none
server 2008, RRAS, configuring a NAT address pool breaks all routing RRS feed

  • Question

  • NAT works just fine until i add an address pool for multiple public addresses.  Does the Microsoft implementation actually support multiple public IPs or not.  If so, where is an article or instructions on how to properly configure the public IP address pool.  This is NOT a VPN client address pool!!!!  I mean a NAT address pool.

     

    server has 2 NICs

    1 LAN

    1 WAN

     

    i have reconfigured everything, multiple times, in many ways and the address pool always breaks the NAT routing.  WHY?

    Thursday, April 14, 2011 8:41 AM

Answers

  • Hi Customer,

        When you configure NAT address pool, you need add public IP range into the pool and meanwhile add these public ip address into WAN NIC.

        Like if you have 5 public IP address used for NAT, you need to configure server WAN NIC with 5 public ip address.

        You could try to add 2 public IP to test. If still failed, please post "ipconfig/all" and "route print" to us. 


    Regards, Rick Tan
    Friday, April 15, 2011 5:58 AM
    Moderator

All replies

  • Hi Customer,

        When you configure NAT address pool, you need add public IP range into the pool and meanwhile add these public ip address into WAN NIC.

        Like if you have 5 public IP address used for NAT, you need to configure server WAN NIC with 5 public ip address.

        You could try to add 2 public IP to test. If still failed, please post "ipconfig/all" and "route print" to us. 


    Regards, Rick Tan
    Friday, April 15, 2011 5:58 AM
    Moderator
  • Hi - I have exactly the same problem as mrvnmartian above. I have applied the public ip addresses to the WAN NIC to no effect.

    When I remove the address pool, routing works as expected, but when I apply the address pool, all access from my Private network is blocked. There is for sure something wrong with NAT somewhere.

    Here is my ipconfig /all and route print output:

    C:\Users\Administrator\Desktop>route print
    ===========================================================================
    Interface List
     20...00 ff 70 e3 db d8 ......TAP-Win32 Adapter OAS
     16...00 15 5d d0 0c 02 ......Hyper-V network
     11...20 cf 30 19 7b 37 ......Intel(R) 82574L Gigabit Network Connection
      1...........................Software Loopback Interface 1
     17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
     12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
     13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
     15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
     18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
     19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
    ===========================================================================

    IPv4 Route Table
    ===========================================================================
    Active Routes:
    Network Destination        Netmask          Gateway       Interface  Metric
              0.0.0.0          0.0.0.0     88.208.208.1    88.208.208.12    276
              5.5.0.0    255.255.240.0         5.5.16.1         5.5.16.2    101
             5.5.16.0    255.255.255.0         On-link          5.5.16.2    286
             5.5.16.2  255.255.255.255         On-link          5.5.16.2    286
           5.5.16.255  255.255.255.255         On-link          5.5.16.2    286
             10.0.0.0      255.255.0.0         5.5.16.1         5.5.16.2    101
         88.208.208.0    255.255.252.0         On-link     88.208.208.12    276
        88.208.208.12  255.255.255.255         On-link     88.208.208.12    276
        88.208.208.30  255.255.255.255         On-link      192.168.10.1    261
       88.208.208.250  255.255.255.255         On-link     88.208.208.12    276
       88.208.208.251  255.255.255.255         On-link     88.208.208.12    276
        88.208.209.45  255.255.255.255         On-link     88.208.208.12    276
       88.208.211.255  255.255.255.255         On-link     88.208.208.12    276
            127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
            127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
      127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
          192.168.1.0    255.255.255.0         5.5.16.1         5.5.16.2    101
         192.168.10.0    255.255.255.0         On-link      192.168.10.1    261
         192.168.10.1  255.255.255.255         On-link      192.168.10.1    261
       192.168.10.255  255.255.255.255         On-link      192.168.10.1    261
      213.171.192.249  255.255.255.255     88.208.208.1    88.208.208.12     20
      214.171.193.245  255.255.255.255     88.208.208.1    88.208.208.12     20
            224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
            224.0.0.0        240.0.0.0         On-link     88.208.208.12    276
            224.0.0.0        240.0.0.0         On-link          5.5.16.2    286
            224.0.0.0        240.0.0.0         On-link      192.168.10.1    261
      255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      255.255.255.255  255.255.255.255         On-link     88.208.208.12    276
      255.255.255.255  255.255.255.255         On-link          5.5.16.2    286
      255.255.255.255  255.255.255.255         On-link      192.168.10.1    261
    ===========================================================================
    Persistent Routes:
      Network Address          Netmask  Gateway Address  Metric
              0.0.0.0          0.0.0.0     88.208.208.1  Default
    ===========================================================================

