VPN Binding Order Fix (ALL WINDOWS XP MACHINES!)

by Mark on 2007/05/23

I have also posted this on Bruce Cowpers blog!

Some users were calling me with issues saying they couldn’t use outlook because the mail server was not found, also not being able to map network drives while connected to the VPN, yet the VPN on our ISA server looked fine?

They could however map the network drive with the according internal IP.

Right away I knew this was a DNS problem. But what was extremely puzzling, was that half the VPN users had no problem, and some couldn’t do anything.

More research into this and after looking over every single setting on my ISA firewall and checking the DNS servers I found that our DNS wasn’t the problem at all, but rather the binding order of my clients.

After checking the obvious Network Connections Advanced settings to view the binding order, the Remote Access Connections was at the top of the list. BUT if you compared this to your registry located here:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage

Under the BIND KEY “\Device\NdisWanIp” or other words “Remote Connections” was at the bottom of all other devices

to fix this simply cut and paste your “\Device\NdisWanIP” to the top of the list, close regedit, and reboot the system.

Or you can copy and paste the script below in a notepad, save it as bind.vbs, open command prmot, and Cscript bind.vbs.

YOU MUST REBOOT in order for this to take effect!
Sub Main()
const HKEY_LOCAL_MACHINE = &H80000002 ‘ Root Node that we want in the registry
strComputer = “.”       ‘ Computer Name “.” is equal to the local machine
Set StdOut = WScript.StdOut    ‘ Setup the StdOut for writing

’StdOut just writes out to the command window
StdOut.WriteLine “——————— Executing ——————————”

’Here we’re getting a reference to a registry Object so that we can read/write from/to the registry
Set oReg = GetObject(“winmgmts:{impersonationLevel=impersonate}!\\” & strComputer & “\root\default:StdRegProv”)

strKeyPath = “SYSTEM\CurrentControlSet\Services\Tcpip\Linkage” ‘The Key Path
strValueName = “Bind”           ‘The Value Inside the key that’s the multi string

’Get the list of VALUES from the registry
oReg.GetMultiStringValue HKEY_LOCAL_MACHINE, strKeyPath, strValueName, arrValues

Dim colNewVals           ‘dictionary object used to store the new sorted values sorted
Set colNewVals = CreateObject(“Scripting.Dictionary”) ‘in the order that we want them to be written back to the registry

StdOut.WriteLine “This is the original array.”
For Each strValue In arrValues
     StdOut.WriteLine strValue
Next

StdOut.WriteLine “”

flag = false
StdOut.WriteLine “Grab what we were looking for.”
For Each strValue In arrValues
If strValue = “\Device\NdisWanIp” Then
   colNewVals.Add 0, strValue
   flag = true
   StdOut.WriteLine strValue
   Exit For
End If
Next

StdOut.WriteLine “”

StdOut.WriteLine “Checking to make sure we found what we were looking for.”
If flag = false Then
StdOut.WriteLine “Nope exiting…”
StdOut.WriteLine”\Device\NdisWanIp not found.”
Exit Sub
End If
StdOut.WriteLine “Yep Continuing”

StdOut.WriteLine “”

StdOut.WriteLine “Read in the rest of the values.”
i = 1
For Each strValue In arrValues
If strValue <> “\Device\NdisWanIp” Then
   colNewVals.Add i, strValue
   i = i + 1
   StdOut.WriteLine strValue
End If
Next

StdOut.WriteLine “”

StdOut.WriteLine “This is the new array.”
For Each strNewVal In colNewVals.Items
     StdOut.WriteLine strNewVal
Next

StdOut.WriteLine “”

StdOut.WriteLine “Write the values back to the registry.”
oReg.SetMultiStringValue HKEY_LOCAL_MACHINE, strKeyPath, strValueName,colNewVals.Items

End Sub

Like this:

Be the first to like this post.

9 Comments Post a comment

Er!k N #

If interested, a cleaner and shorter version of the above script. I used parts of the script to solve a related problem, thanx for pointing me in the right direction!

const HKEY_LOCAL_MACHINE = &H80000002
Dim ColNewVals()

bFound = False
strComputer = “.”
Set StdOut = WScript.StdOut

StdOut.WriteLine “——————— Executing ——————————”

Set oReg = GetObject(“winmgmts:{impersonationLevel=impersonate}!\\” & strComputer & “\root\default:StdRegProv”)
strKeyPath = “SYSTEM\CurrentControlSet\Services\Tcpip\Linkage”
strValueName = “Bind”

oReg.GetMultiStringValue HKEY_LOCAL_MACHINE, strKeyPath, strValueName, arrValues

ReDim ColNewVals(Ubound(arrValues))

‘ Enumerate current order and filling a new array with new order
StdOut.WriteLine “This is the original array.”
i = 1
For Each strValue In arrValues
StdOut.WriteLine strValue
Select Case strValue
Case “\Device\NdisWanIp”
bFound = True
colNewVals(0) = strValue
Case Else
colNewVals(i) = strValue
i = i + 1
End Select
Next

‘ If the value has been found in the previous procedure, the new order will be written to the registry
‘ else it will tell the connection was not found.
If bFound then
StdOut.WriteLine “”
StdOut.WriteLine “This is the new array.”
For Each strNewVal In colNewVals
StdOut.WriteLine strNewVal
Next
StdOut.WriteLine “”
StdOut.WriteLine “Write the values back to the registry.”
‘ oReg.SetMultiStringValue HKEY_LOCAL_MACHINE, strKeyPath, strValueName,colNewVals
ElseIf not bFound then
StdOut.WriteLine “\Device\NdisWanIp not found.”
End If

StdOut.WriteLine “——————— Finished ——————————”

2008/06/02

Reply
How to unlock a phone #

Interesting article, i have bookmarked your blog for future referrence

2009/03/15

Reply
Mark #

I have had so many people contact me stating they couldn’t get this script to work, and it turns out copying and pasting this from wordpress is the issue. I have a zip file containing the VBS and a simple install.bat file that will fix the issues for you.

Please remember to reboot when you have applied the script.

http://www.vistanetworks.ca/VPN%20Binding%20Order%20fix.zip

2009/08/20

Reply
klemens Larisch #

Thank you,
this will solve my problem completely

2009/09/14

Reply
Insider #

Very useful solution! I’ve been dealing with this issue for a while.
Thanks

2010/01/13

Reply
tim #

Any idea how to fix a similar issue in Windows 7? It’s the same symptoms, however instead of a list of Device\xxx under registry key HKLM\…\Tcpip\Linkage I get a list of GUIDs:

\Device\{947B316E-398A-466A-8BE8-67B4EB6984BF}
\Device\{B6E4AD2D-E924-44A5-A07D-111C9EB1373B}
\Device\{BE13FE63-2886-4EEB-BCDF-CF30CCD7293B}
\Device\{81E82621-BAD3-4862-9CF8-38779A93309B}
\Device\{529D9AB7-0668-48E7-9C1D-E9874EC03028}
\Device\{F008E096-C3D4-4D79-B5DB-0C57EF8A5A4E}
\Device\{E19FBB7C-C73A-474B-8203-163821663DF7}

Thanks!

2010/07/28

Reply
- James #
  
  Tim,
  I had the same issue, but managed to figure it out. If you look at this registry key, HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Network, you’ll see 4 keys that are GUIDs. I don’t think it matters which you choose, so expand the first one. This is a list of GUIDs that are all of the interfaces (physical, virtual, there are probably many of them). Under each there is a key called Connection and a variable Name, which is the name of the interface in the list of interface. This information allows you to identify the GUID of the VPN adapter, which you can then put at the top of the list in the Linkage key. Hope this helps.
  James
  
  2010/09/02
  
  Reply
Darkman #

Hi guys, very usefull script for Windows XP, but this problem still exist for dummy users on Windows 7…

Somebody can port the script for Windows 7 ?

2011/07/26

Reply

Trackbacks & Pingbacks

Paranoid question about VPN connections on Windows + secure DNS

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (Address never made public)

Name

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

You may use basic HTML in your comments. Your email address will not be published.

Subscribe to this comment feed via RSS

Slashdot – News for nerds…

Who's Pirating Game of Thrones, and Why?

TheGift73 writes "In a few hours a new episode of Game of Thrones will appear on BitTorrent, and a few days later between 3 and 4 million people will download this unofficial release. Statistics gathered by TorrentFreak reveal that more people are downloading the show compared to last year, when it came in as the second most downloaded TV-show of 2011. […]

timothy

Rare 'Annular Solar Eclipse' Tonight

First time accepted submitter Trubacca writes "The Northern-Pacific "Ring of Fire" has an opportunity tonight to observe an entirely different "ring of fire": an annular solar eclipse where the moon, owing to it's distance from the Earth, seems smaller than the apparent diameter of the sun. This results in the fiery ring for whi […]

timothy

Turning Soap Film Into a Projector Screen

An anonymous reader writes "3 graduate students from University of Tokyo, Carnegie Mellon University, and the University of Tsukuba have developed a colloidal display — a clear projector screen that can control its transparency. Normally soap film will allow light to pass through, but the colloidal display does not. It mixes colloid into the solut […]

