Can you verify that you can connect to tcp port 135 from the sending system to the receiving system? nmap -sS -P0 -p 135 destination IP? What do you get back. You can also setup wireshark from the receiving and sending system and filter on tcp port 135 traffic to see if there is trully RPC issues or possibly a firewall rule or acl on a router that is tripping you up, or even a route etc etc. Sincerely, EZ
Edward E. Ziots Security Engineer CISSP,Security +,Network+ From: [email protected] Date: Fri, 16 Dec 2011 09:14:13 -0500 Subject: Re: RPC issues and rebuilding the TCP/IP stack on DC To: [email protected] I can't remember the last day I've seen TCP/IP stack corruption on 2003. Is *only* RPC failing? Is it failing in both directions? What other errors are you seeing in the event logs? ASB http://XeeMe.com/AndrewBaker Harnessing the Advantages of Technology for the SMB market… On Thu, Dec 15, 2011 at 10:09 AM, Maglinger, Paul <[email protected]> wrote: We upgraded our core switch and switches in a server room and for the purposes of redundancy set up teaming on the server NICs. Most of the teaming went well except for one Windows 2003 domain controller, which happens to be the master for a number of roles (schema, etc.). Now it's having problems with RPC in that when other servers try to connect we get a "RPC server is unavailable". The RPC services are running on the DC. Googling around leads me to believe that the TCP/IP stack may be corrupted and need to be rebuilt. We have done this before on workstations and application servers, but never on a DC. We first found Microsoft KB 317518 which doesn't sound too bad, but more Googling indicates the process is a bit more complicated on DCs, in that it involves editing the registry (KB 325356). Has anyone out there done that? How successful was it? Any other recommendations? Thanks, Paul ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
