I am getting the following errors in the app log after a user connects to the VPN:
ISA Server detected routes through the network adapter Local Area Connection Green that do not correlate with the network to which this network adapter belongs. When networks are configured correctly, the IP address ranges included in each array-level network must include all IP addresses that are routable through its network adapters according to their routing tables. Otherwise valid packets may be dropped as spoofed. The following ranges are included in the network's IP address ranges but are not routable through any of the network's adapters: 10.1.0.xxx-10.1.0.xxx;. Note that this event may be generated once after you add a route, create a remote site network, or configure Network Load Balancing and may be safely ignored if it does not re-occur. EVENT ID 14147
The routing table for the network adapter Internal includes IP address ranges that are not defined in the array-level network VPN Clients, to which it is bound. As a result, packets arriving at this network adapter from the IP address ranges listed below or sent to these IP address ranges via this network adapter will be dropped as spoofed. To resolve this issue, add the missing IP address ranges to the array network. The following IP address ranges will be dropped as spoofed: Internal:10.1.0.xxx-10.1.0.xxx; EVENT ID 21265
I have tried to troubleshoot on these errors but cannot fix it. The users are unable to ping anything on the network or RDP to their desktops when this error occurs.
It happens when they use the default gateway on the network and also when they do not use the default gateway.
It doesn't happen all of the time either, only sometimes.
most this thing happened if you are using VPN. let's say if you are connecting vpn from home to office which is your VPN server is configured as ISA server, the event of error like you faced, it does not recognize your IP in the network set in ISA server.
forgive me on my poor english.
_____________________________
Aliyani Sabrey
MCSE+Security, MCSA+Security, ISA Server 2004 & 2006
even though you define the network set of your IP address of ADSL broadband, you still have the alert like previous one. network set is defined if you have adapter in isa, LAN segment if I m not mistaken..
I have the similar problem like yours before. what I do, I just ignore it and the network does not drop at all.
_____________________________
Aliyani Sabrey
MCSE+Security, MCSA+Security, ISA Server 2004 & 2006
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA 2006 Firewall] >> VPN >> VPN issue accessing internal resources 
VPN issue accessing internal resources - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread