This content has been marked as final. Show 9 replies
Do you have the latest HIP 7 server? There is a new policy in there that has all the basic rules for a typical network. The policy is called typical corporate or something like that. I would start with that policy.
We use EPO do deploy the policies to the laptops. I can't see anything under "predefined policies" within firewall rules that sounds like what you described. I know it is the HIPS firewall that is affecting the machine beacuse if I turn the firewall off the errors stop and netlogon works as expected. I have added my local LAN subnets into trusted network and created a rule that allows anything UDP or TCP through from that subnet but this has made no difeerence.
Can anyone else offer advice on these issues? This is causing major issues within the company I support.
You must be using ePO 3.6.1.
This is a configuration problem. Put in an allow all rule at the top of your firewall policy.
If that resolves the issue, you'll need to create a firewall policy that doesn't block your PDC.
We have EPO 4.0.
There are several allow rules at the top of the firewall rules list allowing all UDP and TCP connections from our various LAN's
To me it looks like the machine is trying to authenticate to a DC before the HIPS serivce has started and is being blocked.
Any more advice would be greatly appreciated.
I'm surprised. HIP loads quite early in the windows boot sequence and is running, usually, before anything else.
You got me.
Better call McAfee.
I have now tied this down to the Mcafee NDIS Intermidiate Filter option within the LAN connection settings. When this option is selected we get the problem. When it is de-selected everything works fine. Can anyone advise as to what this option does?
I'm having similar problems here with ePO 3.6 and HIPS 7 (Patch 4 - v:18.104.22.1686). The problems didn't appear until I (recently) upgraded HIPS to P4...
I've been trying to locate this option about NDIS Intermediate Filter & LAN Connection settings but can't find it. Is it possible it's only available under ePO 4 ?
Thanks for any help.
Any news on this Netlogon issue ?
We're still having problems with approx 20% of the systems where HIPS 7 P4 is installed...
Any help greatly appreciated as McAfee isn't moving really fast.