timothy

Programming — Now Starting In Elementary School

the agent man writes "The idea of getting kids interested in programming in spite of their common perception of programming to be 'hard and boring' is an ongoing Slashdot discussion. With support of the National Science Foundation, the Scalable Game Design project has explored how to bring computer science education into the curriculum of midd […]

timothy

Assange Stands 'Real Chance' of Election In Australia

Okian Warrior writes "Various new sources are reporting the results of a recent Labor Party poll, indicating that Julian Assange would be elected to the Australian senate, should he choose to run. From the Sun Daily article: 'Controversial WikiLeaks founder Julian Assange stands a real chance of winning an upper house seat in his native Australia i […]

timothy

Apple Lifts Ban On the Word "Jailbreak"

Gunkerty Jeb writes "After banning the word 'jailbreak' from its app store and music library, Apple [Friday] reversed course and again permits the term — slang for hacking into a device to download unauthorized content — to appear on iTunes and its App Store. On Thursday bloggers noticed Apple had censored the word, using the Thin […]

timothy

Pakistan Blocks Twitter Over 'Blasphemous' Images

Diggester writes with this news from the Times of India: "Pakistani authorities on Friday further widened the crackdown on websites with blasphemous contents by restricting access to popular social networking website Twitter. Pakistani users were unable to log into Twitter after internet service providers blocked access to the site." The block was […]

timothy

ARM, Intel Battle Heats Up

An anonymous reader writes "Low-power processor maker ARM Holdings is stepping up rhetoric against chip rival Intel, saying it expects to take more of Intel's market share than Intel can take from them. With Intel being the No. 1 supplier of notebook PC processors, and ARM technology almost ubiquitously powering smartphones, the two companies are f […]

timothy

Protecting State Secrets Through Copyright

An anonymous reader writes "The United States has pursued Bradley Manning with full force for his role in supplying classified documents to WikiLeaks, in part because of the substantial difficulty in going after the organization directly. Criminal statutes generally deployed against those who leak classified government documents--such as the Espionage A […]

samzenpus

Zuckerberg Updates Relationship Status To "Married"

theodp writes "A day after taking Facebook public, CEO Mark Zuckerberg changed his Facebook status to 'married' after wedding longtime girlfriend and recent med school grad Priscilla Chan on Saturday. No word if Zuckerberg heeded Donald Trump's prenup advice." Read more of this story at Slashdot. […]

timothy

Virtualization.info

NVIDIA introduces World’s Firs Virtualized GPU 2012/05/17

On May 15th NVIDIA unveiled the NVIDIA® VGX™ platform that will be available later this year through NVIDIA’s hardware OEM and VDI partners. This new platform promises to deliver...

virtualization.info Staff

Microsoft announces Assessment and Planning Toolkit 7.0 Beta Program 2012/05/17

Microsoft announced this week the new Beta version of its capacity planning tool Microsoft Assessment and Planning (MAP) 7.0 Beta. The Beta program opened on May 15th and the review...

virtualization.info Staff

VMware announces vFabric Suite 5.1 2012/05/15

Today VMware announced VMware vFabric Suite 5.1, expected to be generally available in Q2 2012. vFabric Suite 5.1 includes vFabric Application Director, to automate the deployment and management of vFabric...

virtualization.info Staff

VMware CTO talks about R&D plans for the future 2012/05/15

On April 4 Stephen Herrod, VMware’s CTO, has attended, as guest speaker, at a VMUG meeting in Italy. One of the key point of the speech, documented in one hour-long...

virtualization.info Staff

Citrix Hosted Server VDI Tech Preview 2012/05/14

Last week Citrix announced a new tech preview for Hosted Server VDI technology that allows cloud providers to leverage Microsoft SPLA to host VDI-style desktops obtaining a pay-as-you-go monthly subscription licensing...

virtualization.info Staff

Release: Atlantis ILIO Diskless VDI 3.2 2012/05/11

On May 7 Atlantis Computing announced the general availability of its Atlantis ILIO Diskless VDI 3.2, this product, tailored in particular for VMware View 5.1, enables virtual desktops deployment...

virtualization.info Staff

Citrix unveils Project Aruba 2012/05/11

On May 7 Citrix announced a technology preview of Project Aruba that extends Citrix VDI all-in-one proposal for the SMB market, VDI-in-a-Box, with personal vDisk technology. VDI-in-a-Box, inherited from Kaviza...

virtualization.info Staff

Cloud Sidekick announced Early Access release of Cato EE 2012/05/10

On May 7 Cloud Sidekick announced the Early Access Program release of Cato Enterprise Edition (EE) which extends the Community Edition (CE) with Storm Deployment Automation and support for...

