Multi-home Exchange server for iSCSI array

DelAir0
DelAir0 used Ask the Experts™
on
Scenario:
We have an Exchange 2003 server running on a Server 2003 Standard 32-Bit which is nearly out of hard drive space.  We bought the Promise 1830i iSCSI Array to create stoage for the DB's. I want to attach the array to a second NIC on the Exchange server.  

Problem:
When I 'enable' the second NIC attached to the iSCSI array, I instantly drop all external connections to the Exchange server, including all of our PDA's using ActiveSync. As soon as I 'disable' the second (or iSCSI) NIC, all connections are instantly restored.  Internal connections still work when I 'enable' the second NIC.  If I log onto the VPN (through ASA5510), I am unable to ping the Exchange server when the second NIC is enabled but am able to ping the Exchange server when the NIC is disabled.  

Resolutions tried thus far:
- The second NIC is on its own subnet, has no default gateway listed, and has had both 127.0.0.1 and 192.168.x.x (our internal DNS server) listed as the DNS server
- The second NIC has 'Client for Microsoft Networks' and 'File and Printer Sharing' unchecked
- The second NIC has 'Register this connection in DNS' unchecked
- The second NIC has 'Disable NetBIOS over TCP/IP' checked
- The primary NIC is at the top of the 'binding' order, the iSCSI NIC is listed second
- Deleted all DNS records of the second NIC (10.0.0.1) on the DNS server (I had brought it online before I had disabled 'register this connection in DNS')
 - Completed most of these steps http://forums.techarena.in/server-networking/839139.htm 

Any ideas would be greatly appreciated as the server has limited space left
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Commented:
could you please enable the second NIC and post results from
c:\route print

Author

Commented:
C:\>route print

IPv4 Route Table
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10004 ...00 03 ff 33 9a 8c ...... Microsoft Virtual Machine Bus Network Adapter
0x60003 ...00 15 5d 0a c5 03 ...... Microsoft Virtual Machine Bus Network Adapter #2
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.10.3    192.168.10.72     10
         10.0.0.0        255.0.0.0         10.0.0.3         10.0.0.3     10
         10.0.0.3  255.255.255.255        127.0.0.1        127.0.0.1     10
   10.255.255.255  255.255.255.255         10.0.0.3         10.0.0.3     10
        127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
     192.168.10.0    255.255.255.0    192.168.10.72    192.168.10.72     10
    192.168.10.72  255.255.255.255        127.0.0.1        127.0.0.1     10
   192.168.10.255  255.255.255.255    192.168.10.72    192.168.10.72     10
        224.0.0.0        240.0.0.0         10.0.0.3         10.0.0.3     10
        224.0.0.0        240.0.0.0    192.168.10.72    192.168.10.72     10
  255.255.255.255  255.255.255.255         10.0.0.3         10.0.0.3      1
  255.255.255.255  255.255.255.255    192.168.10.72    192.168.10.72      1
Default Gateway:      192.168.10.3
===========================================================================
Persistent Routes:
  None

Commented:
Could you also please post
                                                   ipconfig /all

Author

Commented:
C:\>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : delmail
   Primary Dns Suffix  . . . . . . . : delair.local
   Node Type . . . . . . . . . . . . : Unknown
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : delair.local

Ethernet adapter DelMail to LAN:

   Connection-specific DNS Suffix  . : delair.local
   Description . . . . . . . . . . . : Microsoft Virtual Machine Bus Network Adapter
   Physical Address. . . . . . . . . : 00-03-FF-33-9A-8C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IP Address. . . . . . . . . . . . : 192.168.10.72
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.10.3
   DHCP Server . . . . . . . . . . . : 192.168.10.97
   DNS Servers . . . . . . . . . . . : 192.168.10.97
                                       192.168.10.91
   Lease Obtained. . . . . . . . . . : Saturday, June 26, 2010 7:32:40 PM
   Lease Expires . . . . . . . . . . : Wednesday, July 07, 2010 5:42:40 AM

Ethernet adapter DelMail to iSCSI:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual Machine Bus Network Adapter #2
   Physical Address. . . . . . . . . : 00-15-5D-0A-C5-03
   DHCP Enabled. . . . . . . . . . . : No
   IP Address. . . . . . . . . . . . : 10.0.0.3
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 192.168.10.97
   NetBIOS over Tcpip. . . . . . . . : Disabled

Commented:
When you have second adapter connected, can you ping addresses on both networks from the server?

Also, it appears that you are running in a VM, what are you running? Did you check vm networking config?

Author

Commented:
When the second NIC is enabled, I can ping both 10.0.0.4 (IP of array) and 192.168.10.97 (IP of DNS) from the Exchange server.
The Exchange server is a VM on a Windows 2008 R2 64-bit base.  I originally thought this was the cause, but we actually have 2 file servers (not VM's) connected to a different Promise M200i array and it turns out they have the exact same issue.  No one ever connects to these servers from the an external network therefore we never knew it was an issue.  
In Hyper-V, I have 'Allow management operating system to share this network adapter' unchecked.  The base, which happens to be (although I know it probably shouldn't be) a DC, DHCP, and DNS server.  Whether the VM's (Exchange server) secend NIC is enabled within the VM or not, the host/base appears to work just fine.  

Commented:
Let me just confirm, so Windows works fine, but Exchange does not?
If this is the case, open Exchange System Manager
YOUR COMPANY (EXCHANGE)
Administrative Groups
First Administrative Group
Servers
SERVERNAME
PROTOCOLS
SMTP
and check what adapter the protocol is binding to

Author

Commented:
The SMTP server was bound to (all unassigned).  I set it to 192.168.10.72 (the Exchange Server's IP address).  
The problem may or may not be related to Exchange.  When the Exchange server's iSCSI NIC is 'enabled', OWA works fine, smart phones using Active Sync fail to connect, and the server cannot be pinged via VPN (we have 1 disabled user who connets to Exchange from hope via VPN.  I can log into his pc.  When the NIC is enabled, he can't ping/connect to the the Exchange server, when the NIC is disabled, he can ping/connect just fine via Outlook via VPN).  
On the same note, our 2 file servers cannot be pinged via the VPN and they are multi-homed connected to a different promise array.  For testing purposes, I disabled and detached the Exchange server's iSCSI NIC and attached it to the Windows 2008 host machine.  When I enabled the NIC on the base, life got much worse.  It took down our main DNS server, which is itself.  Point being, multi-homing seems to affect non-VM's, non-Exchange servers, and non-2003 servers.    

Commented:
could you diagram your environment?

Commented:
also, could you post traceroute-s to/from the server
Commented:
Problem solved.  It was a networking 101 issue.  I was using 10.x.x.x /8 for the IP on the second NIC.  My VPN subnet is 10.10.10.x /24.  So traffic coming from the VPN was being routed to the second NIC.  I change the IP on the second NIC to 172.16.x.x /16 and everything works fine with the NIC's, both on the base and the host enabled.  SerhiyKo, thank you for your help!!!!!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial