Re: DHCP Issues. Very strange
- From: v-crinal@xxxxxxxxxxxxxxxxxxxx ("Crina Li")
- Date: Thu, 23 Feb 2006 06:13:13 GMT
Hi Allen,
Thanks for your update.
As I know, there is no such document which describes the configuration of
default order of rule in ISA 2004. However, you can delete the rules you
have created yourself and then rerun CEICW to reconfigure the ISA 2004
settings.
[Note: please make a backup before you delete the rules.]
You can run CEICW as following:
1. Open Server Management, click To Do List, and then click Connect to the
Internet to launch CEICW.
2. On the Wizard, click Next until you see Firewall page.
3. Click to select Enable Firewall, and then click Next.
4. Select all options, and then click Next.
5. Click to select "Allow access to only the following web site services
from the Internet", and then select the websites that you need such as
Windows SharePoint Services intranet site, and then click Next.
6. Click Create a new Web server certificate and input your FQDN as the web
server certificate on Web server name column and then click Next.
7. Follow the instructions to finish the rest steps.
You may also refer to the following KB article:
825763 How to configure Internet access in Windows Small Business Server
2003
http://support.microsoft.com/?id=825763
More information:
ISA Server 2004 Quick Start Guide
http://download.microsoft.com/download/3/7/b/37b0cbc4-e578-4082-a779-de4fbe8
76f06/ISA2004SE_quickstartguide-Rev%201%2003.doc
ISA Server 2004 ISA Server 2004 Configuration Guide
http://download.microsoft.com/download/3/7/b/37b0cbc4-e578-4082-a779-de4fbe8
76f06/ISA2004SE_configguide-Rev%201%2003.doc
ISA Server 2004 Product Documentation
http://download.microsoft.com/download/5/a/e/5ae686f4-c4a6-4213-bc50-abc46b0
714dc/isa.chm
ISA 2004 Guidance
http://www.microsoft.com/isaserver/techinfo/guidance/2004/default.mspx
ISA 2004 best practices, Tips and Tricks:
http://www.isaserver.org/tutorials/2004bestpractices-p1.html
Thanks for your time and I look forward to hearing from you.
Best regards,
Crina Li (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: "AllenM" <allen.miyake@xxxxxxxxx>
| References: <O852u1wNGHA.3196@xxxxxxxxxxxxxxxxxxxx>
<St63qQ4NGHA.768@xxxxxxxxxxxxxxxxxxxxx>
| Subject: Re: DHCP Issues. Very strange
| Date: Wed, 22 Feb 2006 09:18:18 -0800
| | Newsgroups: microsoft.public.windows.server.sbs
| |
| Hi Crina,
| Thanks again for your reply and suggestions. au can read rom my response
to
| Anna my issues have been resolved. However if I may call upon your
expertise
| and knowledge I do have one more question to ask. You've responded to a
few
| of my posted issues and I'm not expecting you to remember them all but
there
| is a pattern and it involves ISA 2004 and the order of the rules. My
| question "Is there a document or place I can go to that will give me the
| "default" order of the rules when ISA 2004 is first installed with SBS
2003
| Premium. I believe if I can get it back to the default order things will
| work like they used too instead of me having to create new rules or make
| adjustments to the order. Thanks.
|
|
| ""Crina Li"" <v-crinal@xxxxxxxxxxxxxxxxxxxx> wrote in message
| news:St63qQ4NGHA.768@xxxxxxxxxxxxxxxxxxxxxxxx
| > Hi Allen,
| >
| > Thank you for posting in SBS newsgroup.
| >
| > From the description, I understand the issue to be: some client
computers
| > can not obtain IP from SBS server. If I have misunderstood your
concerns,
| > please do not hesitate to let me know.
| >
| > You may try removing the computer from Domain and then rejoin it to the
| > domain in client computer. To do that, please perform the following
steps:
| >
| > 1. In client computer, right-click My Computer and then select
Properties.
| > 2. In Computer Name tab, click Change and the change the computer from
| > Domain to Workgroup.
| > 3. Reboot the machine.
| > 4. Log on as a local administrator account.
| > 5. In client computer, open IE and run
http://servername/connectcomputer.
| > 6. Follow the wizard to finish.
| >
| > If it still occurs, the most possible of this is the Windows XP SP2
| > firewall or third-party firewall program block the DHCP traffic.
