Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 152
  • Last Modified:

Hyper V and networking, from each Virtual I can ping out but I cannot connect or reach websites

So just recently my two hyper v machines stopped working with the physical network.   However I am able to reach the VM's via UNC e.g \\path from everywhere I check on my LAN.  BUT I'm not able to hit their services from the LAN.  One VM is a SEPM server and other is a Print server.   After some trouble shooting I found that I can hit all required ports from the each VM to the physical host but only on the nic interface I'm binded to.  In other words VM1 is on NIC1 and VM2 is on NIC2 so from the each respective VM I can hit the physical host on all port services (Unlike everywhere else on my LAN) by their bounded NIC interface.  

I really need to get this back working again where the VMs are communication unabated throughout the LAN but at the same time if I need to fix the way I have the VM nics setup so be it.  Help please!
0
jo80ge121
Asked:
jo80ge121
3 Solutions
 
jo80ge121Author Commented:
Ok so I just realized this is now a Symantec issue.  Somehow the SEP client is not blocking my traffic to the VM's.  Once I disabled the SEP on the physical host both my VM's are communicating as before.  Any SEPM symantec experts?
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Yes.

We _don't_ install A/V clients/firewalls on our servers. :)

Leave them to the endpoints.

We only deploy the A/V portion of SEP via MSI to all endpoints. Group Policy is used to do this automagically. We do _not_ deploy the firewall component. We leave that to the Windows Firewall as that is also managed via Group Policy.
0
 
Lionel MMSmall Business IT ConsultantCommented:
Agree use Windows firewall on the servers
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
pgm554Commented:
SEP strikes again!
0
 
jo80ge121Author Commented:
What a pain that was to find.  I created a firewall rule just for the server in SEPM to allow traffic from only the internal subnets the VM's services are for.

Indeed - SEP strikes again!
0
 
pgm554Commented:
My experience has been in troubleshooting systems on these threads is if they mention SEP ,that is the first place to start.
I have many points thanks to bad Symantec products.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now