none
Windows server 2019tnot communicating with a Meraki on port 3268 RRS feed

  • Question

  • I am having a problem with the connection between my Meraki MX60 router and a new Windows 2019 Server.  We replaced an old 2008 R2 server.  Our domain has 2 DC currently a 2012 box and the 2019 box.  when I point the Meraki to the new box, I am told by Meraki support that port 3268 is not responding back to the first message sent out by the Meraki.  So they tell me its a active directory or a certificate issue.  I have created a self signed certificate using IIs, and its setup to the Meraki standard.  the strange thing when I point the Meraki to the other DC it connects with issue.  I guess I am asking what could I be missing, I looked at my group polices and even turned the firewall off on the 2019 server.  Can anyone give me an idea what to look at next. 

    • Edited by MikeY1959 Wednesday, October 16, 2019 6:35 PM
    • Moved by Dave PatrickMVP Wednesday, October 16, 2019 6:36 PM security / cert issues
    Wednesday, October 16, 2019 6:34 PM

All replies

  • Hello,
    Thank you for posting in our TechNet forum.

    According to "the strange thing when I point the Meraki to the other DC it connects with issue.", do we mean when we point the Meraki to the other DC it connects without issue?

    1. If so, check whether we can telnet 2019 DC on 2012 DC.
    On the 2012, open CMD and type telnet <IP Address of 2019 DC> 3268 and click Enter.


    2. Check whether 3268 port is Listening status on 2019 DC.
    On the 2019, open CMD and type netstat -ano |find "3268" and click Enter.



    3. Check whether 2019 DC is also GC.





    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, October 17, 2019 7:08 AM
    Moderator
  • Daisy,

    You are correct I meant to say without issues.  I used Putty and tried to telnet from the 2012 server to the 2019, I got a refused connection error.  I ran the netstat command, and it says  port 3268 is listening. Also yes the global catalog box is checked.  I am guessing the fact that I can/t telnet to the system means their is a problem, I am assuming this is related to my problem.  Not sure where to look next.

    Thursday, October 17, 2019 10:42 AM
  • Hi,
    We can check DC health (run Dcdiag /v on each DC)and whther AD replication(run repadmin /showrepl and repadmin /replsum on each DC) is OK.

    We can try to compare if there is any difference between 2012 and 2019 from the network package.




    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Friday, October 18, 2019 11:18 AM
    Moderator
  • Hi,
    If this question has any update or is this issue solved? Also, for the question, is there any other assistance we could provide?



    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, October 21, 2019 6:42 AM
    Moderator
  • Sorry, I was out of the office Friday and over the weekend.  I ran the tests you listed, the only errors were known printer driver issues I have on the 2012 server.  Everything ran clean on the 2019 server.  How would I go about comparing the 2 servers network package as you indicated?
    Monday, October 21, 2019 3:54 PM
  • Hi,

    According to "I used Putty and tried to telnet from the 2012 server to the 2019, I got a refused connection error.“, do we receive the same error message as I provided? If so, we can check if firewall and third-part firewall block port 3268.

    If not, would you please tell us the detailed error message?



    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Tuesday, October 22, 2019 9:21 AM
    Moderator
  • The error I get when trying to connect using putty is :  I have the firewall turned off and turned off the virus protection.

    

    2019-10-22 06:11:31      Looking up host "192.168.128.11" for Telnet connection

    2019-10-22 06:11:31      Connecting to 192.168.128.11 port 3268

    2019-10-22 06:11:31      client:   WILL NAWS

    2019-10-22 06:11:31      client:   WILL TSPEED

    2019-10-22 06:11:31      client:   WILL TTYPE

    2019-10-22 06:11:31      client:   WILL NEW_ENVIRON

    2019-10-22 06:11:31      client:   DO ECHO

    2019-10-22 06:11:31      client:   WILL SGA

    2019-10-22 06:11:31      client:   DO SGA

    2019-10-22 06:11:32      Failed to connect to 192.168.128.11: Network error: Connection refused

    2019-10-22 06:11:32      Network error: Connection refused


    • Edited by MikeY1959 Tuesday, October 22, 2019 10:29 AM
    Tuesday, October 22, 2019 10:27 AM
  • Hi,
    If we telnet on CMD, do we receive the same error?




    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact

    Wednesday, October 23, 2019 8:59 AM
    Moderator
  • Daisy,

    See below error using telnet from the cmd prompt.

    Microsoft Windows [Version 6.2.9200]
    (c) 2012 Microsoft Corporation. All rights reserved.
    C:\Users\mike>telnet 192.168.128.11 3268
    Connecting To 192.168.128.11...Could not open connection to the host, on port 32
    68: Connect failed
    C:\Users\mike>
    Wednesday, October 23, 2019 10:58 AM
  • Hi,

    1. We can try to compare if there is any difference between 2012 and 2019 from the network package.

    2. We can try to create two DCs (one 2016 and one 2019) in a test domain, check if
    Meraki MX60 router can connect the two DCs.




    Best Regards,
    Daisy Zhou 

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, October 24, 2019 9:59 AM
    Moderator
  • Hi,
    I am just writing to see if this question has any update. If anything is unclear, please feel free to let us know.
    Thanks for your time and have a nice day!



    Best Regards,
    Daisy Zhou

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, October 28, 2019 8:36 AM
    Moderator