I don't have access to network share by ip - windows server 2008r2/2012r2

Question

Hey,

2 days ago I had a problem with energy in my data center and my servers were restarted.

After they UP I saw a problem with access to a network share by IP, for example:

Not working: \10.0.0.20\c$
Working: \server\c$

Access by IP doesn't work to file server(Windows Server 2008r2), database, and rdp(Windows Server 2012r2), but works to two domain controllers and hyper-v host.

I think it's a problem with NTLM but how to find a bug and fix it?

Answer 1

Hi

First, does the server changed IP in the restart ? can you do a "ping server" to validate it's still 10.0.0.20

Second point; It can happen with StrictNameChecking registry settings, please set it to 1 to disable it, to test it;

Registry location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
DWORD name: DisableStrictNameChecking
DWORD value: 1

Answer 2

Are the servers that are failing, and the DC's that are working, on the same subnet or vlan? Are the network properties and advanced properties the same?

Answer 3

Are there error's in the SMBClient and SMBServer event logs?

Answer 4

Does anyone have some ideas?

Answer 5

Does anyone have some ideas?

As I recall, this is a Kerberos problem. Do you have NTLM enabled?

https://www.bing.com/search?q=windows%20share%20kerberos%20logon%20failure%20ip

By default Windows will not attempt Kerberos authentication for a host if the hostname is an IP address. It will fall back to other enabled authentication protocols like NTLM. However, applications are sometimes hardcoded to use IP addresses which means the application will fall back to NTLM and not use Kerberos.

The simplest solution is to just use the server name and not the IP address.