New WSUS install does not respond to clients over ports 8530 or 8531

I've recently installed WSUS on a Server 2012 machine, and am struggling to get it to respond to requests from other hosts. I cannot get it to respond to any host in any manner, except for requests from itself.
My setup is as follows:
WSUS installed on a Server 2012 domain controller, DC01.
Other roles installed include AD CS, AD DS, DNS, IIS, and Print Services.
WSUS is using all default settings.
The firewall has inbound and outbound exceptions for ports 8530 and 8531
A bit of information about what's happening:
IIS will respond over port 80. I can open a Web browser from my workstation and connect to http://dc01/. If I attempt to connect to http://dc01:8530 (which I know should not work, but
should respond with a 403 error), it times out. Identical behavior is observed over port 8531 with https.
IIS will respond with a 403 if I make this same connection in a browser on DC01, it will work if I connect using either the loopback IP or hostname, but will time out if I attempt to make the connection using the server's local IP (IPv4).
If I try to connect from my workstation using the WSUS configuration snap-in, I get an error: The remote server could not be contacted. Please verify that IIS on the server is correctly configured and is running.
If I try to connect from DC01 using the WSUS configuration snap-in, it works correctly.
The above is true for both http (8530) and https (8531).
IIS logs show inbound connections from my workstation and show that IIS is responding with a 200. However, Wireshark running on DC01 shows three attempts by my workstation to open a connection -- three SYN packets, one initial attempt then two identical
retries -- over a period of about ten seconds, with no responses from DC01. If IIS is responding, the responses are getting lost sometime before they hit the NIC.
Bindings in IIS are correct, 8530 for http and 8531 for https.
Given that everything works fine when making a local connection, I think I can safely assume that WSUS itself is running properly, and the issue is related to IIS. Nonetheless, in the hopes of this simply being a failed install, I have uninstalled and reinstalled
both IIS and WSUS multiple times. (One thing to note, though I doubt it's related: WSUS consistently fails to set the path for the local update cache, failing the post-deployment configuration. I have to manually edit the UpdateServices-Services.xml file to
include the path for the local cache. Everything goes fine after I do that.)
I'm pretty stumped on this, and would happily accept any help. Thanks!

I've recently installed WSUS on a Server 2012 machine, and am struggling to get it to respond to requests from other hosts. I cannot get it to respond to any host in any manner, except for requests from itself.
My setup is as follows:
WSUS installed on a Server 2012 domain controller, DC01.
Other roles installed include AD CS, AD DS, DNS, IIS, and Print Services.
Fundamentally you have two issues here:
The first is the question of co-existence between WSUS and AD CS.
The second is whether this machine was a DC before, or after, you installed WSUS.
With Windows Server 2003 systems, running 'dcpromo' after installing IIS (and WSUS) would break IIS (and thus WSUS). With Windows Server 2012, installing WSUS with the AD DS role present results in a broken WSUS installation (if not an outright installation
failure). This is because on a WS2012 Domain Controller, there are GPO restrictions on "Log On As A Service" which impact the ability of certain LOCAL accounts to do so ... one of which being the Network Service which is required for WSUS and another local
use account, which is used for WID.
Regarding ports and IIS -- WSUS is designed to work on port 8530 by default on a Windows Server 2012 box. It can also be made to work on port 80, but you have to use the correct utilities and procedures to make that change. As for your observation
that "port 6000" seems to be a cutoff.... I'll (re)direct your attention to the installation of Active Directory Certificate Services, which I suspect is a contributing factor, and in general firewall configuration rules -- which are probably the most likely
culprit on the port range of 6000+ (not including 8530 which I promise you is open by a rule explicitly created by/for WSUS).
So, here's my suggestion:
Install the WSUS role first.
Install the AD DS role if you must (but Domain Controllers should not also be web or application server).
Install the AD CS role elsewhere.
Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
SolarWinds Head Geek
Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
http://www.solarwinds.com/gotmicrosoft
The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

Similar Messages

  • New mail button does not respond so can't write mail. help please?

    New mail button does not respond so can't write mail. help please?

    I am no expert, but open your mail, go to the top of your apple bar click the apple sign then force quit mail, restart and it may work.
    I had this issue before and it was resolved.

  • Brand new iPhone 4 - does not respond

    I just received my new iPhone 4, but it does not respond when I connect to my computer. The screen stays blank and it does not show up in iTunes. Only when I connect it to the wall charger does it respond, but I have tried leaving it to charge for some time, but it still wont show up in iTunes nor does it respond when connected to my Macbook Pro. Have tried with different cables and to do a reset, but no luck.
    Does anyone have any suggestions I could try before I take it back tomorrow?
    Thanks
    Thomas

    If you are plugging it into a MBP, it should work no matter what. I'm sure you tried this, but have you plugged it into the other available USB spot? Sometimes my phone doesn't like one USB port on my MacBook and I have to plug it in to the other.

  • 2100 wireless LAN controller intermittant DHCP issue does not respond to clients

    Hi everyone,
    I have been struggling with a difficult problem for some time now:
    The cisco 2100 wlan controller I have is configured with a dhcp scope in the same ip address range as its WLAN. The configuration works and on a good day I have up to 200 clients connecting with out issue. In the web interface they display as associated and authenticated
    On a bad day I find I will begin seeing about 50-80% of all new devices that attempt to join the WLAN show up as associated but not authenticated. These clients end up self assigning themselves a 169.254.0.0/16 (APIPA) address
    When my controller / WLAN enters into this state: if clients leave the WLAN they typically fail to get back on and successfully authenticate. By the end of a day around 80-90% of all devices are essentially without Internet access due to this issue.
    Rebooting the controller and or APs typically makes no difference or makes things worse – although sometimes it appears to resolve the issue. The same holds for disabling the entire wlan for about 10 minutes and then re enabling it.
    Im using 1130 cisco aironet APs with the controller. I have checked extensively for interference and congestion – I think I have congestion – some APs typically host 40 to 90 devices. However as mentioned on a good day the wlan will host 200 devices all day without any issue and some APs will host 50 to 70 devices without major issue.
    I can provide more specifics if anyone should need – eg firmware, IP addresses, exact model numbers etc.
    Please let me know if anyone has seen something like this before ?
    I believe the 2100 is rated to handle up to 350 devices and its recommended not to load a 1130 AP with more than 25 devices ??
    Regards
    Matthew

    Hi Amijad, Hi George:
    Thank you both for your time in considering my situation.
    I will think about implementing an independant DHCP server; im really wondering if the equipment is just overloaded
    - What software versoin the WLC uses?
    Product Version.................................. 6.0.199.4
    RTOS Version..................................... 6.0.199.4
    Bootloader Version............................... 4.0.191.0
    Emergency Image Version.......................... 6.0.199.4
    PID: AIR-WLC2106-K9, VID: V05
    - What ports of the WLC are connected to the neighbor swtich? one or more?
    2 ports connect to the neighbor switch on separate vlans
    - port 1 is vlan 0 and hosts the management and ap-management IPs for the wlan controller
    - port 2 is vlan 1 and hosts the wlan
    - the controller has one dhcp scope defined on port 2 for the WLAN
    - What is the security of your WLAN?
    WPA+WPA2
    AES
    PSK
    - Do you have "DHCP required" enabled on the WLAN?
    yes DHCP required is enabled in the WLAN
    please let me know if you have any additional advice.
    regards
    Matthew

  • The open new tab function is not responding

    when i click open new tab or use the ctrl t to open a new tab, it does not respond...unless i click on a link to open new tab

    Uninstall the Ask toolbar and it should work again. There is a compatibility issue with the Ask toolbar and Firefox that prevents new tabs from being opened.

  • I have CD version of Adobe Photoshop Element 9. I have CD version of Adobe Photoshop Element 9. I have purchased the new Macbook which does not have DVD drive. Can I download this software over the web and install using the Serial Number I have. Thanks,

    I have CD version of Adobe Photoshop Element 9. I have CD version of Adobe Photoshop Element 9. I have purchased the new Macbook which does not have DVD drive. Can I download this software over the web and install using the Serial Number I have. Thanks,@

    yes,
    Downloads available:
    Suites and Programs:  CC | CS6 | CS5.5 | CS5 | CS4 | CS3
    Acrobat:  XI, X | 9,8 | 9 standard
    Premiere Elements:  12 | 11, 10 | 9, 8, 7
    Photoshop Elements:  12 | 11, 10 | 9,8,7
    Lightroom:  5 | 4 | 3
    Captivate:  8 | 7 | 6 | 5
    Contribute:  CS5 | CS4, CS3
    Download and installation help for Adobe links
    Download and installation help for Prodesigntools links are listed on most linked pages.  They are critical; especially steps 1, 2 and 3.  If you click a link that does not have those steps listed, open a second window using the Lightroom 3 link to see those 'Important Instructions'.

  • I bought Adobe Elements 12; I cannot use panorama photomerge, I have followed the directions to go to Full Edit  mode in edit workspace choose File New Photomerge. However the Photomerge does not work, it does not respond.   The only thing I can come u

    I bought Adobe Elements 12; I cannot use panorama photomerge, I have followed the directions to go to Full Edit  mode in edit workspace> choose File> New> Photomerge. However the Photomerge does not work, it does not respond.
    The only thing I can come up with is that I found a blog that said that in the Trial version Photomerge does not work, however I do Not have the Trial version, I did at one time but I purchase Adobe Elements. Thank you.

