?
Solved

ISA Server 2004 Route Error 14147

Posted on 2008-06-15
2
Medium Priority
?
1,202 Views
Last Modified: 2013-11-16
Hi Guys.... I just noticed an error on my ISA server that looks like this:

Event Type:      Error
Event Source:      Microsoft Firewall
Event Category:      None
Event ID:      14147
Date:            18/05/2006
Time:            11:03:30 AM
User:            N/A
Computer:      FBRS-ISA
ISA Server detected routes through the network adapter WAN-14.x that do not correlate with the network to which this network adapter belongs. When networks are configured correctly, the IP address ranges included in each array-level network must include all IP addresses that are routable through its network adapters according to their routing tables. Otherwise valid packets may be dropped as spoofed. The following ranges are included in the network's IP address ranges but are not routable through any of the network's adapters: 192.168.30.0-192.168.31.255;


I had a look at my log, and its seems this error has been occuring a fair bit, over all 3 nics (internal, external, DMZ)... Not too sure if I should be worried or not..

The Route table looks like this:

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.14.1     192.168.14.2     20
     58.173.20.14  255.255.255.255     192.168.14.1     192.168.14.2     20
        127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
     192.168.10.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.11.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.12.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.13.0    255.255.255.0     192.168.13.2     192.168.13.2     10
     192.168.13.2  255.255.255.255        127.0.0.1        127.0.0.1     10
     192.168.13.6  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.12  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.15  255.255.255.255        127.0.0.1        127.0.0.1     50
   192.168.13.255  255.255.255.255     192.168.13.2     192.168.13.2     10
     192.168.14.0    255.255.255.0     192.168.14.2     192.168.14.2     20
     192.168.14.2  255.255.255.255        127.0.0.1        127.0.0.1     20
   192.168.14.255  255.255.255.255     192.168.14.2     192.168.14.2     20
     192.168.50.0    255.255.255.0     192.168.50.8     192.168.50.8     10
     192.168.50.8  255.255.255.255        127.0.0.1        127.0.0.1     10
   192.168.50.255  255.255.255.255     192.168.50.8     192.168.50.8     10
     195.78.19.66  255.255.255.255     192.168.14.1     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.13.2     192.168.13.2     10
        224.0.0.0        240.0.0.0     192.168.14.2     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.50.8     192.168.50.8     10
  255.255.255.255  255.255.255.255     192.168.13.2     192.168.13.2      1
  255.255.255.255  255.255.255.255     192.168.14.2     192.168.14.2      1
  255.255.255.255  255.255.255.255     192.168.50.8     192.168.50.8      1
Default Gateway:      192.168.14.1
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
     192.168.11.0    255.255.255.0     192.168.13.1       1
     192.168.12.0    255.255.255.0     192.168.13.1       1
     192.168.10.0    255.255.255.0     192.168.13.1       1


And I didnt set this up originally, so I dont really have that much knowledge on how it all fits together....

I do know that
192.168.10.x-192.168.13.x is internal
192.168.50.x is DMZ
192.168.14.x is External

Is anyone able to shed some light on it?

Much appreciated...
Dekkar

0
Comment
Question by:dekkar
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 1500 total points
ID: 21790891
0
 
LVL 11

Author Closing Comment

by:dekkar
ID: 31467468
Thanks for the links... should help me sort it out.
0

Featured Post

WatchGuard's M Series Appliances - Miecom Approved

WatchGuard's newest M series appliances were put to the test by Miercom.  We had great results and outperformed all of our competitors in both stateless and stateful traffic throghput scenarios! Ready to see how your UTM appliance stacked up? Download the Miercom Report!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
Suggested Courses
Course of the Month13 days, 12 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question