• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

ISA server adds routes to W2K routing table

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 General] >> General >> ISA server adds routes to W2K routing table Page: [1]
Login
Message << Older Topic   Newer Topic >>
ISA server adds routes to W2K routing table - 2.May2005 12:58:00 PM   
alothe

 

Posts: 13
Joined: 10.Feb.2004
From: Norway
Status: offline 		I have an ISA 2000 std SP2 (cache mode only) running on W2K server SP4.

I've had problems were the proxy stops working for a few subnets, which subnets varies from time to time.

I had a look in the local routing table on the W2K server, and found that ISA adds routes to each individual host connecting to it.

I've tested with another ISA install, and I cant see the same thing there.

Ive printed the result from a "route print" below:

Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.4.91.1 10.4.91.7 1
10.4.3.62 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.3.88 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.5.19 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.5.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.5.29 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.5.80 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.50.47 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.91.0 255.255.255.0 10.4.91.7 10.4.91.7 1
10.4.91.7 255.255.255.255 127.0.0.1 127.0.0.1 1
10.4.94.29 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.40 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.41 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.44 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.45 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.52 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.67 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.71 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.81 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.94.84 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.99.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.99.31 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.99.36 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.99.38 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.104.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.105.20 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.105.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.105.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.105.27 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.112.31 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.112.36 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.112.43 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.116.34 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.116.60 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.119.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.120.10 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.120.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.120.26 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.120.33 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.121.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.121.24 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.121.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.124.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.124.28 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.124.33 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.125.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.125.23 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.128.20 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.130.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.131.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.137.28 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.137.30 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.140.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.140.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.144.10 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.144.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.145.24 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.146.23 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.146.24 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.148.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.149.20 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.149.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.150.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.153.27 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.155.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.158.24 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.159.20 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.159.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.159.26 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.160.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.161.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.161.25 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.222.21 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.222.22 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.230.14 255.255.255.255 10.4.91.1 10.4.91.7 1
10.4.230.88 255.255.255.255 10.4.91.1 10.4.91.7 1
10.255.255.255 255.255.255.255 10.4.91.7 10.4.91.7 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
224.0.0.0 224.0.0.0 10.4.91.7 10.4.91.7 1
255.255.255.255 255.255.255.255 10.4.91.7 10.4.91.7 1
Default Gateway: 10.4.91.1
===========================================================================
Persistent Routes:
None

**************************

Should ISA be adding these routes, or is there something terribly wrong here?

Any ideeas from anyone would be appreciated!
//A

[ May 02, 2005, 12:59 PM: Message edited by: Arild ]
Post #: 1
RE: ISA server adds routes to W2K routing table - 3.May2005 5:10:00 AM   
AHIT

 

Posts: 1561
Joined: 22.Jul.2002
From: Sydney, Australia
Status: offline 		wow - most bizarre!
1st up I have to say that I'm prety darned sure its not ISA that's creating those route entries. It *could* however be something else INSTALLED/RUNNING on the ISA machine.

I'm wondering however if it's something like RRAS thats creating these entries?

(in reply to alothe)
Post #: 2
RE: ISA server adds routes to W2K routing table - 3.May2005 10:28:00 AM   
alothe

 

Posts: 13
Joined: 10.Feb.2004
From: Norway
Status: offline 		Nice to hear that Im not the only one that finds this weird [Wink]

The only things installed on this box *should be* W2K and ISA...

The server is equipped with two network-cards. And Im currently looking into how this affects the routing table. Im going to stop the server this evening, and disable the card in BIOS, and take it from there.

But you mention RRAS... Would you mind terribly filling me in on what that is?

//A

(in reply to alothe)
Post #: 3
RE: ISA server adds routes to W2K routing table - 3.May2005 11:56:00 AM   
alothe

 

Posts: 13
Joined: 10.Feb.2004
From: Norway
Status: offline 		Hi again...

I have now disabled on of the NIC's in the server, but the 32 bit routes keeps on coming in the w2k routing table...

I have tried restarting the server, with the webproxy service Disabled. I ran the server for about an hour, and saw no routes being added. After I started the webproxy service, the routes started appearing straight away.

I've compared the route print in w2k, with the Sessions in ISA, and find that the hosts with sessions all appear with routes in the w2k table.

My problem on this server is that at regular intervals, it stops working for "some" hosts/networks. This happened again just a few minutes ago, i.e. some hosts could not browse the internet. I checked the sessions and the routing table on the W2k server and could not find the affected hosts. I then added a route manually in w2k to one of the affected hosts, and that made it connect successfully...

Im stumped...

I also tried adding a larger network manually, which covers all our networks, but that did not help.

We host a lot of services for our branches here in my office, all running on Windows servers... MS SQL, File/Print, DC's etc, but none of these add routes to each host connecting...

Any input or comments are appreciated... both by me and my very patient users... [Wink]
//A

(in reply to alothe)
Post #: 4
RE: ISA server adds routes to W2K routing table - 4.May2005 2:34:00 AM   
AHIT

 

Posts: 1561
Joined: 22.Jul.2002
From: Sydney, Australia
Status: offline 		I just did the same on one of my ISA's.
In the active route's there were a number of similar entries.
something like:
route print | find "255.255.255.255"

will show them all. Obviously, anything with a local address in the network location or a .255 address means its a local card or uses the local card to broadcast.

I observed that any of these "temporary" active routes had a metric of 2, so other routes would take precedence if need be so that shouldn't interface with other traffic, specifically also becasue of the 32 bit mask for the network location.

My suspicion is that the Routing & Remote Access (RRAS) service used for VPN's may be creating these route entries in my instance. Of interest, do you have the RRAS service running?

(in reply to alothe)
Post #: 5
RE: ISA server adds routes to W2K routing table - 4.May2005 10:04:00 AM   
alothe

 

Posts: 13
Joined: 10.Feb.2004
From: Norway
Status: offline 		Ahit...

Thanks for bearing with me on this... I appreciate it [Smile]

I checked the RRAS service, and its not running, and the startup is set to Disabled.

I also tried setting up ISA on a Win2003 server, and got the same issue...

I've opened a support-call with MS as well... I'll post any answer from them. [Smile]

//A

(in reply to alothe)
Post #: 6
RE: ISA server adds routes to W2K routing table - 5.May2005 8:04:00 AM   
AHIT

 

Posts: 1561
Joined: 22.Jul.2002
From: Sydney, Australia
Status: offline 		No probs! [Wink]
Looking forward to any answer you may get...

(in reply to alothe)
Post #: 7
RE: ISA server adds routes to W2K routing table - 13.May2005 9:16:00 AM   
alothe

 

Posts: 13
Joined: 10.Feb.2004
From: Norway
Status: offline 		Promised an update...

On monday this week an expert (MS Gold Partner) visited for a "healthy" fee, to do an analysis on my problem. Fortunately, my elusive problem hit the server practically when he walked in the door. The ISA refused any more sessions, but we could ping the server on both IP and hostname, map shares, the works...

We rebooted the server and the service was backup up. He checked the logs, event and ISA, looked at the config, but came up with nothing.

In the afternoon, after a lot of head-scratching and so, we installed ISA 2004. The differences between 2000 and 2004 are many, but one of them is the way it handles sessions. In ISA 2000 the routing is done in large part by the OS, while in ISA 2004 its the other way around.

Long story short, installing ISA 2004 solved my problem! And it gave me a lot more options in logging and monitoring. Performance-wise it is far superior as well.

//A
Happy Customer

(in reply to alothe)
Post #: 8

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 General] >> General >> ISA server adds routes to W2K routing table Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts