In recent weeks we have seen a number of cases with intermittent file sharing connectivity to Windows Server 2008 servers. I wanted to get this information out so that people who may be experiencing the issue won't have to spend a lot of time tracking down the problem.
The issue generally manifests in one of two ways:
Network traces look similar in both cases. After the TCP 3-way handshake the client sends an SMB Negotiate Dialect but the server doesn't respond.
Eventually the TCP session times out and is reset as seen in this example:
Two things are currently known to address the issue:
Most of these cases involved older anti-virus software versions but we have also seen the issue with current versions that are supported on Windows Server 2008.
While there is not currently a complete resolution, I hope providing this information will help some people identify this issue quickly so they can resolve it and minimize the disruption to their environment.
- David Pracht
We've installed SAV Version 11.0.4202.75 (MR4)on 2K8 32 bit Standard and we are still seeing the:
Event ID 4226 Source tcpip: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Will Symantec ever fix this?
Keith Stevens had two servers, one exhibiting the issue, one not
We have the same. Both were fresh builds, one has file shares accessed by a large number of XP desktop clients and the other is not. It only has one or two Server 2008 clients accessing its shares. The Xp client accessed server croaks within 4-6 hours of a SAP 11 MR4 MP1 install, the other has been running for weeks with the same software.
I got aproblem openning file shared on win server 2008
I'm surprised when some times it open and other gives this Errors(:0x80090006: Invalid Signature,Couldnot open the file) and I'm using Trend antivirus.
Do not run resident/real-time antivirus software on your file servers. There is no need to.
At most, just run a scheduled antivirus scan at night.
Antivirus running on servers is not necessary, provided your admins know what they are doing (basically, they should just login with admin credentials in the server to do admin work).
I've experienced this issue with w2k8 x64 R2 fresh install. It has SEP 11.0.4014.26 installed which will be upgraded to 11.0.5002.333 very soon.
Microsoft released an update for AD RMS bringing it up to SP2. The update removes the application manifest expiry feature completely from the RMS client. Applying this update helped to resolve issues we have been seeing with file (or server/mapped drive) disconnects.
Issue with Symantec EPP 11.05, Windows 7 pro with 2008SP2. Offline files not synchronising. "The specified network name is no longer available". Temporary solution seems to be using centralized exceptions in EPP manager to exclude Offline File Shares from Autoprotect etc.AV protection being provided by Win 7 Clients.