RRAS: Problems with NAT

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I’m having trouble with RRAS NAT on a Win2K Server SP4. As far as I can see
I’ve setup everything as it should be, and although computers on the NAT NIC
side can ping (DNS resolution successful) hosts on the internet, browsing and
other applications do not work.

Server details:
Win2K Server SP4, running DNS, DHCP, RRAS. Connection to the internet
through an ADSL modem.

IP details listed below:
83.***.***.*** local public (static) IP address on ISP link
194.***.***.*** server public IP address on ISP link
192.168.0.1 server’s local IP address on private network, the NAT side
192.168.0.5 local remote access address the server assigns itself (I’m not
sure why though, as I haven’t enabled RRAS as a remote access server).

I’ve used this setup on another server Win2k instance in the past and it has
worked fine, same ADSL modem and ISP account.

I’m hoping that I’ve just missed something obvious, but I would appreciate
any help or incites anyone might be able to offer.

Cheers, Andrew.


With the ADSL connection established as a demand dial link ipconfig /all
reads:
C:\>ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : server
Primary DNS Suffix . . . . . . . : ***
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ***

Ethernet adapter Sputnik York LAN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139(A) PCI Fast
Ethernet
Adapter
Physical Address. . . . . . . . . : 00-40-F4-2C-9C-19
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter RAS Server (Dial In) Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.5
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter {AEE80D0A-***}:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 83.***.***.***
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 194.***.***.***
DNS Servers . . . . . . . . . . . : 194.10*.***.***
194.10*.***.***
NetBIOS over Tcpip. . . . . . . . : Disabled




and route print reads:
C:\>route print
==========================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x1000002 ...00 53 *** ...... WAN (PPP/SLIP) Interface
0x1000003 ...00 40 f4 2c 9c 19 ...... NDIS 5.0 driver

0xc000004 ...00 53 *** ...... WAN (PPP/SLIP) Interface
==========================================================
==========================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 194.***.***.*** 83.***.***.***
1
83.***.***.*** 255.255.255.255 127.0.0.1 127.0.0.1 1
83.255.255.255 255.255.255.255 83.***.***.*** 83.***.***.***
1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.1 192.168.0.1 1
192.168.0.1 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.4 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.255 255.255.255.255 192.168.0.1 192.168.0.1 1
194.***.***.*** 255.255.255.255 83.***.***.*** 83.***.***.***
1
224.0.0.0 224.0.0.0 83.***.***.*** 83.***.***.***
1
224.0.0.0 224.0.0.0 192.168.0.1 192.168.0.1 1
255.255.255.255 255.255.255.255 192.168.0.1 192.168.0.1 1
Default Gateway: 194.***.***.***
==========================================================
Persistent Routes:
None
 
Have you enabled port forwarding on the HTTP/HTTPS ports which are needed
for browsing in the NAT configuration? If you are not sure, can you send a
dump of the netsh routing context (netsh routing dump > rodump.txt) so that
we can check if your NAT configuration is right?
 
Janani,

Sorry, maybe I wasn't very clear: computers on the private network cannot
browse out onto the Internet, but they can 'ping' and 'tracert'. I'm not
trying to webhost from the private network out onto the Internet through NAT.
Is this what you meant about opening ports for forwarding?

The routing context dump is below anyway if it helps.

Thanks, Andrew

C:\>netsh
netsh>routing dump
# Routing configuration
pushd routing
reset
popd
# IP configuration
pushd routing ip
reset
set loglevel error
add preferenceforprotocol proto=LOCAL preflevel=1
add preferenceforprotocol proto=STATIC preflevel=3
add preferenceforprotocol proto=NONDOD preflevel=5
add preferenceforprotocol proto=AUTOSTATIC preflevel=7
add preferenceforprotocol proto=NetMgmt preflevel=10
add preferenceforprotocol proto=OSPF preflevel=110
add preferenceforprotocol proto=RIP preflevel=120
add interface name="Loopback" state=enable
set filter name="Loopback" fragcheck=disable
add interface name="Internal" state=enable
set filter name="Internal" fragcheck=disable
add interface name="LAN" state=enable
set filter name="LAN" fragcheck=disable
add interface name="ADSL Link" state=enable
set filter name="ADSL Link" fragcheck=disable
popd
# End of IP configuration



# ----------------------------------
# DHCP Allocator Configuration
# ----------------------------------
pushd routing ip autodhcp
uninstall


popd
# End of DHCP Allocator Configuration



# ----------------------------------
# DNS Proxy configuration
# ----------------------------------
pushd routing ip dnsproxy
uninstall


popd
# End of DNS proxy configuration



# ----------------------------------
# IGMP Configuration
# ----------------------------------
pushd routing ip igmp
uninstall
install
set global loglevel = ERROR


# Igmp configuration for interface "Internal"

delete interface name="Internal"
add interface name="Internal" igmpprototype=IGMPRTRV2 ifenabled=enable
robustvar
=2 startupquerycount=2 startupqueryinterval=31 genqueryinterval=125
genqueryresp
time=10 lastmemquerycount=2 lastmemqueryinterval=1000 accnonrtralertpkts=YES


# Igmp configuration for interface "LAN"

delete interface name="LAN"
add interface name="LAN" igmpprototype=IGMPRTRV2 ifenabled=enable r
obustvar=2 startupquerycount=2 startupqueryinterval=31 genqueryinterval=125
genq
ueryresptime=10 lastmemquerycount=2 lastmemqueryinterval=1000
accnonrtralertpkts
=YES


# Igmp configuration for interface "ADSL Link"

delete interface name="ADSL Link"
add interface name="ADSL Link" igmpprototype=IGMPPROXY ifenabled=enable


popd
# End of IGMP configuration



# ----------------------------------
# NAT configuration
# ----------------------------------
pushd routing ip nat
uninstall
install
set global tcptimeoutmins=1440 udptimeoutmins=1 loglevel=ERROR


#
#NAT Configuration For Interface LAN
#
add interface name="LAN" mode=PRIVATE


#
#NAT Configuration For Interface ADSL Link
#
add interface name="ADSL Link" mode=FULL


popd




# ----------------------------------
# OSPF configuration
# ----------------------------------

pushd routing ip ospf
uninstall

popd
# End of OSPF configuration




# ----------------------------------
# DHCP Relay Agent configuration
# ----------------------------------
pushd routing ip relay
uninstall
install
set global loglevel=ERROR



#
#DHCP Relay Agent configuration for interface "Internal"
#
add interface name="Internal"
set interface name="Internal" relaymode=enable maxhop=4 minsecs=4



popd
# End of DHCP Relay configuration



# ----------------------------------
# RIP configuration
# ----------------------------------
pushd routing ip rip
uninstall


popd
# End of RIP configuration



# ----------------------------------
# Router Discovery Configuration
# ----------------------------------
pushd routing ip routerdiscovery
uninstall
add interface name="Loopback" disc=disable minint=7 maxint=10 life=30 level=0
add interface name="Internal" disc=disable minint=7 maxint=10 life=30 level=0
add interface name="LAN" disc=disable minint=7 maxint=10 life=30 le
vel=0
add interface name="ADSL Link" disc=disable minint=7 maxint=10 life=30 level=0


popd

#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
# #
# BEFORE running this script #
# #
# To restore IPX router configuration, you must first #
# UNINSTALL IPX from the Network connections folder and #
# then REINSTALL it. #
# #
# This deletes the old IPX router configuration #
# and restores the IPX router configuration to its #
# default #
# #
#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#

#----------------------------------------------------------
# IPX configuration
#----------------------------------------------------------

pushd routing ipxThe specified protocol identifier is not known to the router.

