Re: AD, DHCP or maybe DNS problem?
- From: "Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx>
- Date: Tue, 13 Jun 2006 00:47:38 +0100
Very strange....
DON'T REMOVE THE FIREWAL.
I already setup several RRAS servers and they work fine, were did you enable
the Basic Firewal (In the internal Interface or in the Public Interface)?
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Greg P" <gsp@xxxxxxxxxxxxxxxxx> wrote in message
news:6E45E005-53B4-4674-9196-0198A6449A17@xxxxxxxxxxxxxxxx
Jorge,
It works!! and this has to be a bug!!! When configuring RRAS if I have
the
RRAS firewall enabled I have the problem, If i remove the basic firewall
when
configuring RRAS it doesn't work.
Why this only effect the two other computers and not my laptop makes no
sense to me, although there has to be a reason. But this has to be a bug,
if
the firewall doesn't allow certain clients to receive the reply from the
web
site, dont' you think?
Thanks,
"Jorge Silva" wrote:
Check if you have nay filters enabled on the RRAS server.
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Greg P" <gsp@xxxxxxxxxxxxxxxxx> wrote in message
news:11E781ED-0DBA-41F7-86C7-63DDD5A9CB17@xxxxxxxxxxxxxxxx
FYI I did ping my Gateway (the external nic on my server) and was
sucessful.
I realized you might need to know that.
"Greg P" wrote:
Yes I am using Remote Access to access the internet. All of your
suggustions
worked (got a responce) and my trace gets out to MSN, but internet
still
doesn't work. 192..168.10.1 is my server 192.168.10.3 is my desktop
(the
one
I ran the trace on, but can't use the internet on) below are my pings
and
trace.
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\Documents and Settings\gperrego>ping 127.0.0.1
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
C:\Documents and Settings\gperrego>ping 192.168.10.1
Pinging 192.168.10.1 with 32 bytes of data:
Reply from 192.168.10.1: bytes=32 time=101ms TTL=128
Reply from 192.168.10.1: bytes=32 time=174ms TTL=128
Reply from 192.168.10.1: bytes=32 time=1ms TTL=128
Reply from 192.168.10.1: bytes=32 time=1ms TTL=128
Ping statistics for 192.168.10.1:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1ms, Maximum = 174ms, Average = 69ms
C:\Documents and Settings\gperrego>ping 192.168.10.3
Pinging 192.168.10.3 with 32 bytes of data:
Reply from 192.168.10.3: bytes=32 time<1ms TTL=128
Reply from 192.168.10.3: bytes=32 time<1ms TTL=128
Reply from 192.168.10.3: bytes=32 time<1ms TTL=128
Reply from 192.168.10.3: bytes=32 time<1ms TTL=128
Ping statistics for 192.168.10.3:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
C:\Documents and Settings\gperrego>ping 192.168.10.2
Pinging 192.168.10.2 with 32 bytes of data:
Reply from 192.168.10.2: bytes=32 time<1ms TTL=128
Reply from 192.168.10.2: bytes=32 time<1ms TTL=128
Reply from 192.168.10.2: bytes=32 time<1ms TTL=128
Reply from 192.168.10.2: bytes=32 time<1ms TTL=128
Ping statistics for 192.168.10.2:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
C:\Documents and Settings\gperrego>tracert www.microsoft.com
Tracing route to lb1.www.ms.akadns.net [207.46.199.30]
over a maximum of 30 hops:
1 1 ms 1 ms 1 ms nugget.sbs.net [192.168.10.1]
2 7 ms 8 ms 8 ms 10.37.160.1
3 8 ms 8 ms 8 ms gig0-2.austtxa-ubr7.austin.rr.com
[24.27.12.81]
4 9 ms 9 ms 7 ms gig2-3.austtxa-rtr1.austin.rr.com
[24.27.12.85]
5 18 ms 10 ms 9 ms srp0-0.austtxrdc-rtr2.austin.rr.com
[24.27.12.34
]
6 9 ms 8 ms 9 ms pos1-0.austtxrdc-rtr4.texas.rr.com
[66.68.1.110]
7 17 ms 18 ms 16 ms son0-0-0.hstqtxl3-rtr1.texas.rr.com
[24.93.33.15
3]
8 18 ms 17 ms 16 ms 4.79.88.21
9 16 ms 16 ms 18 ms ge-2-0-0.mp1.Houston1.Level3.net
[4.68.97.241]
10 172 ms 110 ms 60 ms as-1-0.mp2.Seattle1.Level3.net
[209.247.10.133]
11 61 ms 61 ms 59 ms ge-2-0-0-52.gar1.Seattle1.Level3.net
[4.68.105.4
1]
12 60 ms 61 ms 62 ms 65.59.235.6
13 94 ms 62 ms 62 ms 207.46.37.225
14 62 ms 61 ms 63 ms pos1-0.tuk-12ix-1b.ntwk.msn.net
[207.46.36.146]
15 60 ms 62 ms 62 ms pos1-0.tke-12ix-1b.ntwk.msn.net
[207.46.155.5]
16 60 ms 60 ms 60 ms po10.tuk-65ns-mcs-1a.ntwk.msn.net
[207.46.224.15
1]
17 * ^C
C:\Documents and Settings\gperrego>
"Jorge Silva" wrote:
The request TimesOut -> normal, the servers in the internet won't
reply
to
ping requets because they are protected by firewalls.