    The blog was incorrect. Photomerge should work in the trial, too.
    When things get weird in PSE the first thing to do is to delete the prefs. Go to the editor preferences>general, click this button and restart the editor:

  • Bloody Hell, I install Firefox 4 beta 11 and nothing happens home page loads, and thats it, firefox does not respond

    I run 3.6.13 I tried to install beta 4. 11, it downloads and installs, it opens the home page, but that's it, the throb er works but Firefox does not respond, i mean like in nothing, it is dead, you click anywhere on the toolbar, and it is like a dead dog.

    A possible cause is security software (firewall) that blocks or restricts Firefox or the plugin-container process without informing you, possibly after detecting changes (update) to the Firefox program.
    Remove all rules for Firefox from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process.
    See:
    * [[Server not found]]
    * [[Firewalls]]

  • How do I install my photoshop elements to my new laptop that does not have a cd disk drive?

    How do I install my photoshop elements 12 to my new laptop that does not have a disk drive?

    download pse 12 trial and activate with your serial number, http://www.adobe.com/cfusion/tdrc/index.cfm?product=photoshop_elements

  • How to install acrobat pro on my new laptop which does not have a cd drive

    How to install acrobat pro on my new laptop which does not have a cd drive

    Hi Tapan ,
    You can install the same from the web .
    Here is the link for the same.
    https://helpx.adobe.com/acrobat/kb/acrobat-downloads.html
    Hope this will help.
    Regards
    Sukrit Dhingra

  • My screen does not respond to any touch commands on new 4S

    The screen on my new 4S does not respond to swiping in order to configure.  In addition, when I try to turn it off, it will not respond to cancel or swiping.  I have tried to reset to no avail.  Is there something else to try?

    Try a reset:
    Hold the Sleep and Home button down for about 10 second until you see the Apple logo.

  • Hey software does not respond when I open a new file or an existing file

    Hey software does not respond when I open a new file or an existing file

    Nobody can tell you anything without system info and other technical details.
    Mylenium

  • Progrem does not respond cs5- when I open a new file or an existing file

    progrem does not respond cs5- when I open a new file or an existing file

    Nobody can tell you anything without proper system info, error messages and possibly crash logs/ system logs.
    Mylenium

  • I installed the new version of LIghtroom (2015) from Creative Cloud.  Creative Cloud says I successfully installed the new version.  However, the shortcut icon that was installed does not start the new version.  I've also gone to the properties link itsel

    I installed the new version of LIghtroom (2015) from Creative Cloud.  Creative Cloud says I successfully installed the new version.  However, the shortcut icon that was installed does not start the new version.  I've also gone to the properties link itself but, no success in starting.  How do I launch the new version?

    Thank you, toinimj59.  I did this part and the installation completed (apparently it didn't earlier--included an acceptance of the standard terms and conditions...
    Solution 1: Sign out from Creative Cloud desktop app and sign back in
    Sign out from, and back in to, the Creative Cloud desktop app. Click here for instructions
    Launch Lightroom.

  • Why does Fire Fox 4.9 Beta not work after install, I download,install all is fine, Fire Fox does not respond

    Fire Fox 4.9 Beta does not respond after install, I am running 3.6.13 at the moment

    A possible cause is security software (firewall) that blocks or restricts Firefox or the plugin-container process without informing you, possibly after detecting changes (update) to the Firefox program.
    Remove all rules for Firefox from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process.
    See:
    * [[Server not found]]
    * [[Firewalls]]
    * http://kb.mozillazine.org/Browser_will_not_start_up
    * http://kb.mozillazine.org/Error_loading_websites

Maybe you are looking for

  • User-Exit/Badi For Vendor Down Payment Request

    hi All, Is there any user-exit or badi available for vendor down payment request? tcode:f-47. please let me know. Thanks & Regards, Raj

  • SOA Suite 11.1.1.3.0 Oracle Mediator Error: ORAMED-03503

    Hi, I have the simplest SCA Ever: a mediator calling a external web service through a Bpel Process. This one makes some simple activity like trasformation e assign , before the central invoke; there's no kind of interaction with any DB The pattern us

  • Send email in html format with pdf attachment

    I am trying to send an email out of SAP using an abap program in the html format with a pdf attachment. I am using the function module -SO_DOCUMENT_SEND_API1. I noticed that when i specify the body type of the message as 'RAW' I get to see the pdf at

  • Next page button not working

    Post Author: Mike Norwood CA Forum: General I use VB to generate a report using the Crystal Reports Activex Control Version 8.0.0.4.  When the report appears on the screen the next page button does not change the page.  When the last page button is p

  • All my alarms have gone

    Hi, a SunMC system with no alarms should be a good thing, but it is in fact "alarming". Our system is a SunMC 4 platform on a T5220 (dedicated) with latest SMC patches installed. Last week, my SunMC system showed alarms for all the 70 or so systems I