Unable to run windows firewall on server 2003

Posted on 2012-08-13
Last Modified: 2012-12-23
When trying to access the firewall in windows server 2003 i receive the following message "Windows Firewall cannot run becuase another prgram or service is running that might use the network address translation component (Ipnat.sys)

We have the following server roles installed and running:

File server
Printe server
Remote Access/VPN server
Domain Controller
DNS server
DHCP Server

Any ideas on what would be causing the firewall properties not to open and will it be running?
Question by:jonathanemerson
    LVL 1

    Accepted Solution

    Hi There,

    Unfortunately the Windows Firewall and RRAS (Routing and remote access Service) Cannot coexist. If you want the windows firewall service you will need to remove the RRAS role.

    Alternatively you can configure restricted access to your server by configuring an IPsec policy for any networks you want to deny accessing your server.

    Just out of interest, are you actually using RRAS for VPN termination?

    Kind Regards,

    LVL 1

    Expert Comment


    Did this answer your question?

    Author Comment

    Yes we are using RRAS for VPN.

    Do you have any information or articles you know of regarding making sure RRAS is secure if windows firewall is disabled that would be usefull?


    LVL 1

    Expert Comment

    I take it you do not have a perimeter firewall?

    How are you performing the NAT to your RRAS server? I assume that you are using private addressing on the server?

    Author Comment

    We have a cisco router which acts as the perimeter firewall which performs the NAT to the RRAS server.

    Featured Post

    What Should I Do With This Threat Intelligence?

    Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

    Join & Write a Comment

    I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
    Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
    This video discusses moving either the default database or any database to a new volume.
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now