Server 2008 - not able to conect to internet
-
יום שני 11 יוני 2012 17:28
New Server 2008. No Anti-Virus installed yet. Directly connected to cable modem, only local firewall settings in place. Properly received IP address from ISP. However Does not have a internet connection. Can not ping the ISP DNS. Can not ping any public server. Once again - there is nothing between the server and the cable modem. the cable modem is working fine - testing with my laptop. There is not anti-virus yet on this machine. It's about as bear bones as you can get. all other articles I read had routers and anti virus and firewall stuff going on. if you are going to ask if any of that is in place please don't - there isn't any. Thanks in advance.
here is the ipconfig /all
Windows IP ConfigurationHost Name . . . . . . . . . . . . : KDMSVR1
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : dc.dc.cox.netEthernet adapter Local Area Connection 2:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II GigE (NDIS VBD Client) #38
Physical Address. . . . . . . . . : D4-AE-52-93-ED-2B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : YesEthernet adapter Local Area Connection:
Connection-specific DNS Suffix . : dc.dc.cox.net
Description . . . . . . . . . . . : Broadcom BCM5716C NetXtreme II GigE (NDIS VBD Client) #36
Physical Address. . . . . . . . . : D4-AE-52-93-ED-2A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f83d:14f9:b147:c94%11(Preferred)
IPv4 Address. . . . . . . . . . . : 184.178.49.228(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.224
Lease Obtained. . . . . . . . . . : Monday, June 11, 2012 12:36:18 PM
Lease Expires . . . . . . . . . . : Tuesday, June 12, 2012 12:36:17 PM
Default Gateway . . . . . . . . . : 184.178.49.225
DHCP Server . . . . . . . . . . . : 172.19.105.22
DHCPv6 IAID . . . . . . . . . . . : 248819282
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-52-38-E4-D4-AE-52-93-ED-2A
DNS Servers . . . . . . . . . . . : 68.105.28.12
68.105.29.12
68.105.28.11
NetBIOS over Tcpip. . . . . . . . : EnabledTunnel adapter isatap.{492DBCF3-4B6C-4178-AA5A-00B3BB349512}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : YesTunnel adapter isatap.dc.dc.cox.net:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : dc.dc.cox.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : YesTunnel adapter 6TO4 Adapter:
Connection-specific DNS Suffix . : dc.dc.cox.net
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:b8b2:31e4::b8b2:31e4(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 68.105.28.12
68.105.29.12
68.105.28.11
NetBIOS over Tcpip. . . . . . . . : Disabled- שינה את הסוג Tiger LiModerator יום חמישי 14 יוני 2012 00:54
כל התגובות
-
יום שני 11 יוני 2012 17:47
Hello,
with Windows server by default the ICMP protocol is blocked, so did you try with disabled firewall for the ping command as a test?
As this seems to be a DC, you have chosen not recommended configuration with connecting a DC direct to the internet. This is a big security problem. DCs should always run in a private ip range and NOT with the ISPs public one. Why have you built it that way?
Best regards
Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://msmvps.com/blogs/mweber/Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
-
יום שני 11 יוני 2012 18:08
Meinolf - thanks for the quick reply. Just tried pinging the dns with all the firewall settings off. did not work. As for your question. This is only a temporary set-up while I wait for my router to show up. Was hoping to get windows update, anti-virus software downloaded and a few others things done sooner. Had plans to pull connection once I had a few things on the server.
-
יום שני 11 יוני 2012 18:36
Hello,
the DC must use the domain internal DNS servers on the NIC and then configure FORWARDERS on the DNS server properties in the DNS management console instead using the ISPs DNS server on the NIC.
Best regards
Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://msmvps.com/blogs/mweber/Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
-
יום שני 11 יוני 2012 18:44
Yikes.. Have reached my limit on how to set things up... Could you explain (or give an example) on what to do. Thanks.
-
יום שני 11 יוני 2012 19:04additionally, are you suggesting that once I have my router in place - things should work?
-
יום שני 11 יוני 2012 19:23
Hello,
this still applies for Windows server 2008 http://support.microsoft.com/kb/323380
If you connect the devices this way internet access should work and prevents from direct access to the DC/domain machines:
internet > router WAN port(ISPs ip address) > router LAN port(private ip range) > switch > all domain machines with private ip ranges, either 10.x.x.x, 172.16.x.x or 192.168.x.x
Best regards
Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://msmvps.com/blogs/mweber/Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
-
יום שלישי 12 יוני 2012 03:03
Meinolf - thanks for the quick reply. Just tried pinging the dns with all the firewall settings off. did not work. As for your question. This is only a temporary set-up while I wait for my router to show up. Was hoping to get windows update, anti-virus software downloaded and a few others things done sooner. Had plans to pull connection once I had a few things on the server.
.
What are you trying to ping? Can you provide an example? Also run and provide the results of an nslookup with the same name you're trying to ping.
Can you ping 4.2.2.2?
.
Ace Fekay
MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.phpThis post is provided AS-IS with no warranties or guarantees and confers no rights.
- נערך על-ידי Ace Fekay [MCT]MVP יום שלישי 12 יוני 2012 03:04 - added one more ping suggestion
-
יום שלישי 12 יוני 2012 17:56
Just wanted to thank you both for respondng. My router came in early!!! So with that - plug it in and it works! Once again, thanks for trying to help me get ahead of setting this up.
- סומן כתשובה על-ידי Tiger LiModerator יום חמישי 14 יוני 2012 00:54
-
יום שלישי 12 יוני 2012 20:36
So it was a router problem? Good to hear that took care of the problem!
.
Ace Fekay
MVP, MCT, MCITP EA, MCTS Windows 2008/R2, Exchange 2007 & Exchange 2010, Exchange 2010 EA, MCSE & MCSA 2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer
Microsoft MVP - Directory Services
Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.phpThis post is provided AS-IS with no warranties or guarantees and confers no rights.
.png)
