Unknown RAS IP addresses reserved on Windows 2008 server (RAS NOT INSTALLED OR USED !)


Our Windows 2008 server is showing a number of IP addresses reserved in the DHCP scope for RAS connections, they all show the NAME as the FQN of the server. We don't use RAS as our router handles remote VPN traffic and IP allocation.

Can someone shed some light on this as the scope gets full pretty quickly !  I can delete the reservations and they come back shortly after, I'm stumped !
Andrew LeeManaging DirectorAsked:
Who is Participating?
 
losipConnect With a Mentor Commented:
Are you sure that you don't have the Network Policy and Access Services role installed (with the RAS feature enabled)?
0
 
Andrew LeeManaging DirectorAuthor Commented:
Hi,

We've got

AD Domain services
DHCP Server
DNS Server
File Services
Web Server (IIS)
Windows Server Update Services

installed
0
 
losipCommented:
And RRAS is not installed on any other server which could be getting addresses from that one?  Although, I would expect the Name to be the FQDN of the RAS server, not the DHCP server.  Another possibility: could the router be erroneously getting its IP addresses from the DHCP server (by broadcast) instead of from its own pool?
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
Andrew LeeManaging DirectorAuthor Commented:
Hi,

Its a draytek 2820n router, the remote pptp is set to assign 10.100.0.223 upwards, DHCP scope on server is : 10.100.0.31 - 200, subnet 255.255.255.0

No other server on the network, this box is a Windows 2008 server with Exchange 2007 installed, 64bit

Intrestngly the IP's are now showing in DHCP anymore, I have had some strange goings on with wireless modules and some devices picking up DHCP in the production enviroment,

I suggest leaving this for a day and I'll monitor see if the RAS entries pop back up,
0
 
losipCommented:
Any device on the 10.100.0.0/24 subnet will broadcast out when it wants an IP address. As you've described the network, either the Draytek or the Windows server may reply to such a Discover packet and offer an address out of their allocated range.  

I'm not sure whether this scenario is valid with the Draytek but, if a device calling in on the VPN wants an address, it may be that it can get it either from the router itself or from the server following a broadcast from the VPN termination onto the 10.100.0.0 subnet.  Therefore, either DHCP server may issue leases.
0
 
Andrew LeeManaging DirectorAuthor Commented:
Hi,

No DHCP on the draytek its turned off, the VPN isnt assigning addresses to general network traffic from my knowledge of the draytek, its assigned on a per tunnel / connection basis
0
 
losipCommented:
Yes, I appreciate that devices on the LAN will ONLY get addresses from the server but I was referring to VPN clients's addresses which SHOULD come from the router.  When they make a connection, is it possible that the Draytek broadcasts on the LAN interface (to itself and any other DHCP server that will listen) so that a connected VPN client may get an address from the server instead of the router?  It''s more a suggestion than a concrete theory due to my lack of knowledge of the internals of the Draytek.
0
 
q2qConnect With a Mentor Commented:
They draytek has few ways of giving ip addresses for those who dial in
1) using its own dhcp (Lan > general settings > on the right hand side)
2) using a range when dhcp is disabled ( VPN  and  remote access > ppp general setup > on the right hand side)

These two options would not get addresses from your servers dhcp pool
3) dhcp relay server option (Lan > general settings > on the right hand side)
this will passthrough to your server, hower in all my experiance I have not seen a draytek pre-allocate addresses.

I would expect your server is doing this becuase the servers "routing and remote access" service is started. and has been configured (admin tools > routing and remote access) to use pptp or dial up connections. If you dont need this disable the windows service  "routing and remote access" and it will be fine.
If this works you can then open the panel (after restarting the service) delete the server from the console.
0
 
Andrew LeeManaging DirectorAuthor Commented:
Hi

option 2 above set for draytek to allocate address

thats the strange thing routing and remote access IS STARTED but I can't be stopped (dependant services), its NOT showing in ROLES or ADMINISTRATIVE TOOLS though, its never something thats been used !
0
 
q2qCommented:
Yes its crazy, its like microsoft want people to use it and just install and set it up for us.
If I were you I would use dhcp relay rather then option 2 as it ensures you dont get clashing addresses. The only downfall is that if your server is off you will need to asign yourself a static address to get it.
0
 
Andrew LeeManaging DirectorAuthor Commented:
Can't set the DHCP relay unless DHCP is enabled on the router which we don't want, had two clashing DHCP servers before, not pretty !

Also can't remove the start address from ppp config draytek complains its invalid having nothing in there

So far no issues today, I've made a couple of other changes not covered in this thread to do with getting certain people to NOT connect certain kit which asks for DHCP, they've been assigning static addresses and so far so good, thanks all for assistance on this though, going to keep question open for a couple of days whilst monitor the situation, if its resolved I'll divy the points up

Cheers
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.