Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
I have a server configured for NAT, DNS, and DHCP - internet and internal network was running good. but this days I am not able to see my network computers form the server (domain controller) though i can see them from other client computers. besides this i also can't see the server form the client computers.
the client computers do not have problem joining the DNS.
please, anybody has any idea about this?!
No, there in no firewall in the server. I tried disabling the NIC which connects me to the internet (public NIC) - the client computers list came back. when enabled it again the list has gone. what can be wrong with my NAT (RRAS) configuration?!
0 
I guess, you have to check the entry for the standard gateway.
If thee is more than one standard gateway, you can get in trouble.
For the client computers, you only need the internal (private) IP of the server as standard gateway.
For the public NIC at the server, you normally do not need any standard gateway entry, because the only way out is your ISP.So check standard gateway entries at the clients and the server.
Btw: Have you configured any static routes manually at the server?
Paul
0
the clients have the IP address of the private network card in the server as their default gateway. the private NIC doesn't have the fellowing ipconfig
IP : 172.18.252.7
subnet : 255.255.255.0
no default gatewaythe Public NIC (which is configered by my ISP)
IP : 10.130.31.3
subnet : 255.255.0.0
Default gateway : 10.130.1.1the client computers use the Private NIC as their gateway.
so, what can you see from this, Paul!
0
Ok, let's take a look at the crystal ball :-)
What we can say is, that IP address 10.130.1.1 is the router from your ISP.
And I guess, when you try to do a traceoute to e.g. google.com from the server in a dos box, it should work.
A traceroute to a client pc from the server should also work.
I guess, a traceroute from a client pc to google.com will show at first the ip 172.18.252.7.
And the a lot of * * * right?What a bad thing.
Ok, so we can say, Routing and RAS is our problem, because the tracert from the client gets to the private nic but not to the public nic.
1. The windows firewall must be deactivated when using Routing and RAS (that's quite odd but that's Microsoft)
2. I tried a fresh installation in a vmware environment and got the same problem
3. I opened the Routing and RAS config console and deleted the server which was configured there.
4. then I tried to delete the service Routing and RAS by Add / Remove Functions. And what should I say, it didn't work (the deinstallation)
5. I restartet the server
6. I opened up the config console for Routing and RAS and added the server again
7. all configurations were there as before
8. And what should I say, **** IT WORKS ****Well done Mr. Gates !!!
Try it by yourself, I hope it also will work at your side.
Paul
0
Paul, the RRAS is working perfectly. when tracert to google.com from the the client computers, it goes out using 172.18.252.7 then 10.130.1.1 then to my ISP.
it doesn't have any problem in connecting to the internet.
to make it clear again, my only problem is I can't see the list of my client computers in my entire network (My Network place) - it is empty.
0
Are the computers listed in your DNS Server?
Is dynamic update for the local network activated in DNS, so that Client Computers can register in your DNS?Is the service for the Computerbrowser started at all computers?
0
The computers are listed in the DNS,
The dynamic update is activated,
and the computerbrowser service is activated.I have one more problem with the server.
The server is also configured for DHCP. I gave it a 100 address range. what surprises me is in the address lease there are some computers which I don't know (which are not in my private network), take IPs from the DHCP server.what can be this thing? do you have any idea?
0
1. Are the computers properly added to the Domain?
2. Do you use WINS on that server and are the client computers configures to use WINS?
Unknown Computers in the DHCP list?
Are you using any kind of VPN services to access the server from the internet?
And is there any Acount without a password or with a password that is easy to guess?
0
The computers are properly joined to the domain.
I don't use WINS
I don't use any VPN except the NAT(RRAS) service which I already explained."is there any Account without a password or with a password that is easy to guess?"
I do have some accounts whose username and password is same which is set until the users change the pass upon its expiration (8 days).
0
What I meant was, have you tried to remove a computer from that domain, restart, and then put it into the domain.
In the past, there was problem even putting computers into a domain with exactly this error.
Computers where not shown in the list.
After removing and renewing the membership, it worked.---
If someone can access your server from within the internet, the first thing he tries is to logon with a username and uses the username as password.
So that could be a reason for the computers shown in the DNS, you didn' know.Paul
0
sorry for my late reply ...
I tried removing and joining back a computer to the domain controller, but still there is no computer list in the entire network place of the domain controller.
"If someone can access your server from within the .."
there is also one more problem with the domain controller - it gives a warning message at its login
"a duplicate name exists"
May this all trouble be caused by the DHCP server. May allocating static IP addresses solve this problem?
0
The clients will get the ip addresses, depending oh the MAC address.
So if a client already got an ip address, it is stored in the DHCP client list, including the MAC address of the clients network card.This should avoid duplicated enties.
But I think you're right. You have to check, whether DHCP and DNS services are working correctly.
0
thank you Paul, for all your co-operation!
I'll try reinstalling the DNS and DHCP - if I come up with new results I'll try to post.
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
