troubleshooting Question

Multi-Homed Server and Domain Controllers

Avatar of ehfrancisco
ehfrancisco asked on
Microsoft Legacy OSInternet ProtocolsWindows Server 2008CodeTwo
13 Comments1 Solution968 ViewsLast Modified:
Hi All,

I have a Windows 2008 server running our websites that is multi-homed to two private networks. One network is our corporate domain, the other network connects to a router that connects to the internet.

The problem I am having is, periodically the server will lose connectivity to the domain controllers.  When this happens, just as you would expect, logons take a very long time.  I believe I know what the problem is, but I am unsure which settings I should use to correct this.

I believe the problem arises because I have a default gateway specified on both NICs.  

Here is my configuration:


Windows IP Configuration

   Host Name . . . . . . . . . . . . : XXX-WebProd1
   Primary Dns Suffix  . . . . . . . : My.Domain.com
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : My.Domain.com
                                       Domain.com

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller #2
   Physical Address. . . . . . . . . : 00-23-54-0A-AC-5A
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::2c6a:977b:5f0a:d013%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.187.55(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.187.1
   DNS Servers . . . . . . . . . . . : 208.67.222.222
                                       208.67.220.220
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : My.Domain.com
   Description . . . . . . . . . . . : Marvell Yukon 88E8056 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 00-23-54-0A-AC-D2
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f4be:13cd:861f:4835%9(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.xxx.xxx.55(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.xxx.xxx.1
   DNS Servers . . . . . . . . . . . : 192.xxx.xxx.230
                                       192.xxx.xxx.5
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : My.Domain.com
   Description . . . . . . . . . . . : isatap.My.Domain.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{8106EE56-37C4-4A49-9783-5D26667DA7E3}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.187.55%11(Preferred)
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 208.67.222.222
                                       208.67.220.220
   NetBIOS over Tcpip. . . . . . . . : Disabled

In reality, both NICs have access to the internet.  One via the router that it connects directly to the other via the corporate LAN.

My question is, which NIC should I assign the default gateway to?  My guess would be the NIC connected to the LAN, because traffic coming in on the public router should travel out the same way it arrived.  Is that logic correct?

Thanks all
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 13 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 13 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros