XP ICS client can't access 302 redirect http

Hello. Weird one, at least for me--networking yields headache!

Home office ICS network on two XP pro machines. Everything appears to be fine and stable for regular file sharing, remote access, email, and most web browsing. This is through a dialup at the moment.

No problems on the host side at all.

But then I noticed that we could not bring up certain pages on the client. For example, if you go to http://www.monster.com/ on the client, and click on search jobs, it will attempt to pull up http://jobsearch.monster.com/--well it times out.

I can ping that fine from the client.

It's not a firewall issue. I have ICF off on both, and have tried this with ZA Pro shut down, both sides (and ZA Pro is properly configured for ICS the rest of the time through "firewall>advanced"). It's not, to my knowledge, a browser issue. Tried most settings in IE, and downloaded and tried the light Mozilla, same problem.

ICS is using DCHP at the moment--basically the auto configuration. But I have tried a great many DNS, netbios, gateway, and other various settings in TCP/IP. No joy. I have tried adding my ISP DNS servers to the client too.

Then I noticed, by using a raw browser (Sam Spade) on the host, that the monster page is actually a 302 redirect. Some Google suggests other savvy people (with their own headaches) have noticed this with ICS, but can't seem to find a solution.

I was hoping to not add any more overhead to the host, which I use for heavy duty graphics--don't want to have it turn into a server.

The question(s): I suppose I should look into a lightweight proxy? (Suggestions welcome for that). Or am I missing some obscure DNS or port setting which would send the 302 stuff to client, not to a bottle-neck at the host (which is what I think is happening)? Or is there something I can add (snap in) to XP as an ICS replacement, like 2000 had?

Some system details:
XP Pro SP1 and fully patched on both. All drivers and bios on both are current.
Host: 2.4 865PE 800 on MSI Neo2-ls, gig of ram, WD Sata--i.e. solid, recent system. Best Data external v92 modem.
Integrated Intel 10/100, ip set through auto settings in ICS. This is a wired network, machine to machine, no router.

Client p3 733 w/Microsoft PCI 10/100. 512MB. Etc. (It's not the hardware!) IP auto-assigns to

Besides the HTTP 302 problems, I see some ads (3rd party site) sometimes do not resolve on the client.

Thanks for suggestions!

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

These might help... but it appears that you are using dialup?

Microsoft ICS and MTU:

Snazzy_GraphicsAuthor Commented:
Yep, dialup at the moment. Just PPP. I don't think the MTU settings are the thing either, because most web pages pull up just fine, no drop-outs. Only some sites are a problem--I guess it has something to do with sites using ICMP.
Yeah, dial-up connection defaults to MTU of 576, so that is traditionally not a problem.
Unfortunately, many ISPs are blocking ICMP because of the last round of worms and viruses that are plagueing the 'net, without understanding the ramifications of doing so...
My own ISP has blocked icmp. Now I can't do traceroutes or ping. My network troubleshooting from home is now severly limited. I've complained to the ISP, but the technician's response was that "they've even blocked icmp for us, too". Now how in the heck are the technicians supposed to troubleshoot their own network?
Typical knee-jerk reactions ....
SolarWinds® Network Configuration Manager (NCM)

SolarWinds® Network Configuration Manager brings structure and peace of mind to configuration management. Bulk config deployment, automatic backups, change detection, vulnerability assessments, and config change templates reduce the time needed for repetitive tasks.

Snazzy_GraphicsAuthor Commented:
Hmmm... You've got something there. I can no longer do a windows based ping or traceroute--from the host.

Ping works fine at the command prompt. (Wonder why?)

ISP must have changed something recently.

ICMP redirect works fine on the host (in IE), but not the client local machine. There must be something that passes that along?
Just as a quick fix, www.multiproxy.org, it was designed to be used as an anonymous browsing tool but works well as a normal proxy, just pop in the proxy of your ISP in the right box and away you go!
You might want to try resetting your TCP/IP stack on the XP box:

Hidden in Windows XP's System Information utility is a very good tool for getting a lot more information about what's going on. Go to Start | All Programs | Accessories | System Tools | System Information. Then choose Net Diagnostics from the Tools menu. The program will ping your DNS servers, gateways, SMTP and POP3 mail servers, and proxies; test your modem and network adapters; and supply very detailed reports about your settings, as well as which tests passed and which failed.

Reset TCP/IP in XP:

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Snazzy_GraphicsAuthor Commented:
adam--Ha. I visited there last night. Ended up using http://www.guardster.com/ Of course, something is obviously fundementally screwy when Microsoft's home networking settings require me to surf like I'm in China or behind a corp porn filter. Thanks for the link!

lrmoore--I have someone on the client machine at the moment, so I will have to wait before any serious messing around. I hadn't tried netsh, so I'm hopeful. Will report back when I do. I would like to make sure there isn't a XP way of fixing this, but it appears to be my ISP protecting me from the blaster worm, like you said.

Meantime, I downloaded a proxy from this guy: http://www.analogx.com/contents/download/network/proxy.htm

Works fine. Overhead is about 5MB, which I can live with. Tempting to remove the ICS setup entirely then, which would be a glorified front end to the dialer--probably lots more overhead on that.
Glad you got it semi-sorted!

ICS is probably the single most buggy thing that m$ have ever released, excluding Windows itself of course!!!!

Have you thought about maybe using a hardware solution, routers aren't _that_ expensive anymore.  Unless you've got a spare machine somewhere, doesn't need to be very fast, you could run Freesco (http://www.freesco.org/), you should find that it does all that ICS does and more...with the added benefit of maybe working :)

Snazzy_GraphicsAuthor Commented:
For 100% certain, if I add anything else to this net, a router will be part of the package. M$ always seems to find a new way to create some sort of headache--maybe some linux and a router is the final solution.

Thanks very much for the various good suggestions Adam.

However, eureka! That netsh ip reset foo.txt command did it somehow. Ran it on both machines. It claimed (via foo) that it did something. Ended up with a weird IP on the client for a moment (164.XXX I think). Reran the network setup, both machines, reboot, and it works. (Back to a more normal IP now too).

So keep that handy in the bag of tricks, lrmoore! Thanks to you.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.