Solved

Virtual Server 2005 R2 and ISA 2006 TCP Connectivity Issues

Posted on 2006-11-16
5
264 Views
Last Modified: 2013-11-15
Hi All,

I am currently having a problem where I am using an ISA server as the default gateway for a Windows 2003 Server running SP1. This server is running in a virtual machine in Virtual Server 2005 R2. This server is able to establish TCP connections to anything without any problems. However, nothing can establish connections to it. What seems to happen is this server will respond to the incoming connection but the ISA server will drop the response with the error: FWX_E_TCP_NOT_SYN_PACKET_DROPPED. Does anyone have a solution for getting around this problem? I think it is an issue with Virtual Server since I cannot get physical Windows 2003 servers with the ISA server as their default gateway to duplicate this behaviour.

Thank you for your help in advance.
0
Comment
Question by:sandvine
  • 2
5 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17963288
this suggests that the IP address being used on the VS is not listed in the internal address table on ISA. In the ISA gui, select monitoring - logging - click on start query. try to connect now from the box, what do you see in the log? The error is saying the ISA is seeing traffic come from an address that it thinks is external to the internal LAN. Because there is not a traffic-flow set, there is no three-way handshake to start the conversation ie it is not SYN trafic and this will be handled by the stateful packet inspection (SPI) functions e.g. it will be dropped.

open the configuration - networks - double-click internal. open the addresses tab, has ISA got the internal IP address of the VS server included?
0
 

Author Comment

by:sandvine
ID: 18097732
Thank you for the response. I found out that the problem was. It was a router on my network sending ICMP redirects which from my research seems to be incompatible with ISA.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 18102893
Interesting as I've not come across such incompatibilities. However, thanks for letting us know.
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 18256690
PAQed with points refunded (500)

Computer101
EE Admin
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A Bare Metal Image backup allows for the restore of an entire system to a similar or dissimilar hardware. They are highly useful for migrations and disaster recovery. Bare Metal Image backups support Full and Incremental backups. Differential backup…
VM backup deduplication is a method of reducing the amount of storage space needed to save VM backups. In most organizations, VMs contain many duplicate copies of data, such as VMs deployed from the same template, VMs with the same OS, or VMs that h…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now