{"id":162,"date":"2012-04-09T11:00:32","date_gmt":"2012-04-09T15:00:32","guid":{"rendered":"http:\/\/rajdude.com\/blog\/?p=162"},"modified":"2012-04-09T11:06:35","modified_gmt":"2012-04-09T15:06:35","slug":"ipsec-blocking-all-network-traffic","status":"publish","type":"post","link":"https:\/\/rajdude.com\/blog\/ipsec-blocking-all-network-traffic\/","title":{"rendered":"IPSec blocking all network traffic"},"content":{"rendered":"<p>We could not ping one of our servers.\u00a0I looked at the event logs and found this entry:<\/p>\n<p><em>Description: The IPSec driver has entered Block mode. IPSec will discard all inbound and outbound TCP\/IP network traffic that is not permitted by boot-time IPSec Policy exemptions.<\/em><\/p>\n<p>Really strange! I did not enable any IPsec policies, the firewall was also disabled on this server. So how did this happen?<\/p>\n<p>Well, the server ran out of space and somehow a registry entry got corrupt.<\/p>\n<p>Take a look at this <a title=\"KB 912023\" href=\"http:\/\/support.microsoft.com\/kb\/912023\" target=\"_blank\">KB article<\/a>. The fix worked for us. Actually the whole key was missing.<\/p>\n<pre>HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\IPSec\\Policy\\Local<\/pre>\n<p>When I registered the DLL , it re-created the key. Reboot and the problem is solved!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We could not ping one of our servers.\u00a0I looked at the event logs and found this entry: Description: The IPSec driver has entered Block mode. IPSec will discard all inbound and outbound TCP\/IP network traffic that is not permitted by boot-time IPSec Policy exemptions. Really strange! I did not enable any IPsec policies, the firewall was also disabled on this server. So how did this happen? Well, the server ran out of space and somehow a registry entry got corrupt. Take a look at this KB article. The fix worked for us. Actually the whole key was missing. HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\IPSec\\Policy\\Local When I registered the DLL , it re-created the key. Reboot and the problem is solved!<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[29,28],"class_list":["post-162","post","type-post","status-publish","format-standard","hentry","category-itsys","tag-system-administration","tag-windows-server-2003"],"_links":{"self":[{"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/posts\/162","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/comments?post=162"}],"version-history":[{"count":5,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/posts\/162\/revisions"}],"predecessor-version":[{"id":164,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/posts\/162\/revisions\/164"}],"wp:attachment":[{"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/media?parent=162"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/categories?post=162"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rajdude.com\/blog\/wp-json\/wp\/v2\/tags?post=162"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}