#----------------------------------------------------------
# IPX Interface configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Traffic Filter configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Route configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Service configuration
#----------------------------------------------------------

#----------------------------------------------------------
# IPX RIP configuration
#----------------------------------------------------------

pushd routing ipx rip
popd


# End of IPX RIP configuration

#----------------------------------------------------------
# IPX SAP configuration
#----------------------------------------------------------

pushd routing ipx sap
popd


# End of IPX SAP configuration

#----------------------------------------------------------
# IPX NETBIOS configuration
#----------------------------------------------------------

pushd routing ipx netbios
popd


# End of IPX NB configuration


popd

# End of IPX configuration

netsh>


Janani said:
Have you enabled port forwarding on the HTTP/HTTPS ports which are needed
for browsing in the NAT configuration? If you are not sure, can you send a
dump of the netsh routing context (netsh routing dump > rodump.txt) so that
we can check if your NAT configuration is right?

--
Thanks,
Janani [MSFT]
---------------------------------------------------------------------------
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Andrew Ward said:
I'm having trouble with RRAS NAT on a Win2K Server SP4. As far as I can
see
I've setup everything as it should be, and although computers on the NAT
NIC
side can ping (DNS resolution successful) hosts on the internet, browsing
and
other applications do not work.

Server details:
Win2K Server SP4, running DNS, DHCP, RRAS. Connection to the internet
through an ADSL modem.

IP details listed below:
83.***.***.*** local public (static) IP address on ISP link
194.***.***.*** server public IP address on ISP link
192.168.0.1 server's local IP address on private network, the NAT side
192.168.0.5 local remote access address the server assigns itself (I'm not
sure why though, as I haven't enabled RRAS as a remote access server).

I've used this setup on another server Win2k instance in the past and it
has
worked fine, same ADSL modem and ISP account.

I'm hoping that I've just missed something obvious, but I would appreciate
any help or incites anyone might be able to offer.

Cheers, Andrew.


With the ADSL connection established as a demand dial link ipconfig /all
reads:
C:\>ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : server
Primary DNS Suffix . . . . . . . : ***
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ***

Ethernet adapter Sputnik York LAN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139(A) PCI Fast
Ethernet
Adapter
Physical Address. . . . . . . . . : 00-40-F4-2C-9C-19
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter RAS Server (Dial In) Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.5
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter {AEE80D0A-***}:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 83.***.***.***
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 194.***.***.***
DNS Servers . . . . . . . . . . . : 194.10*.***.***
194.10*.***.***
NetBIOS over Tcpip. . . . . . . . : Disabled




and route print reads:
C:\>route print
==========================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x1000002 ...00 53 *** ...... WAN (PPP/SLIP) Interface
0x1000003 ...00 40 f4 2c 9c 19 ...... NDIS 5.0 driver

0xc000004 ...00 53 *** ...... WAN (PPP/SLIP) Interface
==========================================================
==========================================================
Active Routes:
Network Destination Netmask Gateway Interface
Metric
0.0.0.0 0.0.0.0 194.***.***.*** 83.***.***.***
1
83.***.***.*** 255.255.255.255 127.0.0.1 127.0.0.1
1
83.255.255.255 255.255.255.255 83.***.***.*** 83.***.***.***
1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.1 192.168.0.1 1
192.168.0.1 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.4 255.255.255.255 127.0.0.1 127.0.0.1 1
192.168.0.255 255.255.255.255 192.168.0.1 192.168.0.1 1
194.***.***.*** 255.255.255.255 83.***.***.*** 83.***.***.***
1
224.0.0.0 224.0.0.0 83.***.***.*** 83.***.***.***
1
224.0.0.0 224.0.0.0 192.168.0.1 192.168.0.1 1
255.255.255.255 255.255.255.255 192.168.0.1 192.168.0.1 1
Default Gateway: 194.***.***.***
==========================================================
Persistent Routes:
None
Click to expand...
Click to expand...
 
