Servers suddenly unable to make new connections; seems like ephemeral port exhaustion

windows-server-2008-r2

Sounds like your suspicion about the July update being the source of the problem has merit. Try uninstalling the July 11 2017 Rollup from one of your affected servers. If problem goes away, consider contacting MS support? Then again, as its a "known issue" that might not be very productive...

Known issues in this update KB4025341

Symptom: Due to a defect in WLDAP32.DLL, applications that perform LDAP referral chasing can consume too many dynamic TCP ports (potentially exhausting them)

Workaround: To work around the problem, restart services or applications that perform LDAP referral chasing to free TCP dynamic ports.


The script mentioned here might help diagnosing what process is using up the ports. Basically it combines the output of netsh int ipv4 show dynamicportrange tcp with netstat –ano –p tcp to help with the diagnosis. The text also mentions this is only for finding issues in user-mode processes only, explaining how WinDBG must be used for diagnosing issues in kernel-mode processes.

This thread also mentions Event 4231 as another indicator of the issue.

Related

How to trigger a custom error from inside a Jinja template?
Error when installing NFS service on Windows 2016
yum install local rpm throws error if up to date
HAproxy: Run script on health check change
How to configure firewall on user defined Docker bridge?
Storage Spaces: Optimize-Volume taking days
Error: bad command `​nospoof on' in /etc/host.conf file
Google Cloud Platform - SSH Connection Refused
GCP: No access to Container Registry from Compute Engine
Storage recommendations for DPM 2016
Resize LVM without data loss
Server OS or PowerShell version differences that would affect copy speed?