We have a few servers running Windows server 2012 in VMs. Their ocsp connections to ocsp.godaddy.com and crl.godaddy.com aged out, while their ocsp connections to ocsp.digicert.com works.
Please advise how to fix it.
The firewall allows all ocsp traffic outbound.
The firewall traffic logs shows that the ones to godaddy aged out, while the ones to digicert completed successfully (tcp-fin)
Thanks in advance.
I too have this exact problem isolated to Windows 2012 VMs whilst 2016 VMs work.
The curve ball here is I can find a small amount 2012 VMs that do complete this traffic. I've yet to figure out why.
Have you had any luck figuring out why?