Ok. I was confused a bit by your earlier mail. If you trying to access
internet from private lan then the port openings are not needed.
The NAT config seems to be fine
1 - Are your internet proxy settings fine?
2 - When you try to browse some page, do you see the NAT translation
happening (NAT --> Interface --> rightclick 00> Show mappings)

--
Thanks,
Janani [MSFT]
---------------------------------------------------------------------------
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Andrew Ward said:
Janani,

Sorry, maybe I wasn't very clear: computers on the private network cannot
browse out onto the Internet, but they can 'ping' and 'tracert'. I'm not
trying to webhost from the private network out onto the Internet through
NAT.
Is this what you meant about opening ports for forwarding?

The routing context dump is below anyway if it helps.

Thanks, Andrew

C:\>netsh
netsh>routing dump
# Routing configuration
pushd routing
reset
popd
# IP configuration
pushd routing ip
reset
set loglevel error
add preferenceforprotocol proto=LOCAL preflevel=1
add preferenceforprotocol proto=STATIC preflevel=3
add preferenceforprotocol proto=NONDOD preflevel=5
add preferenceforprotocol proto=AUTOSTATIC preflevel=7
add preferenceforprotocol proto=NetMgmt preflevel=10
add preferenceforprotocol proto=OSPF preflevel=110
add preferenceforprotocol proto=RIP preflevel=120
add interface name="Loopback" state=enable
set filter name="Loopback" fragcheck=disable
add interface name="Internal" state=enable
set filter name="Internal" fragcheck=disable
add interface name="LAN" state=enable
set filter name="LAN" fragcheck=disable
add interface name="ADSL Link" state=enable
set filter name="ADSL Link" fragcheck=disable
popd
# End of IP configuration



# ----------------------------------
# DHCP Allocator Configuration
# ----------------------------------
pushd routing ip autodhcp
uninstall


popd
# End of DHCP Allocator Configuration



# ----------------------------------
# DNS Proxy configuration
# ----------------------------------
pushd routing ip dnsproxy
uninstall


popd
# End of DNS proxy configuration



# ----------------------------------
# IGMP Configuration
# ----------------------------------
pushd routing ip igmp
uninstall
install
set global loglevel = ERROR


# Igmp configuration for interface "Internal"

delete interface name="Internal"
add interface name="Internal" igmpprototype=IGMPRTRV2 ifenabled=enable
robustvar
=2 startupquerycount=2 startupqueryinterval=31 genqueryinterval=125
genqueryresp
time=10 lastmemquerycount=2 lastmemqueryinterval=1000
accnonrtralertpkts=YES


# Igmp configuration for interface "LAN"

delete interface name="LAN"
add interface name="LAN" igmpprototype=IGMPRTRV2 ifenabled=enable r
obustvar=2 startupquerycount=2 startupqueryinterval=31
genqueryinterval=125
genq
ueryresptime=10 lastmemquerycount=2 lastmemqueryinterval=1000
accnonrtralertpkts
=YES


# Igmp configuration for interface "ADSL Link"

delete interface name="ADSL Link"
add interface name="ADSL Link" igmpprototype=IGMPPROXY ifenabled=enable


popd
# End of IGMP configuration



# ----------------------------------
# NAT configuration
# ----------------------------------
pushd routing ip nat
uninstall
install
set global tcptimeoutmins=1440 udptimeoutmins=1 loglevel=ERROR


#
#NAT Configuration For Interface LAN
#
add interface name="LAN" mode=PRIVATE


#
#NAT Configuration For Interface ADSL Link
#
add interface name="ADSL Link" mode=FULL


popd




# ----------------------------------
# OSPF configuration
# ----------------------------------

pushd routing ip ospf
uninstall

popd
# End of OSPF configuration




# ----------------------------------
# DHCP Relay Agent configuration
# ----------------------------------
pushd routing ip relay
uninstall
install
set global loglevel=ERROR



