Solved

How to Ensure NCSI probe is allowed through Windows Firewall with GPO

Posted on 2016-08-17
2
76 Views
Last Modified: 2016-10-12
I need to know what settings need to be configured in our Windows Firewall GPO to ensure the Windows Network Connectivity Status Indicator is allowed through. We've had some issues with programs not working because of issues with this so we need to make sure it is configured to be allowed through the firewall.

Our users get a warning note on their network connection  Warning on Network Connectivity and when they look at the connection it states "No internet connection" even though they do have internet connection. It does impact things like being able to use online resources in things like Microsoft Word. If they try to insert "Online Pictures", for example, they will get an error that they are not connected to the internet.
0
Comment
Question by:TechInTheWoods
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 81

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points (awarded by participants)
ID: 41812907
NCSI query's a web page and also does a nslookup

A request for http://www.msftncsi.com/ncsi.txt
Page called ncsi.txt containing the following line of text with no terminating new line or other non-printing characters:
Microsoft NCSI
(Page headers disable caching.)

A request for DNS name resolution of dns.msftncsi.com must return 131.107.255.255

https://technet.microsoft.com/en-us/library/cc766017(v=ws.10).aspx

As long as port 80 http is allowed and port 53 dns is allowed then it should work. You will have to investigate WHY the http request fails or the dns lookup fails
More info and how to host your own NCSI server
https://blogs.technet.microsoft.com/networking/2012/12/20/the-network-connection-status-icon/
0
 
LVL 81

Expert Comment

by:David Johnson, CD, MVP
ID: 41839735
Answers the question that the asker abandoned
0

Featured Post

Are Your IoT Devices Out to Get You?

IoT business is booming, with manufacturers connecting any and every “thing” to the Internet. But as pressure grows to release new products faster and faster, we’re all left to wonder: is security a priority? Join our webinar on June 29th for the answer.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Liquid Web and Plesk discuss how to simplify server management with a single tool  in their webinar.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question