Event Log Error 14147
- From: "Quintin Z" <qztarantino@xxxxxxxxxxxxxxxx>
- Date: Tue, 12 Dec 2006 10:26:34 +0100
Hi,
I am noting the following events being logged frequently in the application
log (Event ID 14147). The ISA server is an ISA2k4 EE.
"ISA Server detected routes through adapter adapter_name that do not
correlate with the network element to which this adapter belongs. For best
practice, the address range of an array-level network element should match
the address ranges routable through its network adapters as defined in the
routing table. Otherwise valid packets may be dropped as spoofed. (This
alert may occur momentarily when you create a remote site network or
configure Network Load Balancing. You may safely ignore this message if it
does not reoccur.) The following ranges are in the network's IP address
range but are missing from the routing table: x.x.1.255-x.x.1.255"
The error is being generated on 2 external adapters, one non-trusted and one
DMZ. The IP address x.x.1.255 in this error is from the Internal 'trusted'
network range. The IP address of the firewall is x.x.1.254. A network rule
has been created to route network traffic between the internal network and
the DMZ network.
A DHCP server is also configured on this firewall and sometimes clients are
not being able to take an IP address. This seems to be happening because the
x.x.1.255 IP address is being detected as spoofed and packets are dropped.
DHCP clients use broadcast address to detect a DHCP server in their segment.
Anybody can help pls?
Regards,
QZ
.
- Prev by Date: Re: non-http protocol use tcp 80 problem
- Next by Date: hopster on ISA server 2004
- Previous by thread: non-http protocol use tcp 80 problem
- Next by thread: hopster on ISA server 2004
- Index(es):
Relevant Pages
|
