Networking

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Product to Product SPPC (Secure Port & Protocol Comunication) for Server 2017

    Hola,

    (if that clear, read until reach bottom of this post)

    Just like to ask Microsoft if they could make a secure server to server communication protocol, that use say 44443, that is a strip-down TCP that don't use the 3-hand system (more like secure UDP with error correction). That allows each product to talk to each other, using a PKI, or on-prem ADCS certificate.
    But this communication should be base on Control+Data info
    were each product can list all the control-command(standards) that it accepts.

    What is this for, you ask:

    So it will be easy for all products to…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  2. binding order powershell

    binding order cannot be easily managed via powershell without registry manipulation of guids.

    please make a sensible cmdlet

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  NIC  ·  Flag idea as inappropriate…  ·  Admin →
  3. Introduce Linux like SO_TimeStamp socket option in networking API

    Most of the network cards support High Precision clock synchronized with PTP protocol. In windows server introduce Linux like SO_TimeStamp set socket option to receive timestamp along with receiving packet. This will be used to identify network latency and a means to get high precision time stamp.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Time  ·  Flag idea as inappropriate…  ·  Admin →
  4. Provide support for changing LACP timer value to long/slow for NIC teams

    If you use native support for NIC teaming, LACP teams use a short/fast timer. This is an issue if you the team is connected to a Cisco Nexus and want to use In-Service Software Upgrades because ISSU requires slow/long timers.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Teaming & load balancing  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add-IpamRange adding wrong range

    As discussed in topic https://docs.microsoft.com/en-us/answers/questions/107982/add-ipamrange-adding-wrong-range.html the powershell cmdlet Add-IPAMRange adds the wrong range. For example for a /24 net the range starts with 0 and ends with 255, but 1 and 254 would be correct.
    The IPAM GUI Add IP Address Range has the same problem.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Bug  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add support for 32-bit ASNs

    Add support for 32-bit ASNs on BGP.

    The Add-BgpRouter cmdlet and the Set-BgpRouter cmdlet seem to limit the LocalASN and PeerASN parameters to 16-bit. The parameters themselves are 32-bit unsigned integers. However in C:\Windows\System32\WindowsPowerShell\v1.0\Modules\RemoteAccess the cmdlets show a validator stopping it from being any larger than 65534.
    I propose changing the validators to allow for 32-bit ASNs. The current setup limits Windows servers to only being able to use 16-bit ASNs and prevents them from peering with any device that uses a 32-bit ASN

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Managment tools  ·  Flag idea as inappropriate…  ·  Admin →
  7. LBFO Team: Prevent duplicate multicast traffic on virtual nic

    When using a switch independent team, multicast traffic is received by all physical nics in the team (switch does not know the ports are in a team). When attaching a virtual switch to the team, it appears as if virtual nics receive the multicast traffic multiple times (once from each physical team member). Is it not possible to send it to the virtual nic only once (eg. only from the physical nic the virtual nic's VMQ is associated with)?

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Teaming & load balancing  ·  Flag idea as inappropriate…  ·  Admin →
  8. Create a WiFi policy linked to User Configuration, to allow for GP WiFi conn mngmt on non-domain devices

    Currently the WiFi Network Policies exists only under Computer Configuration -> Policies -> Windows Settings -> Security Settings and can only be applied to Computers that are members of the domain.
    We need a similar WiFi Network Policy under User Configuration to be able to manage the domain Users capability to connect to WiFi with Enterprise authentication irrespective to which device they use to connect to the Enterprise WiFi

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Remove-DhcpServerv4Reservation [IP Address] removes all reservations in the scope, even if the IP is not a scope IP

    When using Remove-DhcpServerv4Reservation and just giving it an IP address without using the option -IPAddress, the cmdlet removes all reservations and turns them into leases.

    This should not happen if the IP address is not a scope IP identifier and should throw an error rather than removing all reservations.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Managment tools  ·  Flag idea as inappropriate…  ·  Admin →
  10. Can you add analogue fail2ban (in linux) to windows server firewall?

    It't ve cool has an tools in OS firewall, that can ban bruteforce RDP or other port.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Firewall  ·  Flag idea as inappropriate…  ·  Admin →
  11. add a comments field only visible in the DNS Manager console.

