Forum Discussion
How do I verify network endpoint connectivity.
Hi, Is there an easy way to verify internet endpoint connectivity. I come across this regularly where a product documents that I need to verify internet endpoint connectivity to various url's a...
Normally we recommend you to use WSUS or other Windows Update Management tools and when you deploy update , they will report back of status of the update and if a client is not reachable or update didn't installed, it will show it in diagram and report. This way, you don't need to perform manual check but you just look into report to see what cause the failure and you may investigate only affected clients.
- Reza_Ameri thanks for your response.
My question was more generic and windows update was just one example. We use MECM (with WSUS)
I guess it comes back to - something is wrong, how do i verify connectivity to the required sites as part of your comment "investigate only affected clients".
I have had the requirement for Cloud management gateway and various M365/azure products previously and would like to know how to verify the sites as part of my pre-deployment checks to be sure everything is going to work before I deploy something.
Background : -
The reason I mentioned the windows update sites is because I was investigating the use of Dism repair options which defaults to windows update as the source and we have Group policy in place to enforce that but I regularly see "source not found" messages when running Dism repairs and I'd rather use Windows update rather than constantly maintain offline source images.PaulKlerkx you may tracert command which it will show connectivity traces to the client , so the ping only shows if the connection is available but the tracert showing the route to the device. Take a look at https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/tracert.
In the Configuration Manager , you may check the Assets and Compliance to see the connectivity status of your device, take a look at https://docs.microsoft.com/en-us/mem/configmgr/core/clients/manage/monitor-clients.
- Reza_Ameri , thanks for the ideas.
I don't need to know if my MECM endpoints are contactable, I am trying to check the generic sites and protocols that my clients need to connect to.
Tracert won't work as it is trying to tracert to a generic address that won't be resolvable E.G. "*.prod.do.dsp.mp.microsoft.com" .
where the site isn't generic and has a full path, yes it will give me half the picture by showing the site exists and is pingable, it won't tell me if the protocol is permitted.
E.G. how does doing a tracert on "tsfe.trafficshaping.dsp.mp.microsoft.com" tell me if TLS 1.2 will get through.
The MECM idea only tells me if the MECM client has connectivity to my MECM server. No good for verifying connectivity to internet sites via various protocols.
