Remove From My Forums

server 2008, RRAS, configuring a NAT address pool breaks all routing

Question
0

Sign in to vote

NAT works just fine until i add an address pool for multiple public addresses. Does the Microsoft implementation actually support multiple public IPs or not. If so, where is an article or instructions on how to properly configure the public IP address pool. This is NOT a VPN client address pool!!!! I mean a NAT address pool.

server has 2 NICs

1 LAN

1 WAN

i have reconfigured everything, multiple times, in many ways and the address pool always breaks the NAT routing. WHY?

Thursday, April 14, 2011 8:41 AM

Answers

0

Sign in to vote
Hi Customer,

    When you configure NAT address pool, you need add public IP range into the pool and meanwhile add these public ip address into WAN NIC.

    Like if you have 5 public IP address used for NAT, you need to configure server WAN NIC with 5 public ip address.

    You could try to add 2 public IP to test. If still failed, please post "ipconfig/all" and "route print" to us.
Regards, Rick Tan
- Marked as answer by Rick Tan Thursday, April 21, 2011 1:08 AM
Friday, April 15, 2011 5:58 AM

All replies

0

Sign in to vote
Hi Customer,

    When you configure NAT address pool, you need add public IP range into the pool and meanwhile add these public ip address into WAN NIC.

    Like if you have 5 public IP address used for NAT, you need to configure server WAN NIC with 5 public ip address.

    You could try to add 2 public IP to test. If still failed, please post "ipconfig/all" and "route print" to us.
Regards, Rick Tan
- Marked as answer by Rick Tan Thursday, April 21, 2011 1:08 AM
Friday, April 15, 2011 5:58 AM
0

Sign in to vote

Hi - I have exactly the same problem as mrvnmartian above. I have applied the public ip addresses to the WAN NIC to no effect.

When I remove the address pool, routing works as expected, but when I apply the address pool, all access from my Private network is blocked. There is for sure something wrong with NAT somewhere.

Here is my ipconfig /all and route print output:

C:\Users\Administrator\Desktop>route print
===========================================================================
Interface List
20...00 ff 70 e3 db d8 ......TAP-Win32 Adapter OAS
16...00 15 5d d0 0c 02 ......Hyper-V network
11...20 cf 30 19 7b 37 ......Intel(R) 82574L Gigabit Network Connection
1...........................Software Loopback Interface 1
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface Metric
          0.0.0.0          0.0.0.0     88.208.208.1    88.208.208.12    276
          5.5.0.0    255.255.240.0         5.5.16.1         5.5.16.2    101
         5.5.16.0    255.255.255.0         On-link          5.5.16.2    286
         5.5.16.2 255.255.255.255         On-link          5.5.16.2    286
       5.5.16.255 255.255.255.255         On-link          5.5.16.2    286
         10.0.0.0      255.255.0.0         5.5.16.1         5.5.16.2    101
     88.208.208.0    255.255.252.0         On-link     88.208.208.12    276
    88.208.208.12 255.255.255.255         On-link     88.208.208.12    276
    88.208.208.30 255.255.255.255         On-link      192.168.10.1    261
   88.208.208.250 255.255.255.255         On-link     88.208.208.12    276
   88.208.208.251 255.255.255.255         On-link     88.208.208.12    276
    88.208.209.45 255.255.255.255         On-link     88.208.208.12    276
   88.208.211.255 255.255.255.255         On-link     88.208.208.12    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1 255.255.255.255         On-link         127.0.0.1    306
127.255.255.255 255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         5.5.16.1         5.5.16.2    101
     192.168.10.0    255.255.255.0         On-link      192.168.10.1    261
     192.168.10.1 255.255.255.255         On-link      192.168.10.1    261
   192.168.10.255 255.255.255.255         On-link      192.168.10.1    261
213.171.192.249 255.255.255.255     88.208.208.1    88.208.208.12     20
214.171.193.245 255.255.255.255     88.208.208.1    88.208.208.12     20
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     88.208.208.12    276
        224.0.0.0        240.0.0.0         On-link          5.5.16.2    286
        224.0.0.0        240.0.0.0         On-link      192.168.10.1    261
255.255.255.255 255.255.255.255         On-link         127.0.0.1    306
255.255.255.255 255.255.255.255         On-link     88.208.208.12    276
255.255.255.255 255.255.255.255         On-link          5.5.16.2    286
255.255.255.255 255.255.255.255         On-link      192.168.10.1    261
===========================================================================
Persistent Routes:
Network Address          Netmask Gateway Address Metric
          0.0.0.0          0.0.0.0     88.208.208.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination      Gateway
12   1125 ::/0                     2002:c058:6301::c058:6301
1    306 ::1/128                  On-link
12   1025 2002::/16                On-link
12    281 2002:505:1002::505:1002/128
                                    On-link
12    281 2002:58d0:d00c::58d0:d00c/128
                                    On-link
12    281 2002:58d0:d01e::58d0:d01e/128
                                    On-link
12    281 2002:58d0:d0fa::58d0:d0fa/128
                                    On-link
12    281 2002:58d0:d0fb::58d0:d0fb/128
                                    On-link
12    281 2002:58d0:d12d::58d0:d12d/128
                                    On-link
20    286 fe80::/64                On-link
16    261 fe80::/64                On-link
20    286 fe80::9c29:3ca7:5f52:6bff/128
                                    On-link
16    261 fe80::c8a8:e116:2b42:19e/128
                                    On-link
1    306 ff00::/8                 On-link
20    286 ff00::/8                 On-link
16    261 ff00::/8                 On-link
===========================================================================
Persistent Routes:
None

