Solved

Server 2008 incoming connection blocked

Posted on 2016-10-08
16
22 Views
Last Modified: 2016-10-28
We are running server 2008 R2 and we are unable to access any other server or PC on network on this server, but we can access this server on other computers, the incoming connection got blocked for some reason.

this started after the daylight saving time change in Australia, the first error was 1065, please advise.
0
Comment
Question by:Aussy99
  • 7
  • 7
16 Comments
 
LVL 90

Expert Comment

by:John Hurst
ID: 41835486
Is the time correct?  

Look at this blog for possible variations on your server
https://blogs.technet.microsoft.com/dst2007/

Is there a change to the Firewall blocking connections?
0
 

Author Comment

by:Aussy99
ID: 41835490
Yes the time on the server show correct and we didnt do any changes on the server in recent past.

there are error 1065 The processing of Group Policy failed. Windows could not evaluate the Windows Management Instrumentation (WMI) filter for the Group Policy object CN={1CCE6245-DB96-48EB-8F2F-23200AF82EDA},CN=POLICIES,CN=SYSTEM,DC=ULASER,DC=LOCAL. This could be caused by RSOP being disabled  or Windows Management Instrumentation (WMI) service being disabled, stopped, or other WMI errors. Make sure the WMI service is started and the startup type is set to automatic. New Group Policy objects or settings will not process until this event has been resolved.

error 1054 The processing of Group Policy failed. Windows could not obtain the name of a domain controller. This could be caused by a name resolution failure. Verify your Domain Name System (DNS) is configured and working correctly.
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 41835491
There is a solution here where the setting  on the NIC on the DC had the "Register this connection's addresses in DNS" checkbox cleared.

https://social.technet.microsoft.com/Forums/office/en-US/884e59a4-0037-4714-bfdb-957046182e13/recreating-ad-dns-records-on-server-2008-r2?forum=winserverDS

That could possibly explain the change and the error. I have seen NIC settings change occasionally.
0
 

Author Comment

by:Aussy99
ID: 41835492
We have run WMi diag tool also and the result didnt show errors.

this is a virtual server running for 2 years without any problems.
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 41835493
That does not tell us much. Something changed.

There is a NIC (albeit virtual) inside the guest. Did you check it?

What controls host networking outside? Is it bridged? Did you check the host NIC?

Did you change the Firewall?  I asked that earlier.
0
 

Author Comment

by:Aussy99
ID: 41835497
Hi John, just checked the NIC and the checkbox is not cleared its already checked, anymore suggestions.
0
 

Author Comment

by:Aussy99
ID: 41835498
No we did not made any change in the firewall or anywhere on the server, nothing at all.
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 90

Expert Comment

by:John Hurst
ID: 41835499
You might try resetting DNS resolver cache with DNS Flush.

https://technet.microsoft.com/en-us/library/cc816827(v=ws.10).aspx

I run DNS Flush on client workstations when they cannot connect. Try it on your server. We have all new Server 2012 at clients and DNS is working fine.
0
 
LVL 90

Accepted Solution

by:
John Hurst earned 500 total points (awarded by participants)
ID: 41835502
By the way, whenever I run DNS Flush (or TCP/IP Reset - which you can also run), I shut down the machine and start it up again.

Please do this when you restart the server.

Have you restarted the server?  Sometimes a restart will start a service that has stopped.
0
 

Author Comment

by:Aussy99
ID: 41835507
Did the DNS flush but still no luck.
0
 

Author Comment

by:Aussy99
ID: 41835509
We have not restarted in last 2 years, at this stage the only concern is that at the moment I have the outgoing connection working on the server so the users can access things and if restart would cripple the outgoings.
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 41835510
We have not restarted in last 2 years  ????????

That means you have not updated your server either.

Please update and restart. Servers HAVE to restart at reasonable intervals.
0
 

Author Comment

by:Aussy99
ID: 41835514
I know but the problem is that its installed in an business environment which run 24X7 and hence the restart would log off users and work i.e. its not restarted in last 2 years, will schedule with client to restart it.
0
 
LVL 90

Expert Comment

by:John Hurst
ID: 41835516
There have been CRITICAL updates in the last 2 years. You cannot do what you are doing. It is utterly careless and irresponsible. Sorry to be blunt, but you have to determine a downtime window. Every single thing on the planet of every kind needs maintenance.
0
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 41835519
One should not have 1 server for an environment that is required 24/7 at the very minimum you should have 2 servers in a HA setup. This way you can do windows updates, hardware updates etc
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

If you have heard of RFC822 date formats, they can be quite a challenge in SQL Server. RFC822 is an Internet standard format for email message headers, including all dates within those headers. The RFC822 protocols are available in detail at:   ht…
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now