#
#DHCP Relay Agent configuration for interface "Internal"
#
add interface name="Internal"
set interface name="Internal" relaymode=enable maxhop=4 minsecs=4



popd
# End of DHCP Relay configuration



# ----------------------------------
# RIP configuration
# ----------------------------------
pushd routing ip rip
uninstall


popd
# End of RIP configuration



# ----------------------------------
# Router Discovery Configuration
# ----------------------------------
pushd routing ip routerdiscovery
uninstall
add interface name="Loopback" disc=disable minint=7 maxint=10 life=30
level=0
add interface name="Internal" disc=disable minint=7 maxint=10 life=30
level=0
add interface name="LAN" disc=disable minint=7 maxint=10 life=30 le
vel=0
add interface name="ADSL Link" disc=disable minint=7 maxint=10 life=30
level=0


popd

#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
# #
# BEFORE running this script #
# #
# To restore IPX router configuration, you must first #
# UNINSTALL IPX from the Network connections folder and #
# then REINSTALL it. #
# #
# This deletes the old IPX router configuration #
# and restores the IPX router configuration to its #
# default #
# #
#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#

#----------------------------------------------------------
# IPX configuration
#----------------------------------------------------------

pushd routing ipxThe specified protocol identifier is not known to the
router.

#----------------------------------------------------------
# IPX Interface configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Traffic Filter configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Route configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Service configuration
#----------------------------------------------------------

#----------------------------------------------------------
# IPX RIP configuration
#----------------------------------------------------------

pushd routing ipx rip
popd


# End of IPX RIP configuration

#----------------------------------------------------------
# IPX SAP configuration
#----------------------------------------------------------

pushd routing ipx sap
popd


# End of IPX SAP configuration

#----------------------------------------------------------
# IPX NETBIOS configuration
#----------------------------------------------------------

pushd routing ipx netbios
popd


# End of IPX NB configuration


popd

# End of IPX configuration

netsh>


Janani said:
Have you enabled port forwarding on the HTTP/HTTPS ports which are needed
for browsing in the NAT configuration? If you are not sure, can you send
a
dump of the netsh routing context (netsh routing dump > rodump.txt) so
that
we can check if your NAT configuration is right?

--
Thanks,
Janani [MSFT]
---------------------------------------------------------------------------
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Andrew Ward said:
I'm having trouble with RRAS NAT on a Win2K Server SP4. As far as I can
see
I've setup everything as it should be, and although computers on the
NAT
NIC
side can ping (DNS resolution successful) hosts on the internet,
browsing
and
other applications do not work.

Server details:
Win2K Server SP4, running DNS, DHCP, RRAS. Connection to the internet
through an ADSL modem.

IP details listed below:
83.***.***.*** local public (static) IP address on ISP link
194.***.***.*** server public IP address on ISP link
192.168.0.1 server's local IP address on private network, the NAT side
192.168.0.5 local remote access address the server assigns itself (I'm
not
sure why though, as I haven't enabled RRAS as a remote access server).

I've used this setup on another server Win2k instance in the past and
it
has
worked fine, same ADSL modem and ISP account.

I'm hoping that I've just missed something obvious, but I would
appreciate
any help or incites anyone might be able to offer.

Cheers, Andrew.


With the ADSL connection established as a demand dial link ipconfig
/all
reads:
C:\>ipconfig /all

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : server
Primary DNS Suffix . . . . . . . : ***
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : Yes
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ***

Ethernet adapter Sputnik York LAN:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8139(A) PCI Fast
Ethernet
Adapter
Physical Address. . . . . . . . . : 00-40-F4-2C-9C-19
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.1
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter RAS Server (Dial In) Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.5
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 127.0.0.1