| >
| > At the current stage, it is most possible a client side issue of Windows
| > XP; however, since you have join it to SBS domain and the Windows XP SP2
| > firewall may be controlled by Group Policy of SBS server, I would like
to
| > help you troubleshoot in this newsgroup.
| >
| > Before we start troubleshooting, I would like you to double check that
the
| > other workstations in the SBS network could receive IP address by DHCP
| > service on the SBS serve so that we can confirm the DHCP service is
| > functioning well. Then, to troubleshoot this issue, I would like to
| > suggest
| > you following steps.
| >
| > 1. On the Windows XP SP2 workstation, please uninstall any third-party
| > antivirus and firewall program.
| > 2. On the Windows XP SP2 workstation, please disable the Windows XP SP2
| > Windows Firewall.
| >
| > However, if you find the Windows Firewall is enabled and with options
| > grayed out (cannot be disabled), you may need following process to
| > configure the SBS server group policy for Windows XP SP2 firewall.
| >
| > Generally, you could try to edit the ' Small Business Server Windows
| > Firewall' to enable or disable the firewall on client. However, before
the
| > operation, you need to confirm the following things first.
| >
| > After you install the Windows XP SP2 in your SBS 2k3 network, you may
need
| > to install the Update for SBS 2k3 server first, please refer to the
| > following article.
| >
| > 872769 You cannot configure Windows Firewall settings or Security Center
| > http://support.microsoft.com/?id=872769
| >
| > If you want to modify the Group Policy setting that is configured when
you
| > installed the Windows Small Business Server 2003 Update for Windows XP
| > SP2,
| > install the hotfix on the SBS server that is described in the following
| > Microsoft Knowledge Base article:
| >
| > 842933 "The following entry in the [strings] section is too long and has
| > been truncated" error message when you edit or view Group Policy in
| > Windows
| > Server 2003, in Windows XP, or in Windows 2000
| > http://support.microsoft.com/default.aspx?kbid=842933
| >
| > After installing the above 2 hotfixes, please use the following steps to
| > edit the GPO
| >
| > 1. Start -> Administrative Tools -> Group Policy Management.
| > 2. Expand Domains -> Your Domain.
| > 3. Right click the Small Business Server Windows Firewall and click
Edit.
| > 4. Computer configuration>Administrative templates>Network>Network
| > connections> Windows Firewall> Domain Profile.
| > 5. In "Windows Firewall: Protect all network connections" should be set
to
| > 'Disable'.
| > 6. Run Gpupdate /force on your XP2 client.
| > 7. Logon and logoff your client and test your issue again.
| >
| > The following image may help you to configure it.
| >
| > http://www.sbslinks.com/XPsp2.htm
| >
| > After disable the XP SP2 firewall, please try to IPconfig /release and
| > /renew again to see if this issue is resolved.
| >
| > For managing the Windows XP SP2 firewall under SBS network, you may also
| > need the following article
| >
| > Windows XP Service Pack 2 and Windows Small Business Server
| >
http://www.microsoft.com/technet/prodtechnol/sbs/2003/deploy/sbs_xpsp2.mspx
| >
| > If the issue still occurs, please try to configure the client computer
| > manually as following:
| >
| > 1. Right click My Network Places and select Properties.
| > 2. Right click Local Area Connection and select Properties.
| > 3. On General tab, high light TCP/IP and then select Properties.
| > 4. Select Use the following IP address and input an IP and set internal
IP
| > of SBS as default gateway.
| > 5. Set internal IP of SBS as DNS server.
| > 6. Try to see if it works.
| >
| > Also I provide the following general steps to configure SBS and client
| > computers:
| >
| > On SBS:
| >
| > 1. Leave the Default Gateway of the internal NIC blank.
| > 2. Configure both the internal NIC and the external NIC to use the
| > internal
| > DNS Service as the DNS Server.
