Cant communicate
- 
 @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @pete-s said in Cant communicate: Also run the command net shareon the back office server and post the results. 
 It will show you what shares and folders are shared on the server. Are those the shares you expect to see? yes I may have missed this in the earlier convo, but are we sure he replaced the switch with an actual switch and not a router? thats what my original thought was as well.We have someone on site who replaced with a legit switch (took one from the office and installed) and we are having same issue And you can ping from POS to BackOffice computer? yes I think I saw you say the firewall is disabled (on both the POS and Terminal)? yes Does the back office machine have any trouble getting online and such? No trouble, getting online (Its protected by a hardware firewall) (I know, I know) Just the two terminals as this site and they're both down? Check the account that the Terminals use to connect to the Back Office and make sure that it hasn't been locked? 
- 
 @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @pete-s said in Cant communicate: Also run the command net shareon the back office server and post the results. 
 It will show you what shares and folders are shared on the server. Are those the shares you expect to see? yes I may have missed this in the earlier convo, but are we sure he replaced the switch with an actual switch and not a router? thats what my original thought was as well.We have someone on site who replaced with a legit switch (took one from the office and installed) and we are having same issue And you can ping from POS to BackOffice computer? yes I think I saw you say the firewall is disabled (on both the POS and Terminal)? yes Does the back office machine have any trouble getting online and such? No trouble, getting online (Its protected by a hardware firewall) (I know, I know) Just the two terminals as this site and they're both down? Check the account that the Terminals use to connect to the Back Office and make sure that it hasn't been locked? There are 3 terminals at the site, none of which can connect. 
- 
 @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @pete-s said in Cant communicate: Also run the command net shareon the back office server and post the results. 
 It will show you what shares and folders are shared on the server. Are those the shares you expect to see? yes I may have missed this in the earlier convo, but are we sure he replaced the switch with an actual switch and not a router? thats what my original thought was as well.We have someone on site who replaced with a legit switch (took one from the office and installed) and we are having same issue And you can ping from POS to BackOffice computer? yes I think I saw you say the firewall is disabled (on both the POS and Terminal)? yes Does the back office machine have any trouble getting online and such? No trouble, getting online (Its protected by a hardware firewall) (I know, I know) Just the two terminals as this site and they're both down? Check the account that the Terminals use to connect to the Back Office and make sure that it hasn't been locked? There are 3 terminals at the site, none of which can connect. They are all running in stand alone mode (redundancy) 
- 
 Did you check the accounts on the Backoffice server? 
- 
 @wrcombs said in Cant communicate:  So it's the BOOTDRV share that the terminals connect to? So connecting to the back office server (with the right username replaced below) what was the response? net use \\192.168.128.xxx\BOOTDRV /user:username
- 
 @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. 
- 
 @wrcombs said in Cant communicate: @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. /me puts on a dang helmet. Good luck! 
- 
 @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. /me puts on a dang helmet. Good luck! LOL 
- 
 Safe mode with network ? what happens ? What about try running the below before mount @REM delete all previous network drives# net use * /del /yes @REM purge cached Kerberos authentication tickets# klist purge @REM newer way of automating the removal of all stored credentials. cmdkey.exe /list > "%TEMP%\List.txt" findstr.exe Target "%TEMP%\List.txt" > "%TEMP%\tokensonly.txt" FOR /F "tokens=1,2 delims= " %%G IN (%TEMP%\tokensonly.txt) DO cmdkey.exe /delete:%%H del "%TEMP%\List.txt" /s /f /q del "%TEMP%\tokensonly.txt" /s /f /q @REM killing explorer last step to prepare for the actual share mount taskkill /f /im explorer.exe & ping 127.0.0.1 -n 3 & start /im explorer.exe
- 
 @pete-s said in Cant communicate: @wrcombs said in Cant communicate:  So it's the BOOTDRV share that the terminals connect to? yes So connecting to the back office server (with the right username replaced below) what was the response? net use \\192.168.128.xxx\BOOTDRV /user:username
- 
 @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. /me puts on a dang helmet. Good luck! Well, lets check back in a couple of hours. Actually windows will reset some settings when you install some updates. 
- 
 @pete-s said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. /me puts on a dang helmet. Good luck! Well, lets check back in a couple of hours. Actually windows will reset some settings when you install some updates. Sounds like a plan. 
- 
 @wrcombs said in Cant communicate: @pete-s said in Cant communicate: @dafyre said in Cant communicate: @wrcombs said in Cant communicate: @dafyre said in Cant communicate: Did you check the accounts on the Backoffice server? Guy on site is running window updates, apparently this pc has never been updated. He has control right now. Letting him do his thing. /me puts on a dang helmet. Good luck! Well, lets check back in a couple of hours. Actually windows will reset some settings when you install some updates. Sounds like a plan. Some of the next steps to troubleshoot are: - open the share on the back office server from the back office server itself (this eliminates the network outside the machine)
- if above doesn't work check that the "File and Printer sharing from Microsoft Networks"-setting is enabled on the LAN interface properties.
- install and run a portscanner from one terminal to see that the ports are actually open over the network.
 
- 
 Didn't read al 65 posts above, so may have been mentioned or I may have missed something.... But is 802.1x being used? 
- 
 @obsolesce said in Cant communicate: Didn't read al 65 posts above, so may have been mentioned or I may have missed something.... But is 802.1x being used? 802.1x ? What is that and why would it be used? IEEE 802.1X is an IEEE Standard for port-based Network Access Control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN. This is what i get when i google 802.1x 
 Is this what youre talking about?
- 
 @wrcombs said in Cant communicate: @obsolesce said in Cant communicate: Didn't read al 65 posts above, so may have been mentioned or I may have missed something.... But is 802.1x being used? 802.1x ? What is that and why would it be used? IEEE 802.1X is an IEEE Standard for port-based Network Access Control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN. This is what i get when i google 802.1x 
 Is this what youre talking about?Yes 
- 
 @obsolesce said in Cant communicate: @wrcombs said in Cant communicate: @obsolesce said in Cant communicate: Didn't read al 65 posts above, so may have been mentioned or I may have missed something.... But is 802.1x being used? 802.1x ? What is that and why would it be used? IEEE 802.1X is an IEEE Standard for port-based Network Access Control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN. This is what i get when i google 802.1x 
 Is this what youre talking about?Yes This is the first time im ever hearing of this so im sure the answer to that is no 
- 
 I'm facing a parallel issue where a workgroup share is inaccessible, so I've been doing a lot of testing. One of things I've noticed in my tests is that when the Windows Firewall is off then port 445 closes automatically. Have you tried it with the firewalls on, but with SMB-In configured properly in the firewall settings? 
- 
 @kelly said in Cant communicate: I'm facing a parallel issue where a workgroup share is inaccessible, so I've been doing a lot of testing. One of things I've noticed in my tests is that when the Windows Firewall is off then port 445 closes automatically. Have you tried it with the firewalls on, but with SMB-In configured properly in the firewall settings? I have not.. 
- 
 You can test the port using telnet or ssh (assuming you have either installed on a client). It will at least tell you if you can reach the port. 



