ISA 2004 and ICMP Redirect/route addition problems (Full Version)

All Forums >> [ISA Server 2004 Cache] >> General



Message


Doc Dish -> ISA 2004 and ICMP Redirect/route addition problems (15.Jun.2006 1:03:46 PM)

Dear All,
    I have 3 Windows 2003 Servers (SP1) with ISA Server 2004 Standard (SP2) acting as internal caching Web Proxys. One of these servers is in a subnet with multiple routers and the default gateway will respond to clients with ICMP Redirects if one of those other routers is the preferred route for traffic to a given location.

I have added a rule to the ISA Firewall to allow ICMP type 5 (codes 0 & 1) traffic from the routers (including the default gateway) and changed the value of HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\EnableICMPRedirect to 1. I can see the ICMP Redirects being accepted by the ISA server in the firewall log and in Network Monitor.

However, the redirects are not immediately applied. For example if I ping a host on the far side of one of the routers, about 50% of the pings are dropped and no route for that host is visible in the route table. If I repeat this 2 or 3 times, the route is added and all the pings receive replies.

Can anyone suggest a cause for this, please?

Many thanks, Doc.




Page: [1]