    IPv6 Route Table
    ===========================================================================
    Active Routes:
     If Metric Network Destination      Gateway
     12   1125 ::/0                     2002:c058:6301::c058:6301
      1    306 ::1/128                  On-link
     12   1025 2002::/16                On-link
     12    281 2002:505:1002::505:1002/128
                                        On-link
     12    281 2002:58d0:d00c::58d0:d00c/128
                                        On-link
     12    281 2002:58d0:d01e::58d0:d01e/128
                                        On-link
     12    281 2002:58d0:d0fa::58d0:d0fa/128
                                        On-link
     12    281 2002:58d0:d0fb::58d0:d0fb/128
                                        On-link
     12    281 2002:58d0:d12d::58d0:d12d/128
                                        On-link
     20    286 fe80::/64                On-link
     16    261 fe80::/64                On-link
     20    286 fe80::9c29:3ca7:5f52:6bff/128
                                        On-link
     16    261 fe80::c8a8:e116:2b42:19e/128
                                        On-link
      1    306 ff00::/8                 On-link
     20    286 ff00::/8                 On-link
     16    261 ff00::/8                 On-link
    ===========================================================================
    Persistent Routes:
      None

    C:\Users\Administrator\Desktop>ipconfig /all

    Windows IP Configuration

       Host Name . . . . . . . . . . . . : WIN-FG4I8GDH0EJ
       Primary Dns Suffix  . . . . . . . : xxxx.com
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : Yes
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : xxxx.com

    Ethernet adapter Local Area Connection 4:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : TAP-Win32 Adapter OAS
       Physical Address. . . . . . . . . : 00-FF-70-E3-DB-D8
       DHCP Enabled. . . . . . . . . . . : Yes
       Autoconfiguration Enabled . . . . : Yes
       Link-local IPv6 Address . . . . . : fe80::9c29:3ca7:5f52:6bff%20(Preferred)
       IPv4 Address. . . . . . . . . . . : 5.5.16.2(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Lease Obtained. . . . . . . . . . : 05 August 2011 11:35:58
       Lease Expires . . . . . . . . . . : 04 August 2012 11:35:58
       Default Gateway . . . . . . . . . :
       DHCP Server . . . . . . . . . . . : 5.5.16.254
       DHCPv6 IAID . . . . . . . . . . . : 402718576
       DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-3F-3E-2E-20-CF-30-19-7B-37

       DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                           fec0:0:0:ffff::2%1
                                           fec0:0:0:ffff::3%1
       NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter Local Area Connection 3:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Hyper-V network
       Physical Address. . . . . . . . . : 00-15-5D-D0-0C-02
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       Link-local IPv6 Address . . . . . : fe80::c8a8:e116:2b42:19e%16(Preferred)
       IPv4 Address. . . . . . . . . . . : 192.168.10.1(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . :
       DHCPv6 IAID . . . . . . . . . . . : 335549789
       DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-3F-3E-2E-20-CF-30-19-7B-37

       DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                           fec0:0:0:ffff::2%1
                                           fec0:0:0:ffff::3%1
       NetBIOS over Tcpip. . . . . . . . : Enabled

    Ethernet adapter Local Area Connection:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Intel(R) 82574L Gigabit Network Connectio
    n
       Physical Address. . . . . . . . . : 20-CF-30-19-7B-37
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 88.208.208.12(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.252.0
       IPv4 Address. . . . . . . . . . . : 88.208.208.30(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.252.0
       IPv4 Address. . . . . . . . . . . : 88.208.208.250(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.252.0
       IPv4 Address. . . . . . . . . . . : 88.208.208.251(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.252.0
       IPv4 Address. . . . . . . . . . . : 88.208.209.45(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.252.0
       Default Gateway . . . . . . . . . : 88.208.208.1
       DNS Servers . . . . . . . . . . . : 213.171.192.249
                                           214.171.193.245
       NetBIOS over Tcpip. . . . . . . . : Disabled

    Tunnel adapter isatap.{B9EF2819-7A68-46DC-9B78-ACEB0C998D1C}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter 6TO4 Adapter:

       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft 6to4 Adapter
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv6 Address. . . . . . . . . . . : 2002:505:1002::505:1002(Preferred)
       IPv6 Address. . . . . . . . . . . : 2002:58d0:d00c::58d0:d00c(Preferred)
       IPv6 Address. . . . . . . . . . . : 2002:58d0:d01e::58d0:d01e(Preferred)
       IPv6 Address. . . . . . . . . . . : 2002:58d0:d0fa::58d0:d0fa(Preferred)
       IPv6 Address. . . . . . . . . . . : 2002:58d0:d0fb::58d0:d0fb(Preferred)
       IPv6 Address. . . . . . . . . . . : 2002:58d0:d12d::58d0:d12d(Preferred)
       Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
       DNS Servers . . . . . . . . . . . : 213.171.192.249
                                           214.171.193.245
       NetBIOS over Tcpip. . . . . . . . : Disabled

    Tunnel adapter Teredo Tunneling Pseudo-Interface:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{853BD497-7115-41AD-A5FE-2F4B5AC801A9}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter isatap.{70E3DBD8-772E-4B57-ACE4-44FECD11D38D}:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Tunnel adapter Local Area Connection* 9:

       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes

    Friday, August 5, 2011 2:54 PM
  • Hello 

    I'm having same issue with with Windows 2019. Thsi was working on 2003 and i just upgraded.

    When i add a public address pool to NAT it breaks the routes.

    Normally i should then be able to reserve public ip to private ip have been doing it for 10 years on Win2k3.

    any ideas, will this be fixed?

    Thursday, April 2, 2020 2:20 PM