Can't Ping R2 server in same subnet, but can ping outside subnet.!!

Morning to all -

I just spent the last 6 hours with dell gold software support team trying to
figure out the following occurrence:

The upgraded R2 DC does not accept incoming connections, but it appears it
accepts certain connections. Particularly those related to directory services.

e.g. telnet server ip 389 from the mail server works. \\serverip or
servername brings up the shared printers and folders perfectly.

outbound traffic and icmp works fine, inbound icmp returns a time out.

scenario:

Windows 2000 SP4 DC in-place upgrade to windows 2003 SP1 then upgrade to R2.
connections to and from box were fine on 2003 sp1.
downgraded NIC drivers to match other r2 DC on identical server
hardware/model
installed new nic drivers and proset
upgraded to R2.
rebooted and noticed a ton of errors with services hanging upon boot.
checked connection to the box from workstations and servers, but all requests
timed out.
i made sure ICF was disabled.
i disabled IPSEC and entered dword value for ProhibitIpSec - nothing
i then enabled ICF configured exceptions - explicitly allowing ICMP, and
still nothing.
reset the TCP/ip stack and winsock using netsh, nothing
servers has two nics, one of which is disabled. changed binding order so
active is on top -- nothing
reinstalled the binaries of windows 2003 sp1 and upgraded to r2 again --
nothing.

i'm at a lost of ideas and sure could use the vast resources the contributors
of this group may have or know of.

**To make matters even more confusing, workstations located outside of this
main office site that are connected via ipsec vpn can ping this server!!!

The bad part it may not be blocking just ICMP.

--
---
I do what i got to do in order to do what i want to do...

Message posted via WinServerKB.com
http://www.winserverkb.com/Uwe/Forums.aspx/windows-security/200607/1

.

Relevant Pages

  • Re: [Full-Disclosure] ICMP - Today India, Samoa, and Iran are in the tank - back to orginal thread D
    ... >>New connections to the server must be implecitally allowed, ... >have to allow some TCP or UDP connections to it... ... >the firewall does this. ... >My point is just to show that we do have now solutions to filter ICMP in ...
    (Full-Disclosure)
  • Re: Cant Ping R2 server in same subnet, but can ping outside subnet.!!
    ... believe something went wrong with the upgrade to R2 and there may not be an ... in the server general and networking newsgroups as your problem is not ... The upgraded R2 DC does not accept incoming connections, ... outbound traffic and icmp works fine, inbound icmp returns a time out. ...
    (microsoft.public.security)
  • R2 in-place upgrade bug ? ..HELP
    ... The upgraded R2 DC does not accept incoming connections, ... e.g. telnet server ip 389 from the mail server works. ... outbound traffic and icmp works fine, inbound icmp returns a time out. ... downgraded NIC drivers to match other r2 DC on identical server ...
    (microsoft.public.windows.server.active_directory)
  • Re: SBS 2003 IIS BASED SERVICES FAIL INTERMITTENTLY
    ... If I read your post correctly, you have a switch where the SBS ... Run DHCP server on your SBS, and set all client machine nics to dynamic. ... Once you have your nics configured, run the Connect to the Internet wizard, ... QUESTION1 - what is REFUSING CONNECTIONS? ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS Exchange 2003: too many "Current Sessions" opened
    ... So far everything is good and now I'm just monitoring my exchange. ... get the SMTP service to stop hanging in the first place. ... won't have dead connections. ... work for now until I put into production new server hardware with sbs 2003 ...
    (microsoft.public.windows.server.sbs)
Loading