Solved

windows 2008 VM server can't be pinged internally, but can ping gateway and get on the web

Posted on 2010-08-20
30
1,944 Views
Last Modified: 2013-11-06
Hi, I have a 2008 hyperv server.
I installed a 2008 VM server on top of it a few weeks ago, ran windows updates etc.
Just put a database on it. And discovered the local pc's cannot ping it or see it.
Yet i can get on the web. All gateway and DNs settings are correct.
Any idea's
0
Comment
Question by:total123
  • 15
  • 13
  • +1
30 Comments
 
LVL 6

Expert Comment

by:fluk3d
ID: 33483736
Have you tried disabling the windows firewall? Any software firewalls running on that VM? is the subnet mask correct?
0
 

Author Comment

by:total123
ID: 33483760
here's the net diag
net.txt
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33483811
OK - netdiag isn't fully supported on a windows 2008 platform. Let's see.. your tcp settings look good, you've made sure there is no software eventing the connection INBOUND to the machine off the LAN.

Is there anything showing up in the event viewer network related?

The machines that you are pinging "sqlserver" with what is they're default gateway set to? hardware firewall? layer3 switch?

Are you able to check the log files of the gateway device, to ensure that unit is not preventing communication to your VM?

Does this problem happen on all VM's, or are you just running this one VM in your environment?
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33483827
Also - can the host ping your guest?
0
 

Author Comment

by:total123
ID: 33483881
Hi guys

right, the firewall was disabled straight away. so not that.
We have a simple setup. My gateway is a watchguard soho6
I only have one other VM server, which is an exchange server, which has been running fine for 9 months. I can ping it.

event veiwer :-

event id 1129 - the process of group policy failed - today at 11.45
The system failed to register host (A or AAAA) resource records for  network adapter
with settings:

   Adapter Name : {CAAF0763-7B2C-44C7-A2A8-46E84C330B90}
   Host Name : sqlserver
   Primary Domain Suffix : nwt.com
   DNS server list :
           192.168.1.105
   Sent update to server : <?>
   IP Address(es) :
     192.168.1.104

 Either the DNS server does not support the DNS dynamic update protocol  or the authoritative zone for the specified DNS domain name does not  accept dynamic updates.

 To register the DNS host (A or AAAA) resource records using the specific DNS domain name and IP addresses for this adapter, contact your DNS  server or network systems administrator.

event id 5719
This computer was not able to set up a secure session with a domain controller in domain NWT due to the following:
There are currently no logon servers available to service the logon request.
This may lead to authentication problems. Make sure that this computer is connected to the network. If the problem persists, please contact your domain administrator.  

ADDITIONAL INFO
If this computer is a domain controller for the specified domain, it sets up the secure session to the primary domain controller emulator in the specified domain. Otherwise, this computer sets up the secure session to any domain controller in the specified domain.

event id 129
NtpClient was unable to set a domain peer to use as a time source because of discovery error. NtpClient will try again in 15 minutes and double the reattempt interval thereafter. The error was: The entry is not found. (0x800706E1)

event id 1129
The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

this all happened on a reboot
0
 

Author Comment

by:total123
ID: 33483892
i can ping the DC called swindon - 192.168.1.105
and access \\swindon
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33483936
Thanks for the info. What type of NIC are you running on your guest VM, if you are not running the legacy NIC please try using that.


- Open the Hyper-V management console, turn off the Virtual Machine. Right Click and Choose Settings
- Locate the Network Adapter and Remove the current attached NIC.
- Click Add Hardware>Add a legacy Network Adapter. Then configure the legacy Network Adapter bind to the Physical NIC.
- Turn on the Virtual Machine and see if the issue still exists.
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33483956
Is this a HP server by any chance?
0
 

Author Comment

by:total123
ID: 33483962
its a dell t710
0
 

Author Comment

by:total123
ID: 33484011
i removed the nic, add legacy nic. setup the IP on the new nic on the VM.
I've even changed the main IP address.
Still can't ping the server
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33484049
OK - is the MAC address of the host & guest unique? ipconfig /all does anything show in your watchguard device?

