Issue with ping internal interface

Issue with ping internal interface (Full Version)

All Forums >> [ISA 2006 General] >> General

Message

jmfwerner -> Issue with ping internal interface (21.Jul.2008 12:59:28 PM)
Running ISA2006 Standard on Windows 2003 SP2. I have enabled ICMP (ping) using the system policies. This works for a short time (after a reboot), then for some unknown reason, I can no longer ping to/from the server. Other protocols work fine. No errors in Windows event logs. I don't see any denied connection messages in ISA logging regarding ping. Strange. Any help would be appreciated.

paulo.oliveira -> RE: Issue with ping internal interface (21.Jul.2008 1:51:13 PM)
Hi, run ISABPA and see if there´s any misconfiguration. Regards, Paulo Oliveira.

jmfwerner -> RE: Issue with ping internal interface (21.Jul.2008 2:37:07 PM)
Thank you for the reply. I already ran the ISABPA. It reports everything ok - no issues.

tshinder -> RE: Issue with ping internal interface (22.Jul.2008 11:32:07 AM)
Check the ISA firewall's log files to see what is happening to these ping requests. HTH, Tom

jmfwerner -> RE: Issue with ping internal interface (22.Jul.2008 12:37:21 PM)
I query the log with the following settings: Log Record Type = Firewall or Web Proxy Log Time = Live Protocol = Ping I open a command windows on the ISA server, and ping a device on the local, private network. All pings fail. Nothing is logged in the ISA server. If I ping the server itself, pings work fine. Still nothing is logged in the ISA server. If I disable the NIC in Windows, then re-enable the NIC. The server can then ping once again. Items are listed in the log file as normal. After 10-60 minutes, pings will start to fail once again. Nothing in the Windows event logs. Nothing in the ISA logs. Nothing on the Ethernet switch the server is connected to. I'm out of ideas.

tshinder -> RE: Issue with ping internal interface (23.Jul.2008 8:56:28 AM)
Is it only ping that fails, or do other types of connections fail? Thanks! Tom

jmfwerner -> RE: Issue with ping internal interface (23.Jul.2008 9:08:17 AM)
When the "issue" starts to occur. Pings fail, but I am still able to access the server via RDP. Some Internet browsing still works. The ability to VPN into the server from the outside seems to also fail. To make things even better. I built a new server from scratch yesterday and put it in place of this one. I had the same issue occur this morning. Different server, hardware, ports on the switch. Same IP addresses however (both inside/outside).

tshinder -> RE: Issue with ping internal interface (23.Jul.2008 9:27:20 AM)
It sounds like the machine is going into lockdown mode. Check the Event Viewer for that information and also check the log files and some packet traces to see what might be causing this. HTH, Tom

jmfwerner -> RE: Issue with ping internal interface (23.Jul.2008 10:17:26 AM)
I do not see any reference of the server going into lock down mode, either in the event logs or ISA logs. No smoking gun jumps out at me while looking thru the logs.

paulo.oliveira -> RE: Issue with ping internal interface (23.Jul.2008 11:38:55 AM)
Hi, try to capture packets using a sniffer and see what´s happening. Regards, Paulo Oliveira.

varun25 -> RE: Issue with ping internal interface (11.Sep.2008 7:26:32 PM)
Hi Create a rule on the ISA firewall policy allowing PING from all networks to all networks for all users and see what happens? Varun

Page: [1]