question

daniel-niccoli avatar image
0 Votes"
daniel-niccoli asked daniel-niccoli answered

Why does the Network Location Awareness service identify a private network as public?

We are facing the issue that newly deployed Windows Server VMs in our environment keep identifying the network (10.12.24.0/23) as public. So for every VM we deploy, we need to manually change this to private. I would much rather know how to get Windows Server to correctly recognize the network as private.

Why does NLA think that network is public? What are the conditions on which NLA decides whether a network is public or private?

95592-image.png


windows-server-2019
image.png (46.2 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi,


Just want to confirm the current situations.


Please feel free to let us know if you need further assistance.


Best Regards,
Sunny

0 Votes 0 ·

Hi,


Just want to confirm the current situations.


Please feel free to let us know if you need further assistance.


Best Regards,
Sunny

0 Votes 0 ·
daniel-niccoli avatar image
0 Votes"
daniel-niccoli answered

New networks are treated as public by default, unless explicitly specified as private.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered

Just checking if there's any progress or updates?

--please don't forget to Accept as answer if the reply is helpful--




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SunnyQi-MSFT avatar image
0 Votes"
SunnyQi-MSFT answered daniel-niccoli commented

Hi,

Thanks for posting in Q&A platform.

By default the location type of the "Unidentified Network" will be marked as "Public". And I noticed that IPv4 Connectivity is Internet, may I know if this client can connect to the Internet?

Please try to add the DNS suffix for this connection under DNS tab of Advanced TCP/IP Settings to see if the issue can be resolved.

95858-image.png

Best Regards,
Sunny


If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


image.png (50.9 KiB)
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Further research confirmed that new networks are always treated as public unless specified as private.

0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered

NLA first attempts to identify a logical network by its DNS domain name. If a logical network does not have a domain name, NLA identifies the network from custom static information stored in the registry, and finally from its subnet address.
https://docs.microsoft.com/en-us/windows/win32/winsock/the-role-of-nla-2

--please don't forget to Accept as answer if the reply is helpful--





5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.