-
December 13th, 2001, 02:04 PM
#1
Registered User
Multiple IP assigned to one NIC problem
Have a Win2k server setup with ISA Server acting as a firewall. Behind it I have 2 FTP sites running on 2 seperate machines with the external addresses on the firewall forwarding FTP requests to those sites. The problem is that when Someone makes a request for FTP site B the response from the server goes out with the IP of Site A so any firewall at the client side is blocking the responses since there are no clients trying to establish a connection with that IP address. Is there anyway of having it set to send back responses with the appropriate IP address on the data?
I'd rather be riding my motorcycle
"I gotta have more cowbell, baby" Bruce Dickinson(Christopher Walken)
-
December 13th, 2001, 11:15 PM
#2
Now THAT'S an interesting problem. If I find anything out I will let you know. Have you run that by Microsoft??
"Beer is proof that God loves us and wants us to be happy" -Benjamin Franklin
-
December 14th, 2001, 02:10 AM
#3
*Knows this is above his head but would be very interested in hearing what the pros say.*
-Danyll
Danyll
If we live in an insane world, how can I be normal if I'm sane?
"I'm reminded of the immortal words of Socrates who said-'I drank what?'"-Val Kilmer (Real Genius)
-
December 14th, 2001, 02:20 AM
#4
this might be stupid question but..
Do you have both ftp servers on different ports and are you forwarding the correct ports to the correct machines (IP Addresses)?
James
-
December 19th, 2001, 03:59 AM
#5
Registered User
I am working on it right now...
I have a friend who wrote the ISA book, and she is looking into it too...
I may need to set this up in my lab to figure it out, but it would be worth it, so hang tight...
Matt
"If you have been tempted into evil, fly from it. It is not falling into the water, but lying in it, that drowns"
-
December 19th, 2001, 07:10 AM
#6
Geezer
Shadowking
[quote] I may need to set this up in my lab to figure it out, but it would be worth it, so hang tight... <hr></blockquote>
Who the f are you? Batman????
-
December 19th, 2001, 07:43 AM
#7
Registered User
Raven
Quote:
--------
"Dont whiz on the electric fence"
- Ren & Stimpy.
-
December 19th, 2001, 04:44 PM
#8
Registered User
[quote]Originally posted by confus-ed:
<strong>Shadowking,
Who the f are you? Batman???? </strong><hr></blockquote>
I am MUCH more diabolical than Batman.
Naw. I am a writer, but I have a lab that I control for a group of writers so that we can set up network scenarios and document them. Right now is a down time for that lab, so when I have some free time, I will see what I can do.
Matt
"If you have been tempted into evil, fly from it. It is not falling into the water, but lying in it, that drowns"
-
December 19th, 2001, 08:26 PM
#9
Registered User
OK, been doing some thinking.
Try to unplug or disable that interface and see if you can connect at all.
It sounds like you cannot send packets from the second interface.
I will have to wait until next week to set this up, but I will take a look at it.
Matt
"If you have been tempted into evil, fly from it. It is not falling into the water, but lying in it, that drowns"
-
December 20th, 2001, 08:30 AM
#10
Geezer
bump.
I wanna see shadowkings answer in full, when he's finnished righting the worlds wrongs.....
-
December 20th, 2001, 08:22 PM
#11
Shadowking get out of my lab and tell them.
Wot? No Superhero...
-
December 21st, 2001, 07:56 AM
#12
Registered User
Sorry all,
Maybe I forgot to check the e-mail notification.
czone - Not a stupid question, I always try to start with the basics and it would be a question I would ask someone else. The FTP sites are both on port 21. I know I can do different ports but I think my problem will still continue of assigning the wrong IP on the rebound. I am using the server publishing rules to decide who goes where by the IP address they come in on.
iamtheman - Have not run this by Microsoft, doesn't that cost money?
DSTech - you just get to read about it, I had to figure it out
confus-ed - thanks for bumping it because I probably would of not seen my own topic even though I check this forum like a 100 times a day.
ShadowKing - which interface are you referring to. I have three NICs on the server. One for LAN, One hooked up to the cable modem with the 2 external IPs, and a third hooked to DSL that the ISA Server rolls over to as a backup if the cable modem should go down so the internal network can keep browsing the web. Are you speaking of Schinder?
Again, sorry I have been missing my own topic, thanks for al of the replies, I hope to keep tabs on this now. We have gone down to one FTP site but I would like to go back to the old way to seperate the sites. Plus, whats the point of paying for 5 IP's if your firewall can't use them correctly.
Tony
I'd rather be riding my motorcycle
"I gotta have more cowbell, baby" Bruce Dickinson(Christopher Walken)
-
January 2nd, 2002, 02:00 AM
#13
Registered User
OK, guys, sorry I have not gotten to this one...
Things have been busy this week when they were supposed to be dead...
I am aware and working on it. I wanna find this one out myself...
Sooooo... I really do have to do my work at work, but when that work is done, then I can do my fun stuff...
Matt
"If you have been tempted into evil, fly from it. It is not falling into the water, but lying in it, that drowns"
-
January 2nd, 2002, 12:47 PM
#14
Senior Member - 1000+ Club
Just get an AGP one, it'll go faster as well.
Yes, I know.
I'm in charge and I say we blow it up
-
January 5th, 2002, 03:48 PM
#15
so.. you are able to use port 21 on 2 different servers? Cause some routers can only have a single port going to certain machine..
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Bookmarks