netrep
asked on
windows xp pro can not access internet from lan
Hello,
We are running a lan behind a PIX firewall. 10 servers (win2k server), 10 workstations (win 2k).
All systems run inside our domain.
I have tried to connect some new machines (windows XP pro) and after doing so they can see everything behind our firewall but have zero outside access. I am able to ping gateway, internal dns server, etc...
I can not ping or reach external ip's, urls etc.
Any thoughts?
I've been through tcp/ip setup - identical to my w2k machines. IE6 seems to be set correctly. No software based firewalls.
(I was wondering if there was some hidden proxy that I was missing - dont think so).
route print
==========================
Interface List
0x1 ..........................
0x2 ...00 e0 98 74 f9 48 ...... Linksys Etherfast USB 10/100 Ethernet Adapter -
Packet Scheduler Miniport
==========================
==========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.156 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.156 192.168.0.156 20
192.168.0.156 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.0.255 255.255.255.255 192.168.0.156 192.168.0.156 20
224.0.0.0 240.0.0.0 192.168.0.156 192.168.0.156 20
255.255.255.255 255.255.255.255 192.168.0.156 192.168.0.156 1
Default Gateway: 192.168.0.1
==========================
Persistent Routes:
None
We are running a lan behind a PIX firewall. 10 servers (win2k server), 10 workstations (win 2k).
All systems run inside our domain.
I have tried to connect some new machines (windows XP pro) and after doing so they can see everything behind our firewall but have zero outside access. I am able to ping gateway, internal dns server, etc...
I can not ping or reach external ip's, urls etc.
Any thoughts?
I've been through tcp/ip setup - identical to my w2k machines. IE6 seems to be set correctly. No software based firewalls.
(I was wondering if there was some hidden proxy that I was missing - dont think so).
route print
==========================
Interface List
0x1 ..........................
0x2 ...00 e0 98 74 f9 48 ...... Linksys Etherfast USB 10/100 Ethernet Adapter -
Packet Scheduler Miniport
==========================
==========================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.156 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.156 192.168.0.156 20
192.168.0.156 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.0.255 255.255.255.255 192.168.0.156 192.168.0.156 20
224.0.0.0 240.0.0.0 192.168.0.156 192.168.0.156 20
255.255.255.255 255.255.255.255 192.168.0.156 192.168.0.156 1
Default Gateway: 192.168.0.1
==========================
Persistent Routes:
None
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Without wanting to offend in any way, but knowing how frustrating XP can be, have you tried running the new connection wizard? I have had many occasions where XP boxes have refused to talk to the outside world until after I've run the connection wizard and told it to use the LAN to connect.
Open IE
Select Tools
Select Internet Options
Connections Tab
Setup button (top right)
Next
Connect to Internet
Setup...manually
Connect using...always on
Finish
My apologies if you've already tried this.
Open IE
Select Tools
Select Internet Options
Connections Tab
Setup button (top right)
Next
Connect to Internet
Setup...manually
Connect using...always on
Finish
My apologies if you've already tried this.
Have you tried connecting another machine (known to work properly) on the same subnet to see if it can connect to outside IPs? If another machine cannot connect, you'll need to have a look at your firewall rules. Is access perhaps limited by IP address? The local route setup looks fine to me... When you try and ping an outside IP, does it say "Destination net unreachable"? or just no reply? Have you also disabled the XP built-in firewall? It's enabled by default in SP2. Good luck!
-Yohan