userlinux
asked on
Unable to use NAT on 2000 server HELPPPPPPPPPPPP
Win 2000 server running DHCP, DNS and NAT, Tried all combinations unable to get internet on clients. I do have dhcp at clients. Using 192.168.0.1 series.
Do not know what else to do.
Do not know what else to do.
ASKER
Two nics, one internal one outside, DHCP running, DNS running and Routing remote acces-NAT all on one win 2000 server.
Clients are recieving DHCP address from 2000, but no internet, Firewall is Black ICE which I do have acess to all internal addresses 192.168.0.1 thru 192.168.0.254 even tried disabling.
I had internet last night for a while now this morning can't get IP. I tried using DHCP in NAT-no luck that is why I configured 2000 DHCP.
Clients are recieving DHCP address from 2000, but no internet, Firewall is Black ICE which I do have acess to all internal addresses 192.168.0.1 thru 192.168.0.254 even tried disabling.
I had internet last night for a while now this morning can't get IP. I tried using DHCP in NAT-no luck that is why I configured 2000 DHCP.
ASKER
Two nics, one internal one outside, DHCP running, DNS running and Routing remote acces-NAT all on one win 2000 server. running internal nic to Cisco 2924xl to 5 clients.
Clients are recieving DHCP address from 2000, but no internet, Firewall is Black ICE which I do have acess to all internal addresses 192.168.0.1 thru 192.168.0.254 even tried disabling.
I had internet last night for a while now this morning can't get IP. I tried using DHCP in NAT-no luck that is why I configured 2000 DHCP.
Clients are recieving DHCP address from 2000, but no internet, Firewall is Black ICE which I do have acess to all internal addresses 192.168.0.1 thru 192.168.0.254 even tried disabling.
I had internet last night for a while now this morning can't get IP. I tried using DHCP in NAT-no luck that is why I configured 2000 DHCP.
Do you get access if you disable Black ICE?
When you PING a URL at a client, does it resolve to an IP address? Does it fail after resolving the address? (to verify DNS forwarding is working...)
What is the default route/gateway setting on the clients? It should be the private address of the Win2K box.
When you PING a URL at a client, does it resolve to an IP address? Does it fail after resolving the address? (to verify DNS forwarding is working...)
What is the default route/gateway setting on the clients? It should be the private address of the Win2K box.
One thing you could do is pop a dumb hub into the circuit on each side, connect a PC to it, and run a packet analyzer like Ethereal, to see what is going in and out on both ends, so you can pinpoint the point of failure.
ASKER
I can ping client and server. DHCP is working from server. I have also rejoined all clients to the domain.
You say you can ping client and server. How about, for instance, https://www.experts-exchange.com? Does that resolve to the IP address but you don't get a response, or does it not resolve?
Have you tested disabling Black ICE or not? If you did, please say so.
Have you verified that the private IP of the server is your clients' default gateway? Does the server have the ISP's router as its default gateway, with the public interface as the next-hop?
Please try to answer all the questions you get asked, so we know where we're at with troubleshooting this. Thanks.
Have you verified that the private IP of the server is your clients' default gateway? Does the server have the ISP's router as its default gateway, with the public interface as the next-hop?
Please try to answer all the questions you get asked, so we know where we're at with troubleshooting this. Thanks.
ASKER
only can out side at server
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
1. yes
2. yes
3. yes, from ipconfig /all
4. no
5. explain
6. Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.
C:\Documents and Settings\Administrator>rou
==========================
Interface List
0x1 ..........................
