Unable to browse internet

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a w2k3 server which is a VPN server. While configuring the RRAS I
enabled the static filtering to allow only VPN traffic and nothing else. Now
I want to allow http traffic only.

I tried Inbound and outbound filters with the following settings but it
didnot help.

INBOUND FILTER

Source Address: Any
Source Network Mask: Any
Destination Address: 70.x.x.x
Destination Mask: 255.255.255.255
Protocol: TCP
Source Port or Type: 80
Destination Port or Code: Any

OUTBOUND FILTER

Source Address: 70.x.x.x
Source Network Mask: 255.255.255.255
Destination Address: Any
Destination Mask: Any
Protocol: TCP
Source Port or Type: 80
Destination Port or Code: Any

Any help is appreciated. Thank you in advance.

Dipu
 
Assuming 70.x.x.x is the public IP, you should point to the private IP.


Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
I have a w2k3 server which is a VPN server. While configuring the RRAS I
enabled the static filtering to allow only VPN traffic and nothing else. Now
I want to allow http traffic only.

I tried Inbound and outbound filters with the following settings but it
didnot help.

INBOUND FILTER

Source Address: Any
Source Network Mask: Any
Destination Address: 70.x.x.x
Destination Mask: 255.255.255.255
Protocol: TCP
Source Port or Type: 80
Destination Port or Code: Any

OUTBOUND FILTER

Source Address: 70.x.x.x
Source Network Mask: 255.255.255.255
Destination Address: Any
Destination Mask: Any
Protocol: TCP
Source Port or Type: 80
Destination Port or Code: Any

Any help is appreciated. Thank you in advance.

Dipu
 
Thank you Bob for your prompt reply however your suggestion did not work. I
went to the links that you provided and it was not helpful either. My
requirement is simple that I want to allow http traffic in and out of this
vpn server running RRAS service. Can you exactly give me what values I should
put in my Inbound and Outbound filters? I would really appreciate that.

Any help from Microsoft Gurus will be highly appreciated. Let me know if you
need additional info to analyze this issue.

Thank you.

Dipu
 
Sorry, I misunderstanded your question. I was assuming you have two NICs and use NAT.

I don't see any problem from the settings. However, have you selected "Drop all packets except those that meet the criteria below"?

Can you telnet port 80? If not, do you have any other firewall?

Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
Thank you Bob for your prompt reply however your suggestion did not work. I
went to the links that you provided and it was not helpful either. My
requirement is simple that I want to allow http traffic in and out of this
vpn server running RRAS service. Can you exactly give me what values I should
put in my Inbound and Outbound filters? I would really appreciate that.

Any help from Microsoft Gurus will be highly appreciated. Let me know if you
need additional info to analyze this issue.

Thank you.

Dipu
 
Hi Dipu,

Bounce the server. My experience (and that of two other sys admins) is
when things don't work with RRAS filters for what apears to be an
unknown reason, it is time for a restart. Retsarting the service has no
effect.

I can't speak of previous version of RRAS, but 2003 has a penchant for
this.

Jeff
 
Back
Top