This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 99%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERH%3C/text%3E%3C/svg%3E)
Server 2019 std desktop, using hyper v.
It seems (for me anyway) that the KB5014692 monthly update causes a network stack failure. After an install / reboot, it runs and serves OK for 5 mins, and then the network response quits. Uninstalled and reinstalled the update twice to confirm this.
From a console via iDrac, Watching wireshark, the server (host OS) receives the initial SYN, issues an ACK, the client sends back the next ACK and the next packet.... (sofar all normal)... but the server goes deaf at this point and issues nothing more. Then sometime later both ends re-transmit, but nobody is listening at the server end.
Affects all traffic, all ports but only after 5 mins of normal running. Feels like some buffer or counter not correctly coded.
Anyone else?
Update June 28th, 2022.
Microsoft now acknowledges this (RRAS / NAT) issue in known issues :
... and repaired it with "out of band" fix in KB5014669 :
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 31%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Similar issues on 2019 v1809 servers. These are edge servers running RRAS service that provides SSTP VPNs. When the patch is applied, the server accepts initial SSTP client request and forwards it to the NPS server. End users are prompted for MFA but the connection never completes.
RRAS Server Event Log: Event ID 36: The description for Event ID 36 from source NPS cannot be found.
NPS Server Event Log: Event ID 20271, Remote-Access: The user xxx connected from xxx but failed an authentication attempt due to the following reason: The connection was prevented because of a policy configured on your RAS/VPN server. Specifically, the authentication method used by the server to verify your username and password may not match the authentication method configured in your connection profile.
Client Event Log: The user xxx dialed a connection named xxx which has failed. The error code returned on failure is -2147014836.
Additionally, after this update is applied to the RRAS server, its RDP service no longer accepts inbound connections. Its desktop is only accessible from the console.
This problem occurs immediately after KB5014692 is installed. Problem goes away after rolling back. Problem occurred a second time after this patch was reinstalled. Rolling back fixed the issue, again. We experienced this problem from two different RRAS servers from two different locations -single domain.
Adding to my initial post... attached is the Wireshark trace showing how the fault occurs. This was taken at the server via the iDrac console.
I show one connection, but its the same on all attempts from anywhere. The server goes deaf and ignores the connection it initially allowed. (there is no anti-anything crap ware of any kind on this server).
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 23%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
i have similar issues on two 2019 v1809 servers with RRAS (l2tp) and one of server with windows server 2012 r2 with update (KB5014738) - but windows 2012 r2 worked over 1 hour and then the network response quits too.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 16%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESK%3C/text%3E%3C/svg%3E)
Are you multi-homed?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 75%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
Having same/similar issues. Two 2019 RRAS servers with NAT enabled break when this KB is installed. Netlogon no longer works as server can't communicate with network at all. Can login with local admin only.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 19%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJV%3C/text%3E%3C/svg%3E)
While we are in the process of building RRAS up for our environment (and the ones working on that bit of the environment have been referred by me to this thread), I ran into this issue on our 2019 build 1809 server running our backup solution. Getting dropped a load of notifications on backup failures out of the blue (mostly centered on connection errors).
The application starts and is accessable as a web-page from my client system normally. Getting an RDP session to the server also isn't an issue... But as soon as I start an actual backup it apparently does something in the background.
The webpage drops dead with the notification : Site unreachable: ERR_CONNECTION_RESET
The RDP at that point is also dropped
After about 2 minutes a refresh of the web-page and a re-establishment of the RDP session seems to work normally again, and the backup at that point seems to be active. And the only thing done yesterday was installing this specific fix (KB5014692) yesterday on both servers.
As an aside, as part of the disk-verification mechanism used by the application both HyperV and RRAS services are installed and active on both servers. So that does tie in with the reports on RRAS and possibly HyperV.
I've deinstalled this update and that does seem to sort the problem. So far I have not run into problems on any of our other servers (RRAS or otherwise, tho I did emphasize this issue seems to only hit RRAS installed servers), but I've given notice to most everyone involved that this patch may be causing issues, so they're not stuck wondering how and what but can atleast try if a deinstallation sorts the issue.
If it does I hope Microsoft will get on this, and sort this issue for the next CU in July.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 86%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMR%3C/text%3E%3C/svg%3E)
Same problems here.
Windows Server 2019.
VPN Access was broken. NAT works.
Trying uninstalling the KB5014692 never fiishes. Waited 60minutes at "100% uninstalling".
Finally got a Backup for the HyperV Image.
Works again.
Disabled Udates now.
Same problem
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 3%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Same exact problem here.
After disabling all updates on Jun 24 2022 and restoring a backup of the VM I reenabled updates again today.
First update KB5014692 came in and everything was broken again. RDP, VPN, IIS.... reboot was required after the update.
Than update KB5014699 was installed, after this update everything was running again.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 32%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Still don't have RRAS/VPN capability on the Windows 2019 server - this is an AWS Lightsail server. Here's what I had tried: