The Windows Firewall/ICS service is running on my SBS 2003 R2 Standard server configured as DC, DHCP server, DNS server, Exchange server, file server) with 1 nic. An Actiontec M1000 dsl gateway/router (dhcp disabled) is the default gateway for the server and workstations which are connected via network switches to the M1000. All workstations are configured DHCP.
If I disable the ICS service on my server it effectively breaks my lan. The server cannot be pinged from any workstation and server shares are not available to any workstation. Also, workstations cannot access the internet but the server can.
I understand that this configuration is basically sharing my server's internet connection for my lan and that the ICS service should not be running on SBS 2003. However, I can't figure out how to disable it without breaking my lan and internet access for my workstations.
I have a feeling that I created this problem myself during the initial SBS configuration. At one point my lan stopped working and I may have changed some group policy settings for ICF and the Windows Firewall. I have attached a couple of screen shots of my current ICF settings and denied GPO's hoping that it might provide a clue how I can disable ICS without breaking my lan. I am unsure what settings to change so I can disable ICS without breaking my lan.
Here is the results of an ipconfig/all from one of the workstations:
Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.
C:\Documents and Settings\username>ipconfig/all
Windows IP Configuration
Host Name . . . . . . . . . . . . : computername
Primary Dns Suffix . . . . . . . : domainname.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domainname.local
”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
-Mike Kapnisakis, Warner Bros
With your subscription - you'll gain access to our exclusive IT community of thousands of IT pros. You'll also be able to connect with highly specified Experts to get personalized solutions to your troubleshooting & research questions. It’s like crowd-sourced consulting.
We can't always guarantee that the perfect solution to your specific problem will be waiting for you. If you ask your own question - our Certified Experts will team up with you to help you get the answers you need.
Our certified Experts are CTOs, CISOs, and Technical Architects who answer questions, write articles, and produce videos on Experts Exchange. 99% of them have full time tech jobs - they volunteer their time to help other people in the technology industry learn and succeed.
We can't guarantee quick solutions - Experts Exchange isn't a help desk. We're a community of IT professionals committed to sharing knowledge. Our experts volunteer their time to help other people in the technology industry learn and succeed.