Solved

How to Ensure NCSI probe is allowed through Windows Firewall with GPO

Posted on 2016-08-17
2
37 Views
Last Modified: 2016-10-12
I need to know what settings need to be configured in our Windows Firewall GPO to ensure the Windows Network Connectivity Status Indicator is allowed through. We've had some issues with programs not working because of issues with this so we need to make sure it is configured to be allowed through the firewall.

Our users get a warning note on their network connection  Warning on Network Connectivity and when they look at the connection it states "No internet connection" even though they do have internet connection. It does impact things like being able to use online resources in things like Microsoft Word. If they try to insert "Online Pictures", for example, they will get an error that they are not connected to the internet.
0
Comment
Question by:TechInTheWoods
  • 2
2 Comments
 
LVL 79

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points (awarded by participants)
ID: 41812907
NCSI query's a web page and also does a nslookup

A request for http://www.msftncsi.com/ncsi.txt
Page called ncsi.txt containing the following line of text with no terminating new line or other non-printing characters:
Microsoft NCSI
(Page headers disable caching.)

A request for DNS name resolution of dns.msftncsi.com must return 131.107.255.255

https://technet.microsoft.com/en-us/library/cc766017(v=ws.10).aspx

As long as port 80 http is allowed and port 53 dns is allowed then it should work. You will have to investigate WHY the http request fails or the dns lookup fails
More info and how to host your own NCSI server
https://blogs.technet.microsoft.com/networking/2012/12/20/the-network-connection-status-icon/
0
 
LVL 79

Expert Comment

by:David Johnson, CD, MVP
ID: 41839735
Answers the question that the asker abandoned
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Enterprise Password Manager Suites as well as Local Password managers are covered in this article.
One of the biggest threats in the cyber realm pertains to advanced persistent threats (APTs). This paper is a compare and contrast of Russian and Chinese APT's.
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now