0x1000003 ...00 04 76 f8 d0 fb ...... Broadcom NetXtreme Gigabit Ethernet Driv
0x1000004 ...00 c0 9f 1f ff 66 ...... Intel(R) PRO/1000 MT Network Connection
==========================
==========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 65.25.18.1 65.25.19.62 1
65.25.18.0 255.255.254.0 65.25.19.62 65.25.19.62 1
65.25.19.62 255.255.255.255 127.0.0.1 127.0.0.1 1
65.255.255.255 255.255.255.255 65.25.19.62 65.25.19.62 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.101 192.168.0.101 1
192.168.0.101 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.255 255.255.255.255 192.168.0.101 192.168.0.101 1
224.0.0.0 224.0.0.0 65.25.19.62 65.25.19.62 1
224.0.0.0 224.0.0.0 192.168.0.101 192.168.0.101 1
255.255.255.255 255.255.255.255 65.25.19.62 65.25.19.62 1
Default Gateway: 65.25.18.1
==========================
Persistent Routes:
None
C:\Documents and Settings\Administrator>
7. C:\Documents and Settings\Administrator>ipc
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : poweredge
Primary DNS Suffix . . . . . . . : hartman.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hartman.com
neo.rr.com
Ethernet adapter INTEL 1000 HARTMAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connect
ion
Physical Address. . . . . . . . . : 00-C0-9F-1F-FF-66
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.101
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.101
Ethernet adapter BEEP BEEP 3COM 1000:
Connection-specific DNS Suffix . : neo.rr.com
Description . . . . . . . . . . . : 3Com 3C996B Gigabit Server NIC
Physical Address. . . . . . . . . : 00-04-76-F8-D0-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 65.25.19.62
Subnet Mask . . . . . . . . . . . : 255.255.254.0
Default Gateway . . . . . . . . . : 65.25.18.1
DHCP Server . . . . . . . . . . . : 65.24.6.202
DNS Servers . . . . . . . . . . . : 24.164.100.230
24.164.100.234
65.24.0.163
Lease Obtained. . . . . . . . . . : Tuesday, December 02, 2003 9:16:30 A
M
Lease Expires . . . . . . . . . . : Wednesday, December 03, 2003 9:16:30
AM
2. yes
3. yes, from ipconfig /all
4. no
5. explain
6. Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.
C:\Documents and Settings\Administrator>rou
==========================
Interface List
0x1 ..........................
0x1000003 ...00 04 76 f8 d0 fb ...... Broadcom NetXtreme Gigabit Ethernet Driv
0x1000004 ...00 c0 9f 1f ff 66 ...... Intel(R) PRO/1000 MT Network Connection
==========================
==========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 65.25.18.1 65.25.19.62 1
65.25.18.0 255.255.254.0 65.25.19.62 65.25.19.62 1
65.25.19.62 255.255.255.255 127.0.0.1 127.0.0.1 1
65.255.255.255 255.255.255.255 65.25.19.62 65.25.19.62 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.101 192.168.0.101 1
192.168.0.101 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.255 255.255.255.255 192.168.0.101 192.168.0.101 1
224.0.0.0 224.0.0.0 65.25.19.62 65.25.19.62 1
224.0.0.0 224.0.0.0 192.168.0.101 192.168.0.101 1
255.255.255.255 255.255.255.255 65.25.19.62 65.25.19.62 1
Default Gateway: 65.25.18.1
==========================
Persistent Routes:
None
C:\Documents and Settings\Administrator>
7. C:\Documents and Settings\Administrator>ipc
Windows 2000 IP Configuration
Host Name . . . . . . . . . . . . : poweredge
Primary DNS Suffix . . . . . . . : hartman.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hartman.com
neo.rr.com
Ethernet adapter INTEL 1000 HARTMAN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel(R) PRO/1000 MT Network Connect
ion
Physical Address. . . . . . . . . : 00-C0-9F-1F-FF-66
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.101
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 192.168.0.101
Ethernet adapter BEEP BEEP 3COM 1000:
Connection-specific DNS Suffix . : neo.rr.com
Description . . . . . . . . . . . : 3Com 3C996B Gigabit Server NIC
Physical Address. . . . . . . . . : 00-04-76-F8-D0-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 65.25.19.62
Subnet Mask . . . . . . . . . . . : 255.255.254.0
Default Gateway . . . . . . . . . : 65.25.18.1
DHCP Server . . . . . . . . . . . : 65.24.6.202
DNS Servers . . . . . . . . . . . : 24.164.100.230
24.164.100.234
65.24.0.163
Lease Obtained. . . . . . . . . . : Tuesday, December 02, 2003 9:16:30 A
M
Lease Expires . . . . . . . . . . : Wednesday, December 03, 2003 9:16:30
AM
In routing and remote access did u set static route
set static route to 0.0.0.0 0.0.0.0 to your external adpter .
set static route to 0.0.0.0 0.0.0.0 to your external adpter .
ASKER
Please explain,
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
What is your configuration on your Win2K server as regards the use of it as a NAT router? Current software config for performing NAT routing, in addition to a stick-drawing in ASCII characters of how this piece of your network will help a lot in giving you an answer.