[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

ICMP Destination Unreachable, Code:3 SBS 2008

Posted on 2011-10-28
4
Medium Priority
?
1,591 Views
Last Modified: 2012-05-12
I have a SBS2008 Server (DC), and a Standard Windows Server 2008 (BDC) on my network with a SonicWall TZ210 acting as the gateway to the outside internet.  Both DC's are on the same subnet.

I am having problems getting my SBS2008 (Dell PowerEdge T610) to answer DNS requests OUTSIDE our network.  The server cannot access anything on the internet UNLESS I put my Backup DC in the NIC's alternate DNS field for the server.  If I allow my BDC to act as a secondary DNS on my PDC, I can send/receive email, etc and browse the internet on the PDC.  When I remove it, I cannot access the internet on my PDC (SBS).

Interesting note...when I remove the Backup DNS on my PDC, I *can* search google, but when I try to click a search result (a site not in the cache), the connection fails.

On the sonicwall, I went to the log and set my destination IP to the same as my SBS.  From the SBS, I tried to ping google.com.  I get several logs in the Sonicwall - "ICMP Destination Unreachable, Code:3".

Try the same thing on my BDC, it answers fine, don't get any errors logged in the sonicwall.

I have run the Internet Connection Wizard...it's telling me that it can't get outside my router/firewall.  One of the last steps in the wizard is to "test", and it returns that it can't connect to the internet (although I can at that time by going to a web browser).

The ethernet adapter on the Dell SBS is a Broadcom BCM5709C NetXtreme II GigE (NDIS VBD Client).   I can nslookup successfully any computer internally on the same subnet as the SBS, but nothing outside.


It appears that this is a problem on my BDC, but I can't figure out how to fix it.

0
Comment
Question by:chrisrbloom
  • 3
4 Comments
 
LVL 11

Expert Comment

by:BillBondo
ID: 37045870
Sounds like dns is not correct on the sbs or is not installed
0
 
LVL 3

Author Comment

by:chrisrbloom
ID: 37045917
DNS is definitely installed on the SBS...however when I do a recursive query it fails.  A simple query passes.  This SBS has been in service for about 8 months without many problems...this just started this week.
0
 
LVL 3

Accepted Solution

by:
chrisrbloom earned 0 total points
ID: 37540584
The problem ended up being a NAT rule on the firewall.  

I have a Sonicwall TZ210 and I needed to add the DNS service to a NAT rule.
0
 
LVL 3

Author Closing Comment

by:chrisrbloom
ID: 37588802
The solution was in an entirely different area than I was looking.  It had nothing to do with SBS, rather the firewall was the block.  It was NOT a problem with my DNS.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

One of the most often confused topics in the area DNS is the idea of GLUE records. Specifically, what they are, when they are needed, when they are provided, and how they are created. First, WHAT IS GLUE? To understand GLUE, you must first under…
I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month20 days, 8 hours left to enroll

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question