Re: Windows 2003 disabling/blocking public IP?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

---

• From: juank.avila@xxxxxxxxx
• Date: 24 Nov 2006 16:30:07 -0800

---

Anyone? Please?

juank.avila@xxxxxxxxx ha escrito:

Hi All,

I have set up a Windows 2003 Standard Edition server with the following
network configuration:

- NIC 1: private interface (LAN), no NAT, no basic firewall
- NIC 2: public interface (connected to the Internet through a Cable
Modem), NAT, basic firewall

I've assigned NIC 2 a pool of 3 static IP addresses, provided by my ISP
(let's call them public-IP1, public-IP2 and public-IP3)

On NIC 2 I've defined some services and ports that enable public access
to some of our internal servers:

public-IP1:80 --> private-IP-1:80
public-IP2:80 --> private-IP-2:80
etc.

It all seems to work fine most of the time, but today I had the
following problem:

I was able to access web site at public-IP2:80 from OUTSIDE (the
Internet), but NOT the website at public-IP1:80.

Note that while this happened the website at private-IP-1:80 WAS
accessible for LAN users.

I also tried to open a different port on that interface
(public-IP1:8080 -> private-IP:80), with no luck!

So it seems to me that public-IP1 was, some how, blocked to all
incoming traffic.

After some research I did not find any useful information, so I decided
to DISABLE/ENABLE the Network connection on NIC 2 and this seemed to
solve the problem.

I would like to know if W2003 can block or disable an IP address in
response to an attack, or any reasons for this unexpected behavior.
Could this be caused by my ISP?

Please note that I'm quite new to these kinds of network settings, and
if you need further information, please let me know.

Thanks for any ideas!!

Juan

.

---

• References:
  • Windows 2003 disabling/blocking public IP?
    • From: juank . avila

• Prev by Date: Re: Routing two networks
• Next by Date: Re: Cross network acess by name YES, shown in browsing list NO
• Previous by thread: Windows 2003 disabling/blocking public IP?
• Next by thread: Re: Can not resolve computer name
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Firewall Questions ... No firewall. ... > sketch their idea of what they saw as a new network plan. ... > They want this firewall to be in NAT mode where everything in the LAN ... (comp.security.firewalls) Re: 56k dial up on laptop 802.11G ? ... are you now a believer that I can control outgoing traffic without ... >>the definition of a network firewall. ... > that NAT is a real firewall because it functions to protect the LAN ... (alt.internet.wireless) Re: new install watchguard ... >> need the management interface. ... >> You could also leave the CISCO and router in place and set the FB up on ... > INTERNAL Network IPs. ... > The router is using NAT, when setting up the FB do I turn off NAT? ... (comp.security.firewalls) Re: cannot ping from subnet A to subnet B for a specific host ... It appears that whoever set up the router config wanted only one-way ... Interface, and the Interface on the .5 network as the destination NAT ... (microsoft.public.win2000.dns) Re: 3 Nics - Dual (Tripe) Homed Host ... >>LAN with access to the Internet. ... >it would have on the NAT from the 192.168.1.0/24 network. ... two machines on the 10.0.0.0 network that needed to access machines on the ... (freebsd-questions)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.networking  > 2006-11