Solved

ISA Server 2004 Route Error 14147

Posted on 2008-06-15
2
1,199 Views
Last Modified: 2013-11-16
Hi Guys.... I just noticed an error on my ISA server that looks like this:

Event Type:      Error
Event Source:      Microsoft Firewall
Event Category:      None
Event ID:      14147
Date:            18/05/2006
Time:            11:03:30 AM
User:            N/A
Computer:      FBRS-ISA
ISA Server detected routes through the network adapter WAN-14.x that do not correlate with the network to which this network adapter belongs. When networks are configured correctly, the IP address ranges included in each array-level network must include all IP addresses that are routable through its network adapters according to their routing tables. Otherwise valid packets may be dropped as spoofed. The following ranges are included in the network's IP address ranges but are not routable through any of the network's adapters: 192.168.30.0-192.168.31.255;


I had a look at my log, and its seems this error has been occuring a fair bit, over all 3 nics (internal, external, DMZ)... Not too sure if I should be worried or not..

The Route table looks like this:

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.14.1     192.168.14.2     20
     58.173.20.14  255.255.255.255     192.168.14.1     192.168.14.2     20
        127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
     192.168.10.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.11.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.12.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.13.0    255.255.255.0     192.168.13.2     192.168.13.2     10
     192.168.13.2  255.255.255.255        127.0.0.1        127.0.0.1     10
     192.168.13.6  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.12  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.15  255.255.255.255        127.0.0.1        127.0.0.1     50
   192.168.13.255  255.255.255.255     192.168.13.2     192.168.13.2     10
     192.168.14.0    255.255.255.0     192.168.14.2     192.168.14.2     20
     192.168.14.2  255.255.255.255        127.0.0.1        127.0.0.1     20
   192.168.14.255  255.255.255.255     192.168.14.2     192.168.14.2     20
     192.168.50.0    255.255.255.0     192.168.50.8     192.168.50.8     10
     192.168.50.8  255.255.255.255        127.0.0.1        127.0.0.1     10
   192.168.50.255  255.255.255.255     192.168.50.8     192.168.50.8     10
     195.78.19.66  255.255.255.255     192.168.14.1     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.13.2     192.168.13.2     10
        224.0.0.0        240.0.0.0     192.168.14.2     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.50.8     192.168.50.8     10
  255.255.255.255  255.255.255.255     192.168.13.2     192.168.13.2      1
  255.255.255.255  255.255.255.255     192.168.14.2     192.168.14.2      1
  255.255.255.255  255.255.255.255     192.168.50.8     192.168.50.8      1
Default Gateway:      192.168.14.1
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
     192.168.11.0    255.255.255.0     192.168.13.1       1
     192.168.12.0    255.255.255.0     192.168.13.1       1
     192.168.10.0    255.255.255.0     192.168.13.1       1


And I didnt set this up originally, so I dont really have that much knowledge on how it all fits together....

I do know that
192.168.10.x-192.168.13.x is internal
192.168.50.x is DMZ
192.168.14.x is External

Is anyone able to shed some light on it?

Much appreciated...
Dekkar

0
Comment
Question by:dekkar
2 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 500 total points
ID: 21790891
0
 
LVL 11

Author Closing Comment

by:dekkar
ID: 31467468
Thanks for the links... should help me sort it out.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Assymetric routing asa 4 44
Sonic Firewall re-routing 443 wrong server IP 10 120
How do I whitelist domains in Office 365 Exchange Admin Center? 3 310
Hardening ScreenOS 8 118
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question