Over the last few weeks, I’ve been configuring a brand new SCOM environment at work to monitor the SCCM infrastructure.
This is a very small SCOM implementation, it only consists 1 RMS (SCOM 2007 R2 with Cumulative Update 4) and 1 SQL server hosting OperationsManager DB (SCOM Reporting is yet to be implemented). Both RMS and SQL servers are running on Windows 2008 R2 RTM.
Currently, there is only 1 SCOM console installed, which is running locally on the RMS server. From very beginning, I noticed the SCOM console randomly became unresponsive and hang when I create /modify objects (i.e. groups, overrides, subscriptions, etc). When it happens, I normally had to restart SCOM services or even reboot the RMS server to get it going again (thankfully it’s not in production yet).
Today, the issue became very extreme. after reboot, the SCOM console hang on start up. I have tried using different user account and removed my Windows profile from the RMS server, but it did not help.
After a bit digging around I noticed there are some messeges logged in the event logs of the RMS server:
From Security Log:
Windows Filtering Platform is blocking SQL traffic from RMS to SQL server.
From Operations Manager log:
After googling around “Windows Filtering Platform”, I found this post: http://social.msdn.microsoft.com/Forums/en-US/wfp/thread/774026e6-a771-418a-b531-22183ef399f8/
There is one response in this post:
“If you decide to turn off the Windows Firewall, you need to make sure you disable it in the proper manner, otherwise you will have persistent filters affecting your traffic. In the Windows Firewall control panel (firewall.cpl), make sure you select ‘Turn Windows Firewall on or off’ and select ‘Off (Not Recommended)’. Alternatively you can use netsh.exe and run
‘Netsh.exe AdvFirewall Set CurrentProfile State Off’.
MPSSvc is a required service for IPsec Policy to continue to function. It also just happens to house Windows Firewall functionality as well. If using IPsec, donot turn off this service. Additionally if you do not turn off Windows Firewall, and just stop this service, you will be hit with Windows Firewall’s persistent policy (hence the reason to disable the firewall as stated above).”
My problem was that the Windows Firewall Service is disabled:
This is what I did to fix the issue:
- Set Windows Firewall service to Auto start and start it up.
- run “Netsh.exe AdvFirewall Set CurrentProfile State Off” command in an elevated command prompt to disable all firewalls.
After that, the SCOM console is running smoothly like never before!