Server on, no connections

In the past few months, I have had random situations where a server would restart, and following the restart, no one could connect in or the server would not connect out. Normally, a second reboot would fix the problem.

I have discovered that this is caused by the application of the MS08-037 patch. If the randomly assigned ports conflicted with the IPSEC service, this service would fail, causing the server to start in block mode where all network connectivity to the server is blocked. The proactive solution as documented by Microsoft in http://blogs.technet.com/sbs/archive/2008/07/17/some-services-may-fail-to-start-or-may-not-work-properly-after-installing-ms08-037-951746-and-951748.aspx is to modify a registry entry as follows.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ReservedPorts
Add the following port ranges and reboot.
3343-3343
1433-1434
1745-1745
1080-1080
1720-1720
1645-1646
1701-1701
1812-1813
2883-2883
4500-4500

There is more information on this problem along with other scenarios which I have not yet encountered.

Leave a Reply

Your email address will not be published. Required fields are marked *

Solve the Equation to continue * Time limit is exhausted. Please reload CAPTCHA.