Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

how to force ipv4 precedence in server 2008

Posted on 2011-03-01
6
2,889 Views
Last Modified: 2012-08-13
We are using MS System Center Virtual Machine Manager to centralize management of Hyper-V installations.  One of our Hyper-V customers enabled IPv6 on their server for their own purposes or experimentation.  Our VMM server lost connectivity to it because it is pulling the AAAA record, and some of our internal routers/switches do not support IPv6 yet.  We need to force the VMM to give IPv4 precedence.  How can we do that?
0
Comment
Question by:Steve Bink
  • 3
  • 3
6 Comments
 
LVL 19

Accepted Solution

by:
bevhost earned 300 total points
ID: 35015928
Look at

netsh int ipv6 int show/set prefixpolicy

similar to gai.conf under linux as per RFC 3484
0
 
LVL 50

Assisted Solution

by:Steve Bink
Steve Bink earned 0 total points
ID: 35120253
While the solution certainly does appear to work as advertised, we ended up disabling IPv6 on the SCVMM machine.  The powers-that-be did want to mess with configuration through netsh.

There is also another solution I found from Microsoft, which appears to be a little easier to implement:

http://support.microsoft.com/kb/929852

0
 
LVL 19

Expert Comment

by:bevhost
ID: 35121156
Well that's fair enough if you have no need for IPv6 but I recommend strongly against it.
You could end up having to disable IPv6 on all your servers.
That could create a real mess when you eventually have to turn it back on one day in the furture.

In particular, any Win7 or Vista machine which doesn't also have IPv6 disabled that finds a DNS entry pointing to the (disabled) Ipv6 interface of your server will have problems.
0
Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

 
LVL 50

Author Comment

by:Steve Bink
ID: 35121870
>>> [ ... ] I recommend strongly against it.

So do I.  I'm very much in favor of maintaining a functional IPv6 environment.  I believe it is coming up sooner than we think.  Unfortunately, our network admin is resistant (he believes it will not happen for the next 100 years..?!) and management is unwilling to push the issue.

Luckily, it is only this one particular customer that is playing with IPv6, and it only happens to interfere with this one server because of the Hyper-V involvement.  The "fix" should be adequate for now.

What are your thoughts on the alternative solution from Microsoft?  Have you played with precedence using that method?
0
 
LVL 19

Expert Comment

by:bevhost
ID: 35123671
>> Have you played with precedence using that method?

I have, but only on linux servers.
Apparently this also requires adjustment on MAC OSX for proper operation.

When microsoft wrote the RFC, they assumed that any PC using private IP address would not have global access.
This is most offten incorrect, and so microsoft ignore their own RFC. MAC OSX and some most linux distros still follow the RFC, so have to be tweaked so that a private IPv4 machine when trying to talk to a server with a public ipv4 address wont prefer IPv6 tunnel mechanisims.

I always change my LAN address to have global precedence, if it has access to the internet.
0
 
LVL 50

Author Closing Comment

by:Steve Bink
ID: 35154592
A different solution was implemented, and an easier solution was available.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have a multi-homed DNS setup in windows, you can have issues with connectivity to the server that hosts the DNS services (or even member servers of your domain if this same DNS server is a DC). This is because windows registers all of its IPs…
I will assume you are running a non-server version of some sort of Windows throughout this article. There are many flavors of Windows since Windows Server 2000 - 2008, XP Home & Pro, Vista Home & Pro, and Windows 7 Starter, Home, Pro, Ultimate, etc.…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question