Solved

ISA Server 2004 Route Error 14147

Posted on 2008-06-15
2
1,201 Views
Last Modified: 2013-11-16
Hi Guys.... I just noticed an error on my ISA server that looks like this:

Event Type:      Error
Event Source:      Microsoft Firewall
Event Category:      None
Event ID:      14147
Date:            18/05/2006
Time:            11:03:30 AM
User:            N/A
Computer:      FBRS-ISA
ISA Server detected routes through the network adapter WAN-14.x that do not correlate with the network to which this network adapter belongs. When networks are configured correctly, the IP address ranges included in each array-level network must include all IP addresses that are routable through its network adapters according to their routing tables. Otherwise valid packets may be dropped as spoofed. The following ranges are included in the network's IP address ranges but are not routable through any of the network's adapters: 192.168.30.0-192.168.31.255;


I had a look at my log, and its seems this error has been occuring a fair bit, over all 3 nics (internal, external, DMZ)... Not too sure if I should be worried or not..

The Route table looks like this:

Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.14.1     192.168.14.2     20
     58.173.20.14  255.255.255.255     192.168.14.1     192.168.14.2     20
        127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
     192.168.10.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.11.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.12.0    255.255.255.0     192.168.13.1     192.168.13.2      1
     192.168.13.0    255.255.255.0     192.168.13.2     192.168.13.2     10
     192.168.13.2  255.255.255.255        127.0.0.1        127.0.0.1     10
     192.168.13.6  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.12  255.255.255.255    192.168.13.15    192.168.13.15      1
    192.168.13.15  255.255.255.255        127.0.0.1        127.0.0.1     50
   192.168.13.255  255.255.255.255     192.168.13.2     192.168.13.2     10
     192.168.14.0    255.255.255.0     192.168.14.2     192.168.14.2     20
     192.168.14.2  255.255.255.255        127.0.0.1        127.0.0.1     20
   192.168.14.255  255.255.255.255     192.168.14.2     192.168.14.2     20
     192.168.50.0    255.255.255.0     192.168.50.8     192.168.50.8     10
     192.168.50.8  255.255.255.255        127.0.0.1        127.0.0.1     10
   192.168.50.255  255.255.255.255     192.168.50.8     192.168.50.8     10
     195.78.19.66  255.255.255.255     192.168.14.1     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.13.2     192.168.13.2     10
        224.0.0.0        240.0.0.0     192.168.14.2     192.168.14.2     20
        224.0.0.0        240.0.0.0     192.168.50.8     192.168.50.8     10
  255.255.255.255  255.255.255.255     192.168.13.2     192.168.13.2      1
  255.255.255.255  255.255.255.255     192.168.14.2     192.168.14.2      1
  255.255.255.255  255.255.255.255     192.168.50.8     192.168.50.8      1
Default Gateway:      192.168.14.1
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
     192.168.11.0    255.255.255.0     192.168.13.1       1
     192.168.12.0    255.255.255.0     192.168.13.1       1
     192.168.10.0    255.255.255.0     192.168.13.1       1


And I didnt set this up originally, so I dont really have that much knowledge on how it all fits together....

I do know that
192.168.10.x-192.168.13.x is internal
192.168.50.x is DMZ
192.168.14.x is External

Is anyone able to shed some light on it?

Much appreciated...
Dekkar

0
Comment
Question by:dekkar
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 500 total points
ID: 21790891
0
 
LVL 11

Author Closing Comment

by:dekkar
ID: 31467468
Thanks for the links... should help me sort it out.
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
Forefront Threat Management Gateway 2010 or FTMG comes with some very neat troubleshooting tools built-in when trying to identify what is actually happening behind the scenes within the product when traffic is passing through its interfaces. To the …
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question