{"id":740,"date":"2009-07-23T10:15:41","date_gmt":"2009-07-23T09:15:41","guid":{"rendered":"http:\/\/www.servernet.dk\/?p=740"},"modified":"2009-07-23T10:17:20","modified_gmt":"2009-07-23T09:17:20","slug":"event-id-2025-is-logged-in-the-system-log-on-a-windows-server-2003-based-computer","status":"publish","type":"post","link":"https:\/\/www.servernet.dk\/?p=740","title":{"rendered":"Event ID 2025 is logged in the System log on a Windows Server 2003-based computer"},"content":{"rendered":"<p>The following event is logged in the System log of Event Viewer on a computer that is running Microsoft Windows Server 2003:<\/p>\n<p class=\"indent\">Event ID: 2025<br \/>\nSource: SRV<br \/>\nDescription: &#8220;The server has detected an attempted Denial-Of-Service attack from client \\\\<var>computer_name<\/var>, and has disconnected the connection.&#8221;<\/p>\n<p>Additionally, client computers are disconnected from the server<\/p>\n<p>\u00a0<\/p>\n<p><strong>WORKAROUND<\/strong><\/p>\n<p>Disable denial of service attack detection<script type=\"text\/javascript\"><\/script> <strong>Important<\/strong> These steps may increase your security risk. These steps may also make your computer or your network more vulnerable to attack by malicious users or by malicious software such as viruses. We recommend the process that this article describes to enable programs to operate as they are designed to, or to implement specific program capabilities. Before you make these changes, we recommend that you evaluate the risks that are associated with implementing this process in your particular environment. If you choose to implement this process, take any appropriate additional steps to help protect your system. We recommend that you use this process only if you really require this process. You can disable denial of service attack detection at the operating system level. By doing this, you prevent errors from being logged. To do this, follow these steps:<\/p>\n<ol>\n<li>Click <strong>Start<\/strong>, click <strong>Run<\/strong>, type <span>regedit<\/span> in the <strong>Open<\/strong> box, and then click <strong>OK<\/strong>.<\/li>\n<li>Locate and then click the following registry subkey:\n<div><strong>HKEY_LOCAL_MACHINE\\System\\CurrentControlSet\\Services\\LanManServer\\Parameters <\/strong><\/div>\n<\/li>\n<li>On the <strong>Edit<\/strong> menu, point to <strong>New<\/strong>, and then click <strong>DWORD Value<\/strong>.<\/li>\n<li>Type <span>DisableDos<\/span> for the name of the DWORD value, and then press ENTER.<\/li>\n<li>Right-click <strong>DisableDos<\/strong>, and then click <strong>Modify<\/strong>.<\/li>\n<li>In the <strong>Value data<\/strong> box, type <span>1<\/span> to disable denial of service attack detection, and then click <strong>OK<\/strong>.<strong>Note<\/strong> To enable denial of service attack detection, type <span>0<\/span> in the <strong>Value data<\/strong> box.<\/li>\n<li>Quit Registry Editor.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>The following event is logged in the System log of Event Viewer on a computer that is running Microsoft Windows Server 2003: Event ID: 2025 Source: SRV Description: &#8220;The server has detected an attempted Denial-Of-Service attack from client \\\\computer_name, and has disconnected the connection.&#8221; Additionally, client computers are disconnected from the server \u00a0 WORKAROUND Disable [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[181],"class_list":["post-740","post","type-post","status-publish","format-standard","hentry","category-microsoft-server-2003","tag-denial-of-service-attack"],"_links":{"self":[{"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/posts\/740","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=740"}],"version-history":[{"count":2,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/posts\/740\/revisions"}],"predecessor-version":[{"id":742,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=\/wp\/v2\/posts\/740\/revisions\/742"}],"wp:attachment":[{"href":"https:\/\/www.servernet.dk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=740"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=740"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.servernet.dk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=740"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}