ManieyaK_
asked on
Ping in one direction
I've got a server that can ping any machine on the network, but no machine on the network can ping the server. I've verified that the port settings are correct on the switch, I've also verified that no firewall is interfering. I'm not sure what else to try.
Are you pinging the server by hostname or IP address?
I've also verified that no firewall is interfering.Network firewall?
Local firewall?
If server can ping other hosts, but not the other way around there can be just few reasons...
Traffic is blocked on traffic path - firewalls, access-lists.
Server itself is blocking icmp reply - firewall, iptables etc
9 times of 10 windows firewall blocking it..
Can you post the switchport config for the server?
Yep. Just like has been mentioned. Pings are bi-directional. If you can ping in one direction, then you know there's a valid path. If it doesn't work in the other direction, something is blocking that specific traffic. Either a firewall (device or process on one of the two hosts) or an access-list (or other filter blocking either the ICMP request or reply). Period.
Open Windows Firewall with Advanced Security on the server -> Inbound -> enable "File and Printer Sharing (Echo Request - ICMPv4-In)"
ASKER
I've tried pinging both hostname & IP both time out. Windows firewall is the only firewall used & it's state is "Off".
Can you post the switchport config for the server, please?
ASKER
How do I find the switchport config, on the switch?
Yes.
In your post you said:
Can you post what you checked, please?
In your post you said:
I've verified that the port settings are correct on the switch
Can you post what you checked, please?
ASKER
The switch in question is a Cisco SG200-50, with no CLI. I've checked the following settings:
- Port Management
- Port Settings
- VLAN Management
- Interface Settings
- Port to VLAN
- Port VLAN Membership
- Security
- 802.1x Authentication
- Port Authentication
- Port Management
- Port Settings
- VLAN Management
- Interface Settings
- Port to VLAN
- Port VLAN Membership
- Security
- 802.1x Authentication
- Port Authentication
Windows firewall is the only firewall used & it's state is "Off"So Windows Firewall is disabled on the server? Can you turn it on, then turn it off and try it again?
Did you reboot the server?
Can you disable antivirus on the server?
I would also try this. Open Windows Firewall and click Restore Defaults on the left pane. Then open Windows Firewall with Advanced Security on the server -> Inbound -> enable "File and Printer Sharing (Echo Request - ICMPv4-In)"
Not sure if this was mentioned, but is the server and hosts on the same IP network? Or put another way, does traffic between the server and hosts have to go through a layer 3 device (router, multi-layer switch, firewall, etc.)?
ASKER
Nope, traffic doesn't traverse a layer 3 switch.
What I did that cleared up the problem was reset the TCP\IP stack running the below 2 commands & rebooting:
netsh winsock reset
netsh int ip reset
After reboot I can ping in both directions again.
Thanks to all for the comments.
What I did that cleared up the problem was reset the TCP\IP stack running the below 2 commands & rebooting:
netsh winsock reset
netsh int ip reset
After reboot I can ping in both directions again.
Thanks to all for the comments.
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.