Windows Server 2003 RAS can't ping machines in DMZ

We've got a small LAN and a DMZ separated by a firewall. All the machines on the LAN can ping the machines in the DMZ, except one. The machine in question is a Windows 2003 server configured as a RAS server. This machine can be pinged by the DMZ servers. I think it has something to do with the server being configured for RAS. I'd appreciate any suggestions or ideas you might have to allow the server to ping the DMZ machines.
You are correct. Most RAS servers are pre-configured to block ICMP traffic. Internet Control Message Protocol (ICMP) packets used by the ping command are filtered out. To turn on the RAS server to respond to ICMP (ping) packets, add an input filter and an output filter that permit traffic for IP protocol 1 (ICMP traffic).

See the Windows Server 2003 Help and Support Center for more information about how to add a packet filter. Click...

Start to access the Windows Server 2003 Help and Support Center.

This was first published in October 2003

Dig Deeper on Windows Server and Network Security



Find more PRO+ content and other member only offers, here.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:









  • VDI assessment guide

    Wait! Don't implement VDI technology until you know your goals and needs. A VDI assessment should consider the benefits of a VDI ...

  • Guide to calculating ROI from VDI

    Calculating ROI from VDI requires a solid VDI cost analysis. Consider ROI calculation models, storage costs and more to determine...

  • Keep the cost of VDI storage under control

    Layering, persona management tools and flash arrays help keep virtual desktop users happy and VDI storage costs down.