virtualization.info Staff

Release: VMware vCenter Infrastructure Navigator (VIN) 1.1 2012/05/09

On April 26 VMware announced the general availability of VMware vCenter Infrastructure Navigator (VIN) 1.1, previously introduced as a part of vCenter Operations Management Suite. VIN automatically detects, discovers and...

virtualization.info Staff

VMware accelerates security updates after ESX source code leak 2012/05/08

On May 3 VMware released a security update, that the company itself define as “accelerated“, with the purpose to patch five “critical” security issues across VMware ESX and ESXi hypervisor...

Massimo Ferrari

winsupersite.com

Windows Weekly 261: Don't Nudge Me 2012/05/20

By Paul ThurrottIn the latest episode of the Windows Weekly podcast, Iyaz Akhtar and I discuss the cost of Microsoft’s coming Windows 8 update offer, a Windows 8 Release Preview ... preview, Windows 8 and DVD playback, dueling search engines, and Microsoft Signature.

Paul Thurrott

Windows 8 Feature Focus: Contracts 2012/05/20

By Paul ThurrottUnless you’re a serious old timer, you probably don’t remember when copy and paste functionality, now a common and expected feature, was added to Windows. Well, this time you have no excuse: Microsoft is adding a new capability to Windows 8 called contracts. And as with copy and paste, you’re going to have a hard time remembering using Window […]

Paul Thurrott

Windows 8 Release Preview: RIP, Aero (2003-2012) 2012/05/19

By Paul ThurrottMicrosoft quietly revealed this week that it will kill off the Aero glass interface in Windows 8 and replace it with a flat, Metro-like Explorer that’s more in line with the company’s current design mantra. But this change isn’t just about obfuscation. It’s about the Windows team abandoning the very market that drove Windows’s success for ove […]

Paul Thurrott

Keith Combs

The Windows 8 User Experience Gets Explained 2012/05/19

Keith Combs

I totally want this for my home office 2012/05/17

Keith Combs

Aluminum is out, Carbon is in 2012/05/15

Keith Combs

HP Launches New Ultrabooks 2012/05/09

Someone apparently didn’t get all of the embargo information quite right today because I noticed several false starts on the HP announcements for some notebook models. Oh well, nobody is perfect. Pictured at right is the coming HP Folio Ultrabook. It isn’t scheduled to start shipping until October so don’t start jumping up and down with joy. There are se […]

Keith Combs

Windows 8 and Windows Media Center - details from the product development group 2012/05/04

Keith Combs

Microsoft Private Cloud Summit - registration open and seats still available 2012/05/01

Keith Combs

NVIDIA Launches GeForce GTX 690 2012/04/29

“Despite the stupendous performance of the GeForce GTX 690, some gamers are destined to clamor for more. That's where Quad SLI comes in. When two GeForce GTX 690s are connected via an SLI motherboard, four GPUs work in unison in Quad SLI mode. Each GPU works on a distinct frame for a total of four frames in flight at a given time. The resulting performa […]

Keith Combs

Windows Server 2012 - beta hands on labs now available 2012/04/24

Keith Combs

Get the Microsoft Camera Codec Pack 2012/04/23

The Microsoft Camera Codec Pack enables the viewing of a variety of device-specific file formats. Note: Clicking Download means you agree to the Microsoft service agreement and privacy statement. Additional details below. The Microsoft Camera Codec Pack enables the viewing of a variety of device-specific file formats in Window Live Photo Gallery as well as o […]

Keith Combs

Microsoft Deployment Toolkit (MDT) 2012 - now available for download 2012/04/20

Deploy Windows 7, Office 2010 and 365, and Windows Server 2008 R2 with the newly released Microsoft Deployment Toolkit 2012. MDT is the recommended process and toolset for automating desktop and server deployment. MDT provides you with the following benefits: Unified tools and processes, including a set of guidance, for deploying desktops and servers in a co […]

Keith Combs

Contact your system administrator

VPN Binding Order Fix (ALL WINDOWS XP MACHINES!)

Like this:

Trackbacks & Pingbacks

Leave a Reply Cancel reply

Disclaimer

Search

Contacting EnX

Windows Live EnX

EnX on LinkedIN.

Categories

Slashdot – News for nerds…

Bink.nu “Watching Microsoft like a Hawk”

Virtualization.info

winsupersite.com

Keith Combs

VIrtual PC Guy

Microsoft Digital Media Technologies

Archives

Calgary Network Services

Follow “EnX Blog”