Basic Steps to troubleshoot are:
1. Ping the loopback address to verify that TCP/IP is installed and
configured correctly on the local computer. To perform this step,
enter
ping
127.0.0.1 at a command prompt.
If the loopback step fails, the IP stack is not responding. This
problem
might be occurring because the TCP drivers are corrupted, the
network
adapter might not be working, or another service might be
interfering
with
IP.
2. Ping the IP address of the local computer to verify that an
address
has
been added correctly. To perform this step, enter ping <IP address
of
local
host> at a command prompt.
3. Ping the IP address of the default gateway. This step verifies
that
the
default gateway is reachable and that the local host can communicate
with
another host on the network. To perform this step, enter ping <IP
address of
default gateway> at a command prompt.
Then you can use Tracert which is a route-tracing utility that
allows
you to
track the path of a forwarded packet from router to router for up to
30
hops. Tracert works by sending ICMP echo requests to an IP address,
while
incrementing the Time to Live (TTL) field in the IP header, starting
at
1,
and analyzing the ICMP errors that are returned. Tracert prints out
an
ordered list of the routers in the path that returned these error
messages.
Type on command prompt:
<tracert www.microsoft.com> press enter
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Greg P" <gsp@xxxxxxxxxxxxxxxxx> wrote in message
news:01B390CF-90D6-4305-9008-8E34BE2E69E6@xxxxxxxxxxxxxxxx
Jorge,
I reset internet options to no avail. One thing i'm not sure
about
is
when
I ping the internet from any computer on the network the request
times
out.
Even the server and the laptop that the internet works on.
Otherwise
I'm
totally stumped.
Thanks,
Greg
"Jorge Silva" wrote:
I uninstalled Norton totally from the desktop. If it can't
connect to
the
internet I can't get a virus :)
It looks that your Dns resolution is working well. So the only
explanation
that I can remember at this moment is that there is something or
some
filter
that prevents you from going to the internet. Check Internet
options
or
any
type of configuration internet related that you migh have in your
pc.
--
I hope that the information above helps you
Good Luck
Jorge Silva
MCSA
Systems Administrator
"Greg P" <gsp@xxxxxxxxxxxxxxxxx> wrote in message
news:3BDBCBA0-CDBF-4A47-8B91-B77978A81F49@xxxxxxxxxxxxxxxx
Jorge,
Unfortunately I'm in the same spot that I started in, except we
solved
the
file sharing issue on Laptop 2 by lowering the Norton firewall.
I
still
can't access the internet on the desktop or laptop 2, even
though
they
are
on
the dame domain as Laptop 1 which can access the internet.
With
that
being
said I'm not sure if you still think this is a DNS problem?
Well you said that now you have everything working exceptprevents/restricts users to access to the internet, so you must
Internet, and
you also said that you don't have Proxy or any other thing that
have a
DNS
resolution problem.
Do you have Forwarding enabled in the Dns server?
Yes, this is set up with the correct ip addresses.
Test the resolution on the DC - Go to command prompt and typethen go to the clients and check if the ping command returns
ping
www.microsoft.com - check if returns the Ipaddress of the site
the
Ipaddress
of the site.
All resolve the IP address, all requests time out.
Right click on it and choose properties then you should have
the
"File
and
Print Sharing for Microsoft Networks Selected"; however you
should
disable/deselect this on the Public Interface (Security
purposes).
The File and Print Sharing was selected previously. (there
wasn't
a
Public
Interface option for this nic, there are only 4 options in the
properties
page, Client for MS Networks, Network Lad Balancing, File and
Printer
Sharing, and TCP/IP)
Check also if is preventing Internet access or any other access
to
server
or Dns, etc. Best practices here are for test DISABLE the
Norton
Firewall
and test, in this way you can immediately check if this as
relation
with
your current problems.
I uninstalled Norton totally from the desktop. If it can't
connect to
the
.
- Follow-Ups:
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- References:
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- From: Jorge Silva
- Re: AD, DHCP or maybe DNS problem?
- From: Greg P
- Re: AD, DHCP or maybe DNS problem?
- Prev by Date: Re: group policy question on workstation and terminal server for s
- Next by Date: Re: AD, DHCP or maybe DNS problem?
- Previous by thread: Re: AD, DHCP or maybe DNS problem?
- Next by thread: Re: AD, DHCP or maybe DNS problem?
- Index(es):
Relevant Pages
|
