OS and Software > No, I Will Not Fix Your #@$!! Computer > Anyone using RRAS on Win 2003 seen this?

Anyone using RRAS on Win 2003 seen this?

Did it previously work and just recently quit or has this never worked?

reply to Napsterbater
Enable the ICMP input filter.

Perhaps this will help:
»support.microsoft.com/kb/258030

reply to Jason24
Just started trying from this new IP, this did work from another IP.

The server pinging has a new IP, the server receiving the pings has not changed.

reply to tekmunki
ICMP is enable, every device I have tried is able to ping this IP except this one, and there are no filters anywhere that I can find.

reply to Napsterbater
Is the new IP on a residential connection? Can the new IP ping other endpoints?

No its in a datacenter, and yes it can ping my home connection that is in the same city on the same BRAS at the ISP, as well as many other endpoints.

Run wireshark on both sides, from that you can at least track down which side is dropping packets.

OK I hate Windows/Computers...... Literally all i did was install Wireshark and I guess when it installed pcap it reinitialized the adapters and magically the damn thing started to respond to pings to that address again.

Thanks for the help guys.

Well never mind, guess it not exactly fixed, it worked for a bit now its back to messing up.

Ran Wireshark, I can see the IMCP echo request from the Outside server, but its coming trough the NAT and being forwarded to a server behind the NAT, which is responding but the response doesn't make it back out of the NAT.

Note the server its getting forwarded to is also pinging the server on the outside.

Now I'm really confused, for some reason this didn't happen before, and you cant even make RRAS forward ICMP if you wanted to but some how its doing it.
--
ASUS M4A79T Deluxe | AMD Phenom II x3 720 BE AM3 w/4 Cores @ 3.41Ghz(OC) | 4Gb DDR3 Memory @ 1600mhz | Sapphire ATI HD4870 1GB 800mhz/1000mhz(OC) | 2x500GB HDD's Raid 0 | Windows 7 Ultimate x64 Build 7600 (RTM) | Windstream DSL 12m (14.9m Sync)/766k

Have you cleared the arp cache and reset iptables in your router? Some more configuration info is needed,

Here's the pathing issue as I understand it:

server1 REQ => internet => router/NAT => rras server2 (CONFIRM ACK REPLY)

rras/server2 ACK => router/NAT => [DROPPED ECHO] => internet => server1 ping

Is there a deny rule in your ACL's blocking that packet from reaching that specific IP of server1- or perhaps you have some 1:1 NAT that may be overlapping the ACK packets.
--
TekMunki

"There are 10 types of people in this world, those who understand binary and those who don't."



www.tekmunki.com

The RRAS server is the NAT server.

What should happen, and somtime does.

Server1 REQ -> Internet -> Server 2 / RRAS / NAT (CONFIRM ACK REPLY)
Server 2 ACK -> Internet -> Server 1

What is happening.

Server1 REQ -> Internet -> Server 2 / RRAS / NAT -> Server3 (CONFIRM ACK REPLY)
Server 3 ACK - > Server 2 NAT (DROPED) X

Note Server 3 is Pinging Server 1 itself from inside the NAT as well, but no problems out of it.

No Filtering, No 1 to 1 NAT.
--
ASUS M4A79T Deluxe | AMD Phenom II x3 720 BE AM3 w/4 Cores @ 3.41Ghz(OC) | 4Gb DDR3 Memory @ 1600mhz | Sapphire ATI HD4870 1GB 800mhz/1000mhz(OC) | 2x500GB HDD's Raid 0 | Windows 7 Ultimate x64 Build 7600 (RTM) | Windstream DSL 12m (14.9m Sync)/766k

This is freaking annoying, Worked for about 1 hr then it stopped again.