RRAS static route

Chris T. · Jul 6, 2004

I have two networks one 172.16.0.0/255.255.0.0 and 192.168.189.0/255.255.0.0
I have a windows 2003 server with two nics one with an IP address of
172.16.5.233 and the internet gateway of 172.16.0.9 the other nic has an ip
address of 192.168.189.135 and no gateway.
I have set the clients on the side of the 192.168.189.0/255.255.255.0
network with a default gateway address of 192.168.189.135. and the clients
on the 172.16.0.0/255.255.0.0 network with a default gateway of 172.16.0.9.
What static routes do I need to add? I tried following this microsoft
document with out much luck:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;178993 Please help
thanks.

route print from server acting as router below:

Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.16.0.9 172.16.5.233 30
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
172.16.0.0 255.255.0.0 172.16.5.233 172.16.5.233 30
172.16.5.233 255.255.255.255 127.0.0.1 127.0.0.1 30
172.16.255.255 255.255.255.255 172.16.5.233 172.16.5.233 30
192.168.189.0 255.255.255.0 192.168.189.135 192.168.189.135 30
192.168.189.135 255.255.255.255 127.0.0.1 127.0.0.1 30
192.168.189.255 255.255.255.255 192.168.189.135 192.168.189.135 30
224.0.0.0 240.0.0.0 172.16.5.233 172.16.5.233 30
224.0.0.0 240.0.0.0 192.168.189.135 192.168.189.135 30
255.255.255.255 255.255.255.255 172.16.5.233 172.16.5.233 1
255.255.255.255 255.255.255.255 192.168.189.135 192.168.189.135 1
Default Gateway: 172.16.0.9
===========================================================================
Persistent Routes:
None

Dusty Harper {MS} · Jul 6, 2004

On your 172.16.0.9 router, you would add a route that says to reach
192.168.189.0 use 172.16.5.233 . This will cause anyone trying to reach the
192.168.189 network from the 172.16.0.0 network to receive an ICMP Redirect
telling them to use the 172.16.5.233 network.

Alternatively you can add a static route to each of your 172.16.0.0 clients
that says to reach the 192.168.189.0 network use 172.16.5.233. ( This can
be simplified by using the DHCP static route option )

Chris T. · Jul 7, 2004

Added the route to the router fixed the problem. My next question is i want
to enable the firewall on one of the NIC in this server but it will not let
me because RRAS is installed. If I uninstall RRAS then do a route add
command and then enable the firewall on the NIC would this work? Also what
would the route command look like? I have been tring to create a route on
the server to route packets between the two NIC but it is not working. As
soon as i enable RRAS everything starts working again (i can ping clients on
both sides of the multihomed server)

Dusty Harper {MS} · Jul 8, 2004

You can't have both ICF and RRAS running on the same machine. RRAS comes
with its own form of filtering which may work for you ( Its a little better
than ICF in my opinion ) The filtering in located in the IP Routing >
General > Network Card Properties.

If you insist on using ICF, then you must uninstall RRAS. you then would
need to enable the routing functionality on the box ( using the
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnab
leRouter = 0x01 ).

Chris T. · Jul 8, 2004

Thank you, that helps!

Dusty Harper {MS} said:
You can't have both ICF and RRAS running on the same machine. RRAS comes
with its own form of filtering which may work for you ( Its a little better
than ICF in my opinion ) The filtering in located in the IP Routing >
General > Network Card Properties.

If you insist on using ICF, then you must uninstall RRAS. you then would
need to enable the routing functionality on the box ( using the
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnab
leRouter = 0x01 ).

--
--
Dusty Harper
Microsoft Corporation
-------------------------------------------------------------------------- --
This posting is provided "AS IS", with NO warranties and confers NO rights
-------------------------------------------------------------------------- --

Chris T. said:

Added the route to the router fixed the problem. My next question is i want
to enable the firewall on one of the NIC in this server but it will not let
me because RRAS is installed. If I uninstall RRAS then do a route add
command and then enable the firewall on the NIC would this work? Also what
would the route command look like? I have been tring to create a route on
the server to route packets between the two NIC but it is not working. As
soon as i enable RRAS everything starts working again (i can ping

Click to expand...

clients

on
both sides of the multihomed server)

Dusty Harper {MS} said:

On your 172.16.0.9 router, you would add a route that says to reach
192.168.189.0 use 172.16.5.233 . This will cause anyone trying to

Click to expand...

reach
the

192.168.189 network from the 172.16.0.0 network to receive an ICMP Redirect
telling them to use the 172.16.5.233 network.

Alternatively you can add a static route to each of your 172.16.0.0 clients
that says to reach the 192.168.189.0 network use 172.16.5.233. ( This can
be simplified by using the DHCP static route option )

Click to expand...

-------------------------------------------------------------------------- rights
--------------------------------------------------------------------------

--

I have two networks one 172.16.0.0/255.255.0.0 and
192.168.189.0/255.255.0.0
I have a windows 2003 server with two nics one with an IP address of
172.16.5.233 and the internet gateway of 172.16.0.9 the other nic

Click to expand...

Click to expand...

has

an Please
help

Click to expand...

===========================================================================