| > 3. On the DNS Server, create the DNS Forwarder to forward the external
DNS
| > resolution requests to the ISP's DNS server. See:
| >
| > 323380 How to configure DNS for Internet access in Windows Server 2003
| > http://support.microsoft.com/?id=323380
| >
| > 4. Strictly followed the instructions in the KB article below to run
| > CEICW:
| >
| > 825763 How to configure Internet access in Windows Small Business Server
| > 2003
| > http://support.microsoft.com/?id=825763
| >
| > Then, you can bring all the computers from "workgroup" to "Domain" as
| > following:
| >
| > 1. Make sure the client computers get the IP addresses and DNS
| > configurations from the SBS 2003 DHCP service correctly
| > 2. In Server computer, Create a user account and computer account for
each
| > user by using the Add Users and Computers Wizard
| > 3. Log on a client workstation using its local administrator account
| > 4. In client computer, open IE and run http://servername/connectcomputer
| > 5. Follow the wizard to finish.
| >
| > If you have any questions or concerns related to this issue, please let
me
| > know.
| >
| > I appreciate your time and look forward to hearing from you.
| >
| > Best regards,
| >
| > Crina Li (MSFT)
| >
| > Microsoft CSS Online Newsgroup Support
| >
| > Get Secure! - www.microsoft.com/security
| >
| > =====================================================
| > This newsgroup only focuses on SBS technical issues. If you have issues
| > regarding other Microsoft products, you'd better post in the
corresponding
| > newsgroups so that they can be resolved in an efficient and timely
manner.
| > You can locate the newsgroup here:
| > http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
| >
| > When opening a new thread via the web interface, we recommend you check
| > the
| > "Notify me of replies" box to receive e-mail notifications when there
are
| > any updates in your thread. When responding to posts via your
newsreader,
| > please "Reply to Group" so that others may learn and benefit from your
| > issue.
| >
| > Microsoft engineers can only focus on one issue per thread. Although we
| > provide other information for your reference, we recommend you post
| > different incidents in different threads to keep the thread clean. In
| > doing
| > so, it will ensure your issues are resolved in a timely manner.
| >
| > For urgent issues, you may want to contact Microsoft CSS directly.
Please
| > check http://support.microsoft.com for regional support phone numbers.
| >
| > Any input or comments in this thread are highly appreciated.
| >
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
| > rights.
| > --------------------
| > | From: "AllenM" <allen.miyake@xxxxxxxxx>
| > | Subject: DHCP Issues. Very strange
| > | Date: Tue, 21 Feb 2006 09:37:04 -0800
| > | Lines: 16
| > | X-Priority: 3
| > | X-MSMail-Priority: Normal
| > | X-Newsreader: Microsoft Outlook Express 6.00.2900.2180
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
| > | X-RFC2646: Format=Flowed; Original
| > | Message-ID: <O852u1wNGHA.3196@xxxxxxxxxxxxxxxxxxxx>
| > | Newsgroups: microsoft.public.windows.server.sbs
| > | NNTP-Posting-Host: h-67-100-73-186.snvacaid.covad.net 67.100.73.186
| > | Path:
| >
TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA03.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP0
| > 9.phx.gbl
| > | Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:246226
| > | X-Tomcat-NG: microsoft.public.windows.server.sbs
| > |
| > | All of a sudden out of nowhere I'm having problems with some clients
not
| > | being able to obtain an DHCP lease from the server. At first I had
| > thought
| > | that maybe it was a hub issue as I do have two of them and clients are
| > | plugged into either or. But I reloved that by taking a bad client and
| > | switching hubs with same results. I only have 1 DHCP server on my
| > network.
| > | When I go to the bad clients workstations and do an ipconfig /all
here's
| > is
| > | what is returned.
| > |
| > | I get IP's that are on a 169.254.xx.xx network with a subnet mask of
| > | 255.255.0.0. I cannot do an ipconfig /release and obviously cannot do
a
| > | renew. I've tried restarting the DHCP client service on the
| > workstations.
| > | Does not help. I can input "static" 192.168.16.xx (my internal network
| > IP)
| > | and no problem. However it appears that when I do this those clients
| > cannot
| > | access http://companyweb. Help!!!
| > |
| > |
| > |
| >
|
|
|
.
- References:
- DHCP Issues. Very strange
- From: AllenM
- RE: DHCP Issues. Very strange
- From: "Crina Li"
- Re: DHCP Issues. Very strange
- From: AllenM
- DHCP Issues. Very strange
- Prev by Date: Re: pop3 event error
- Next by Date: RE: OWA conig
- Previous by thread: Re: DHCP Issues. Very strange
- Next by thread: file sync software
- Index(es):
Relevant Pages
|