Are you running DHCP on your network? If so please change to DHCP on the server, and see if the machine grabs an IP from your DHCP server. If that fails can you please try grabbing a packet capture and posting it back

Try running a packet capture from your watchguard device, and also locally from another machine on the LAN and your server.

Not sure if your firewall has that function I'm sure it does however you can use WireShark or Network Monitor on your server to record the capture.
0
 

Author Comment

by:total123
ID: 33484127
that maybe where i'm going wrong, i have 2 devices running off of one card and haven't given them separate mac address's. I'll try that first
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33484138
Your firewall may see that as a IPS/IDS attack
0
 

Author Comment

by:total123
ID: 33484199
that didn't work, i'll try the rest
0
 

Author Comment

by:total123
ID: 33484258
i have 4 nic's in the dell, so decided to plug nic 3 in and give it to the VM, still didn't work.
I've given it a mac address, that doesn;t work, deleted the virtual network card again and gave it the normal network adapter.

set it to dhcp and 192.168.1.104, both cannot be pinged, it does get a dhcp address

can you recommend a capture program
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 6

Expert Comment

by:fluk3d
ID: 33484330
Wireshark is a very good capture program, however if you want you can also try Network Monitor made by microsoft.

http://www.wireshark.org/
http://www.microsoft.com/downloads/details.aspx?FamilyID=983b941d-06cb-4658-b7f6-3088333d062f&displaylang=en
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33484356
You can also try booting off a live CD (WinPE) within your VM and see if you are able to communicate to the LAN this should also isolate the problem if it's software related, or hardware related but, getting a packet capture would be ideal to determine if there are errors on the packets, or if the packet is or isn't leaving the machine.
0
 
LVL 13

Expert Comment

by:cshepfam
ID: 33484525
On your Primary DNS Server, check the entries to make sure the A (host) record for the new VM was created including a PTR record as well.

If no entry is in there, then manually create it.

Afterwards, do an ipconfig /flushdns and a ipconfig /registerdns on the DNS server.

Then see if the local pcs can ping it.  
0
 

Author Comment

by:total123
ID: 33484622
wireshark capture from vm server - sqlserver

remote will follow


srv
0
 

Author Comment

by:total123
ID: 33484634
i've tried the dns approach. this has made no difference
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33484678
Just heading to a clients site will look at the capture when I get back
0
 

Author Comment

by:total123
ID: 33484724
no problem, i can't get the remote capture to work. i put in the ip address and it doesn't like it, also tried the MS username and password for our admin account. is there a set port number i should be using ?
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33484804
Use the full context domain\user or install it locally
0
 

Author Comment

by:total123
ID: 33485336
wireshark is installed on the server and pc locally, the domain\user approach doesn't work
0
 
LVL 15

Expert Comment

by:msmamji
ID: 33485559
Have you made sure the your firewall is off for all profiles?
Control Panel -> Administrative tools -> Windows Firewall with Advance Security
0
 

Author Comment

by:total123
ID: 33485643
i turned the firewall off as a service, shouldn't this do the job
0
 
LVL 6

Expert Comment

by:fluk3d
ID: 33485880
Ok run a ping to the server from the workstation and upload the capture
0
 

Author Comment

by:total123
ID: 33485972
problem solved, the network descovery was never enabled under network and sharing.
can't believe that was so stupid,
many thanks for yuor help guys
0
 
LVL 6

Accepted Solution

by:
fluk3d earned 500 total points
ID: 33486128
I'm glad you solved the problem
0
 

Author Closing Comment

by:total123
ID: 33496533
i ended up solving it by enabling the file sharing on the server
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction Many people don't know about it - and it's almost like a huge secret, but Hyper-V is one of the most cost-effective Virtual solutions out there, and I'll tell you why. In a single word - Licensing. The Breakdown Microsoft gi…
Introduction Windows 2012 is here - it is upon us, and I hope that like me, you will upgrade your Hyper-V to the new version which has been promised to be a lot more stable, flexible and powerful than its predecessor in Windows 2008 R2.  Setting up…
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

943 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now