PPP adapter {AEE80D0A-***}:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : WAN (PPP/SLIP) Interface
Physical Address. . . . . . . . . : 00-53-45-00-00-00
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 83.***.***.***
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 194.***.***.***
DNS Servers . . . . . . . . . . . : 194.10*.***.***
194.10*.***.***
NetBIOS over Tcpip. . . . . . . . : Disabled




and route print reads:
C:\>route print
==========================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x1000002 ...00 53 *** ...... WAN (PPP/SLIP) Interface
0x1000003 ...00 40 f4 2c 9c 19 ...... NDIS 5.0 driver

0xc000004 ...00 53 *** ...... WAN (PPP/SLIP) Interface
==========================================================
==========================================================
Active Routes:
Network Destination Netmask Gateway Interface
Metric
0.0.0.0 0.0.0.0 194.***.***.*** 83.***.***.***
1
83.***.***.*** 255.255.255.255 127.0.0.1 127.0.0.1
1
83.255.255.255 255.255.255.255 83.***.***.***
83.***.***.***
1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1
1
192.168.0.0 255.255.255.0 192.168.0.1 192.168.0.1
1
192.168.0.1 255.255.255.255 127.0.0.1 127.0.0.1
1
192.168.0.4 255.255.255.255 127.0.0.1 127.0.0.1
1
192.168.0.255 255.255.255.255 192.168.0.1 192.168.0.1
1
194.***.***.*** 255.255.255.255 83.***.***.***
83.***.***.***
1
224.0.0.0 224.0.0.0 83.***.***.***
83.***.***.***
1
224.0.0.0 224.0.0.0 192.168.0.1 192.168.0.1
1
255.255.255.255 255.255.255.255 192.168.0.1 192.168.0.1
1
Default Gateway: 194.***.***.***
==========================================================
Persistent Routes:
None
Click to expand...
Click to expand...
Click to expand...
 
Janani,

Thanks for your suggestions and help, but I think I tracked the problem down
to an old firewall installation. Eveything is working as it should now.

Andrew

Janani said:
Ok. I was confused a bit by your earlier mail. If you trying to access
internet from private lan then the port openings are not needed.
The NAT config seems to be fine
1 - Are your internet proxy settings fine?
2 - When you try to browse some page, do you see the NAT translation
happening (NAT --> Interface --> rightclick 00> Show mappings)

--
Thanks,
Janani [MSFT]
---------------------------------------------------------------------------
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Andrew Ward said:
Janani,

Sorry, maybe I wasn't very clear: computers on the private network cannot
browse out onto the Internet, but they can 'ping' and 'tracert'. I'm not
trying to webhost from the private network out onto the Internet through
NAT.
Is this what you meant about opening ports for forwarding?

The routing context dump is below anyway if it helps.

Thanks, Andrew

C:\>netsh
netsh>routing dump
# Routing configuration
pushd routing
reset
popd
# IP configuration
pushd routing ip
reset
set loglevel error
add preferenceforprotocol proto=LOCAL preflevel=1
add preferenceforprotocol proto=STATIC preflevel=3
add preferenceforprotocol proto=NONDOD preflevel=5
add preferenceforprotocol proto=AUTOSTATIC preflevel=7
add preferenceforprotocol proto=NetMgmt preflevel=10
add preferenceforprotocol proto=OSPF preflevel=110
add preferenceforprotocol proto=RIP preflevel=120
add interface name="Loopback" state=enable
set filter name="Loopback" fragcheck=disable
add interface name="Internal" state=enable
set filter name="Internal" fragcheck=disable
add interface name="LAN" state=enable
set filter name="LAN" fragcheck=disable
add interface name="ADSL Link" state=enable
set filter name="ADSL Link" fragcheck=disable
popd
# End of IP configuration



# ----------------------------------
# DHCP Allocator Configuration
# ----------------------------------
pushd routing ip autodhcp
uninstall


popd
# End of DHCP Allocator Configuration



# ----------------------------------
# DNS Proxy configuration
# ----------------------------------
pushd routing ip dnsproxy
uninstall


popd
# End of DNS proxy configuration



# ----------------------------------
# IGMP Configuration
# ----------------------------------
pushd routing ip igmp
uninstall
install
set global loglevel = ERROR


