Solved

Virtual Server 2005 R2 and ISA 2006 TCP Connectivity Issues

Posted on 2006-11-16
5
266 Views
Last Modified: 2013-11-15
Hi All,

I am currently having a problem where I am using an ISA server as the default gateway for a Windows 2003 Server running SP1. This server is running in a virtual machine in Virtual Server 2005 R2. This server is able to establish TCP connections to anything without any problems. However, nothing can establish connections to it. What seems to happen is this server will respond to the incoming connection but the ISA server will drop the response with the error: FWX_E_TCP_NOT_SYN_PACKET_DROPPED. Does anyone have a solution for getting around this problem? I think it is an issue with Virtual Server since I cannot get physical Windows 2003 servers with the ISA server as their default gateway to duplicate this behaviour.

Thank you for your help in advance.
0
Comment
Question by:sandvine
  • 2
5 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17963288
this suggests that the IP address being used on the VS is not listed in the internal address table on ISA. In the ISA gui, select monitoring - logging - click on start query. try to connect now from the box, what do you see in the log? The error is saying the ISA is seeing traffic come from an address that it thinks is external to the internal LAN. Because there is not a traffic-flow set, there is no three-way handshake to start the conversation ie it is not SYN trafic and this will be handled by the stateful packet inspection (SPI) functions e.g. it will be dropped.

open the configuration - networks - double-click internal. open the addresses tab, has ISA got the internal IP address of the VS server included?
0
 

Author Comment

by:sandvine
ID: 18097732
Thank you for the response. I found out that the problem was. It was a router on my network sending ICMP redirects which from my research seems to be incompatible with ISA.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 18102893
Interesting as I've not come across such incompatibilities. However, thanks for letting us know.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 18256690
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to fix error ""Failed to validate the vCentre certificate. Either install or verify the certificate by using the vSphere Data Protection Configuration utility" when you are trying to connect to VDP instance from Vcenter.
VM backup deduplication is a method of reducing the amount of storage space needed to save VM backups. In most organizations, VMs contain many duplicate copies of data, such as VMs deployed from the same template, VMs with the same OS, or VMs that h…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now