Third-party security scanning software reports weak IPSec Encryption

Recently I had a question about an error being produced by a third-party security scanning software package. First let me say that this is less an error and more just information. The error indicates that ISAKMP/IKE key exchange for IPSec could allow insecure connections from clients.  The error suggests that the OS can allow ISAKMP… Read more

NetBIOS Browsing and Windows Server 2008 x64 Server Core

Hello All… it’s Brett Crane from Enterprise Platforms Networking Support! I just wanted to fill everyone in on a workaround for domain browsing for all of you that decide to upgrade your DC’s in your environment to x64 Server Core. Keep in mind, as we let you know in other blog posts, browsing is turned… Read more

Windows Server 2008 NLB uses only the Primary Cluster Network Address

In Windows Server 2008 NLB (Network Load Balancing) we display a Network Address for each Cluster IP address, but we only use the Primary IP Network Address when responding to ARP Requests.  In Windows Server 2003, we did not expose each individual Network Address when there were multiple cluster IP addresses.  The confusion comes in… Read more

Balancing Act – What you really ought to know about Windows Server NLB

BALANCING ACT Managing the multiple data streams comprising today’s enterprise networks can turn into a digital balancing act.  This blog series hopes to assist you in achieving that “Zen-like” symbiosis that we all want.  Like most tools, NLB can be very effective if understood and used properly.  Let’s look at 5 of the top support… Read more

DHCP shows the pending update icon even after the A record is added to DNS

The address leases records in the DHCP Console have an icon with a pen instead of the usual computer icon even though the Host record for the DHCP Client machine is present in DNS. The above icon indicates "Active lease, DNS dynamic update pending.  This address is not available for lease by the DHCP server." … Read more

RPC to Go v.2

This post is an update to “RPC to Go v.1.”  I assume that you have read v.1 and have a basic understanding of how the RPC protocol works.  We’ll take a closer look at the architecture, End Point Mapper bind and the RPC bind.  At the end there will be a list of common problems… Read more

New Networking-related KB articles for October 21 – October 27

I’m sorry for not getting these posted sooner; I have been out of the office on and off over the past several weeks.  I will publish a few of these posts in a row to get caught up again.  Thanks! 955860  High CPU usage occurs for six seconds on a Windows Server 2003-based computer that… Read more

Balancing Act: Dual-NIC Configuration with Windows Server 2008 NLB Clusters

BALANCING ACT   Dual-NIC NLB Configuration with Windows Server 2008 NLB Clusters We’ve had a few calls from customers who have run into a particular issue when they’ve deployed NLB on a Windows Server 2008 cluster.  Most of them have had older NLB deployments and thought we made a change to 2008 NLB to cause… Read more

The effect of TCP Chimney offload on viewing network traffic

Have you ever run in to a problem where you are attempting to troubleshoot a network connectivity issue with a network capture utility and seen only the 3 way handshake? This will happen if you are using Netmon 2.x, Netmon 3.x, Wireshark, Ethereal and most other network capture utilities. It is relatively common knowledge that… Read more

Unable to ping the tunnel address of a Demand Dial Connection on Windows Server 2008 RRAS

Problem Description When a demand dial connection is setup between two RRAS servers each server receives an address from the pool of available addresses located on the server it is connecting to. When Server 2003 servers are used on both ends of the demand dial connection you are then able to ping from each server… Read more