# Igmp configuration for interface "Internal"

delete interface name="Internal"
add interface name="Internal" igmpprototype=IGMPRTRV2 ifenabled=enable
robustvar
=2 startupquerycount=2 startupqueryinterval=31 genqueryinterval=125
genqueryresp
time=10 lastmemquerycount=2 lastmemqueryinterval=1000
accnonrtralertpkts=YES


# Igmp configuration for interface "LAN"

delete interface name="LAN"
add interface name="LAN" igmpprototype=IGMPRTRV2 ifenabled=enable r
obustvar=2 startupquerycount=2 startupqueryinterval=31
genqueryinterval=125
genq
ueryresptime=10 lastmemquerycount=2 lastmemqueryinterval=1000
accnonrtralertpkts
=YES


# Igmp configuration for interface "ADSL Link"

delete interface name="ADSL Link"
add interface name="ADSL Link" igmpprototype=IGMPPROXY ifenabled=enable


popd
# End of IGMP configuration



# ----------------------------------
# NAT configuration
# ----------------------------------
pushd routing ip nat
uninstall
install
set global tcptimeoutmins=1440 udptimeoutmins=1 loglevel=ERROR


#
#NAT Configuration For Interface LAN
#
add interface name="LAN" mode=PRIVATE


#
#NAT Configuration For Interface ADSL Link
#
add interface name="ADSL Link" mode=FULL


popd




# ----------------------------------
# OSPF configuration
# ----------------------------------

pushd routing ip ospf
uninstall

popd
# End of OSPF configuration




# ----------------------------------
# DHCP Relay Agent configuration
# ----------------------------------
pushd routing ip relay
uninstall
install
set global loglevel=ERROR



#
#DHCP Relay Agent configuration for interface "Internal"
#
add interface name="Internal"
set interface name="Internal" relaymode=enable maxhop=4 minsecs=4



popd
# End of DHCP Relay configuration



# ----------------------------------
# RIP configuration
# ----------------------------------
pushd routing ip rip
uninstall


popd
# End of RIP configuration



# ----------------------------------
# Router Discovery Configuration
# ----------------------------------
pushd routing ip routerdiscovery
uninstall
add interface name="Loopback" disc=disable minint=7 maxint=10 life=30
level=0
add interface name="Internal" disc=disable minint=7 maxint=10 life=30
level=0
add interface name="LAN" disc=disable minint=7 maxint=10 life=30 le
vel=0
add interface name="ADSL Link" disc=disable minint=7 maxint=10 life=30
level=0


popd

#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
# #
# BEFORE running this script #
# #
# To restore IPX router configuration, you must first #
# UNINSTALL IPX from the Network connections folder and #
# then REINSTALL it. #
# #
# This deletes the old IPX router configuration #
# and restores the IPX router configuration to its #
# default #
# #
#!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#

#----------------------------------------------------------
# IPX configuration
#----------------------------------------------------------

pushd routing ipxThe specified protocol identifier is not known to the
router.

#----------------------------------------------------------
# IPX Interface configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Traffic Filter configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Route configuration
#----------------------------------------------------------


#----------------------------------------------------------
# IPX Static Service configuration
#----------------------------------------------------------

#----------------------------------------------------------
# IPX RIP configuration
#----------------------------------------------------------

pushd routing ipx rip
popd


# End of IPX RIP configuration

#----------------------------------------------------------
# IPX SAP configuration
#----------------------------------------------------------

pushd routing ipx sap
popd


# End of IPX SAP configuration

#----------------------------------------------------------
# IPX NETBIOS configuration
#----------------------------------------------------------

pushd routing ipx netbios
popd


# End of IPX NB configuration


popd

# End of IPX configuration

netsh>
Click to expand...
Click to expand...
 
Back
Top