Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1654
  • Last Modified:

IPSec is blocking network traffic

I have a windows 2003 Enterprise Edition x32 that after restarting stops responding on the network.

It is a domain controller that is also running Exchange 2003 Standard and one Virtual server instance.

The exact error message is "The ipsec driver has entered a Block mode.  IPSec will discard all inbound and outbound TCP/IP network traffic that is not permitted by boot-time IPSec Policy exemption."

One of the suggestions is to stop the IPSec services.  However I have a SSL certificate installed.

In addition to the ipsec error message there are 3 others that appear during the restart process all relating to the KDC service.

To fix the problem I simply do another restart and the server starts responding again and the error message goes away.

What on earth could be causing this?  Any suggestions would be appriciated.
ipsec-error.jpg
kdc-error.jpg
service-hang1.jpg
service-hang2.jpg
0
Douglas-Brouhard
Asked:
Douglas-Brouhard
1 Solution
 
Krzysztof PytkoActive Directory EngineerCommented:
From eventid.net extract

"As per Microsoft: "This problem occurs because the DNS Server service is listening on the UDP port that is required by another service. This problem occurs when the MaxUserPort registry entry is present. This registry entry is located in the following subkey in the registry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\". See M956189 for default values for MaxUserPort. "

Read those entries, maybe they will help you

http://www.eventid.net/display.asp?eventid=4292&eventno=5676&source=IPSec&phase=1
http://www.eventid.net/display.asp?eventid=20&eventno=3396&source=KDC&phase=1
http://www.eventid.net/display.asp?eventid=7022&eventno=111&source=Service%20Control%20Manager&phase=1
http://www.eventid.net/display.asp?eventid=7023&eventno=345&source=Service%20Control%20Manager&phase=1
0
 
Tony MassaCommented:
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now