    This would help with DNS Management by having the ability to add notes to static A records and aliases

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Managment tools  ·  Flag idea as inappropriate…  ·  Admin →
  12. DirectAccess should support multiple CA

    if the customer wants to upgrade or change the CA, he needs to bring in all the remote computers and do a GPO refresh on-premises; otherwise the moment the new CA is input into the configuration of DA server, the clients which are still using the old CA are kicked out of DA.

    we need a process for such transition, in case of an expired or compromised CA, to let the clients smoothly transition into the new CA without the requirement of them comping onsite for a GPO refresh. I would say enable the addition of Multiple CA rather than…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  13. Routing & RAS installation without Direct Access

    Allow installtion of Routing & RAS without Direct Access. On some Servers I only want to get VPN and not DirectAccess.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  14. Re-engineer DNS

    Recently, I had to switch about 200 records from Dynamic records to Static, because the Zone was set with 20 Min TTL, and I had servers, running on Dynamic DNS. I know that using the console, I can update a record to switch from Dynamic to a static record, but to my surprise, there wasn't an option via powershell :(

    Also Powershell doesnt let you manage the TTL or other options in DNS

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  15. monitor my Network aurto config,vie datta balance

    Remove Network Location Awareness from Windows Server

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  DirectAccess  ·  Flag idea as inappropriate…  ·  Admin →
  16. Support SSHFP records in Windows DNS Server and its admin tools

    Since Windows now supports OpenSSH natively, as well as other clients/servers on the same network, supporting this standard for server authentication seems like an obvious win.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  DNS  ·  Flag idea as inappropriate…  ·  Admin →
  17. 2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Bug  ·  Flag idea as inappropriate…  ·  Admin →
  18. 4G

    Network

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Layer 2 & Ethernet  ·  Flag idea as inappropriate…  ·  Admin →
  19. DnsServerResourceRecord does not support multi-string records

    RFC-4408 (section 3.1.3) https://tools.ietf.org/html/rfc4408#section-3.1.3 defines the use of multi-string records for SPF (DNS TXT records), however the Get- or Add- DNSServerResourceRecord commands do not support this. For the Get- the actual DNS record is truncated to 256 chars, and for the Add- it simply errors out with an invalid propery.

    Example of a valid DNS record (that can be configured by the DNS GUI)
    $RecordName = "spfrecord"
    $RecordText = "v=spf1 ip4:192.168.0.1 ip4:192.168.0.2 ip4:192.168.0.3 ip4:192.168.0.4 ip4:192.168.0.5 ip4:192.168.0.6 ip4:192.168.0.7 ip4:192.168.0.8 ip4:192.168.0.9 ip4:192.168.0.10 ip4:192.168.0.11 ip4:192.168.0.12 ip4:192.168.0.13 ip4:192.168.0.14 include:spf.protection.outlook.com mx -all"
    $Zone = "contoso.com"
    $Type = "TXT"
    $DNSServer = "DC1.contoso.com"
    Add-DnsServerResourceRecord -DescriptiveText $RecordText -Name…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Managment tools  ·  Flag idea as inappropriate…  ·  Admin →
  20. get-netipconfiguration

    Get-netipconfiguration throws exception if you have multiple default gateways configured for an interface.

    PS C:\Users\Administrator> Get-NetIPConfiguration

    Exception setting "NetProfile": "Cannot convert the "System.Object[]" value of type "System.Object[]" to type
    "Microsoft.Management.Infrastructure.CimInstance"."
    At C:\Windows\system32\WindowsPowerShell\v1.0\Modules\NetTCPIP\NetIPConfiguration.psm1:201 char:17
    + ... $IPConfig.NetProfile = Get-NetConnectionProfile -Interfac ...
    + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    + CategoryInfo          : NotSpecified: (:) [], SetValueInvocationException
    
    + FullyQualifiedErrorId : ExceptionWhenSetting

    InterfaceAlias : Ethernet0
    InterfaceIndex : 4
    InterfaceDescription : Intel(R) 82574L Gigabit Network Connection
    IPv4Address : 172.16.110.222
    IPv6DefaultGateway :
    IPv4DefaultGateway : {12.12.12.12, 172.16.110.2}
    DNSServer : 172.16.110.100

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  TCP/IP  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base