C:\Users\Administrator\Desktop>ipconfig /all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : WIN-FG4I8GDH0EJ
   Primary Dns Suffix . . . . . . . : xxxx.com
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : Yes
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : xxxx.com

Ethernet adapter Local Area Connection 4:

   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : TAP-Win32 Adapter OAS
   Physical Address. . . . . . . . . : 00-FF-70-E3-DB-D8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9c29:3ca7:5f52:6bff%20(Preferred)
   IPv4 Address. . . . . . . . . . . : 5.5.16.2(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 05 August 2011 11:35:58
   Lease Expires . . . . . . . . . . : 04 August 2012 11:35:58
   Default Gateway . . . . . . . . . :
   DHCP Server . . . . . . . . . . . : 5.5.16.254
   DHCPv6 IAID . . . . . . . . . . . : 402718576
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-3F-3E-2E-20-CF-30-19-7B-37

   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 3:

   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Hyper-V network
   Physical Address. . . . . . . . . : 00-15-5D-D0-0C-02
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c8a8:e116:2b42:19e%16(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.10.1(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 335549789
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-3F-3E-2E-20-CF-30-19-7B-37

   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Intel(R) 82574L Gigabit Network Connectio
n
   Physical Address. . . . . . . . . : 20-CF-30-19-7B-37
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 88.208.208.12(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   IPv4 Address. . . . . . . . . . . : 88.208.208.30(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   IPv4 Address. . . . . . . . . . . : 88.208.208.250(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   IPv4 Address. . . . . . . . . . . : 88.208.208.251(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   IPv4 Address. . . . . . . . . . . : 88.208.209.45(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.252.0
   Default Gateway . . . . . . . . . : 88.208.208.1
   DNS Servers . . . . . . . . . . . : 213.171.192.249
                                       214.171.193.245
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{B9EF2819-7A68-46DC-9B78-ACEB0C998D1C}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2002:505:1002::505:1002(Preferred)
   IPv6 Address. . . . . . . . . . . : 2002:58d0:d00c::58d0:d00c(Preferred)
   IPv6 Address. . . . . . . . . . . : 2002:58d0:d01e::58d0:d01e(Preferred)
   IPv6 Address. . . . . . . . . . . : 2002:58d0:d0fa::58d0:d0fa(Preferred)
   IPv6 Address. . . . . . . . . . . : 2002:58d0:d0fb::58d0:d0fb(Preferred)
   IPv6 Address. . . . . . . . . . . : 2002:58d0:d12d::58d0:d12d(Preferred)
   Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
   DNS Servers . . . . . . . . . . . : 213.171.192.249
                                       214.171.193.245
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{853BD497-7115-41AD-A5FE-2F4B5AC801A9}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{70E3DBD8-772E-4B57-ACE4-44FECD11D38D}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Friday, August 5, 2011 2:54 PM
0

Sign in to vote

Hello

I'm having same issue with with Windows 2019. Thsi was working on 2003 and i just upgraded.

When i add a public address pool to NAT it breaks the routes.

Normally i should then be able to reserve public ip to private ip have been doing it for 10 years on Win2k3.

any ideas, will this be fixed?

Thursday, April 2, 2020 2:20 PM

Products

Resources

Solutions

Updates

Trials

Related Sites

Training

Certifications

Other resources

Support options

More support

Not an IT pro?

Answered by:

server 2008, RRAS, configuring a NAT address pool breaks all routing

Question

Answers

All replies