NLA to provide Network Awareness.  I looked through those drivers in the registry and can't seem to find a polling value.  This may be a hardcoded item or a query on demand setup.
0
 
LVL 20

Author Comment

by:compdigit44
ID: 24316927
OK... I might to looking in the wrong direct. The reason for me opening this questions is becuase I need to find a why to "extened" the timeout period for our network connects. What happens is that we have using connecting in from remote sites and it the link goes down they loose there connection then their windows firewall turns on which causes a whole bunch of problems....Any idea on a fix / workaround????
0
 
LVL 26

Expert Comment

by:Pber
ID: 24317156
I think that is one of those "This is by design"  "features" as Microsoft would put it.  
The firewall is meant to turn on almost immediately when the network connection is lost.  If your policy allows it, you could adjust the standard firewall profile to allow for local network access when the link goes down.  
I don't think there is much that can be done with respect to how the firewall uses NLA to enable itself.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 20

Author Comment

by:compdigit44
ID: 24317380
HUmmmmmmmmmm... Is there someway to extend the timeout period for a windows before it seems a network connection as disconnected then??
0
 
LVL 26

Accepted Solution

by:
Pber earned 500 total points
ID: 24317929
I've been surfing through MSDN and it seems that it is definitely up to the application using the NLA to query for status change.  This page explains how it works.
See this: http://msdn.microsoft.com/en-us/library/ms739957(VS.85).aspx
This also further explains the WSANSPIoctl function and how it is implmented:
http://msdn.microsoft.com/en-us/library/ms741658(VS.85).aspx
So I would suspect TCP/IP or Winsock as the culprit that does the NLA querying.  I'm still scouring through the registry trying to find if there is some parameter that may be of use.
0
 
LVL 26

Expert Comment

by:Pber
ID: 24366929
Further to this, I still couldn't find any attribute that can be controlled.  I went to the extent of running regmon to see there were reg keys queried that related to this issue during network failures and still nothing conclusive.
Sorry
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

680 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question