Hi:

Possible things to check:

1. Check the BPA.

2.  Disable all but ONE nic on the server.

3.  Verify you can ping 4.2.2.1 from the server.

4.  Change the DNS settings on the server to those of the ISP temporarily.

5.  Open Admin Tools - DNS and check if using Root Hints or DNS Forwarders.  If Forwarders verify they are correct.

6.  See if the BPA offers any help:

https://technet.microsoft.com/en-us/library/dn408640.aspx

Hi:

Possible things to check:

1. Check the BPA. - I don't know what the BPA is.

2.  Disable all but ONE nic on the server. - The 2nd NIC was already disabled. Only 1 NIC is active.

3.  Verify you can ping 4.2.2.1 from the server. - YES

4.  Change the DNS settings on the server to those of the ISP temporarily. - I did but no difference

5.  Open Admin Tools - DNS and check if using Root Hints or DNS Forwarders.  If Forwarders verify they are correct. - Forwarders are set to 8.8.8.8 and 8.8.4.4  Root Hints are also 8.8.8.8 and 8.8.4.4

I don't see any particular settings on the Linksys router. I can see that my server shows 'Internet Access' , just can't access any web pages or Windows Updates. Any other ideas? 

Turn on Windows Firewall, If its already on then turn it off and then check.

Disable Chimney and TaskOffloads on the NIC.

What if you give the 8.8.8.8 as the Primary DNS on the NIC.

I've got an issue since the server was first installed in the network. It's running 2012 R2 Essentials. All the PC's in the domain can access the shares and internet. My server can't get any internet access, windows updates are not working. I can ping the gateway and Google DNS from my server.  nslookup is resolving.  I can ping other PC's from my server. I can ping from the PC's to the server. I can browse to the server from a PC.  I have set the DNS on the server as the local IP Address. I have checked the router settings. I have replaced the router with a Sonicwall, but still had the same issues. I was going to install Wireshark and do some packet capturing. Not that familiar with Wireshark, so not sure what to exactly look for.  Any help would be appreciated. 

Turn on Windows Firewall, If its already on then turn it off and then check.

Disable Chimney and TaskOffloads on the NIC.

What if you give the 8.8.8.8 as the Primary DNS on the NIC.

Windows Firewall was already turned off. I'm not sure what settings relate to Chimney and TaskOffloads on the NIC. I have provided screen shots. I setup 8.8.8.8 as the Primary DNS on the NIC, but still can't get Windows Updates and no web browsing.  This is has been setup for about a year like this from what I've been told. Several engineers looked at the issue. It's an HP Proliant server.

6.  See if the BPA offers any help:

https://technet.microsoft.com/en-us/library/dn408640.aspx

I ran BPA and no issues found. The existing Linksys router was replaced by a Sonicwall and still had the same issue with the server. I don't think it's a router issue. I've checked Windows Firewall Advanced Security. Nothing is blocking Port 80. I still don't have any idea why I can't browse the internet and Windows Update is not working.No proxy server configured. 

Turn on the Firewall.

netsh int tcp set global chimney=disabled

I have the same issue. I am running 2012 Essentials (not R2).

My solution. Execute cmd as administrator.  Then ipconfig \flushdns.  Then ipconfig \registerdns.  Wait for a few minutes and that's it for me.

Hope it helps.  

Sergio

• Edited by Sergio A Estrada Tuesday, July 28, 2015 2:28 PM

I tried using netsh int tcp set global chimney=disabled

I tried doing a ipconfig /flushdns and ipconfig /registerdns and still can't access the internet. I can't connect to an FTP site either. 

I'm going to start doing some packet capturing using Wireshark.  

1. Ping to external IP address proves connectivity only.

2. Ping to external FQDN proves both, connectivity and name resolution.

3. However when ping response is not allowed on target external computer, you should another external server (preferably this one that can be pinged by another computer).

4. Check security settings on your server and make sure that there is no barrier for MS update servers. Make sure that the same is true when acessing other secure web pages (https).

5. FTP is another story, wht you should do depends on the type of FTP(S) server (passive, active, secure,...)

6. Hope your workstations DNS settings points to local server DNS only and not to public one.

7. Hope you have not multihomed server.

8. What DNS configuration do you have in server to resolve external servers (forwarders,...)?

9. Share log files from Wireshark if you feel like not to analyze them, share ipconfig on workstations and server, try to analyze healths of DC with respect to DNS,....

HTH

Milos

Open DNS from admin tools.  Right click servername>properties>forwarders.  Is that entry for your router/gateway? 

Monitoring tab select both test and run.  Do they pass?

Appreciate all the replies.

So, I have done ipconfig /all.

Here are my DNS Forwarders:

I have a Linksys BEFSR41 and the DNS is set to Google's DNS on my router. Workstations point to my server for DNS and they get on the internet.

The router is at dot 254?  DNS on the server probably only needs 127.0.0.1, the dot 03 is redundant

Has IE gotten set to use a proxy server that is not there per chance? (I see above now that you say IE is not set for any forwarders)

from a cmd prompt telnet msn.com 80

It should just move down a line on the black screen if it is working  telnet msn.com 77 to see it not work for comparison

oh, and there is no kind of safe surf AV installed on the server?

Not sure so I keep throwing darts LOL.  How about reset IE to defaults

I also see you say it has been this way for a year?  Was it moved here from a different location IP scheme? It has never done windows up

I am going to cut grass LOL

Compare with a working box.  Anything that says proxy in particular

 1- Close IE
2- Run regedit
3- Goto HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings

Ok, so I have reset IE to defaults. I have run telnet msn.com 80 and it jumped down a line, so I think it's working. I ran telnet msn.com 77 and just said 'connecting to msn.com...' Could not open connection to host on port 77. There is no AV on the server at all.  From what I understand, the previous technician installed the OS using the HP OEM disk. Had initial issues with getting any windows updates, then reinstalled again in our office environment. Then brought the PC onsite to the customers. It never worked, no updates, couldn't get online.

I checked the registry path compared to another 2012 R2 Essentials. Nothing that says proxy, but there are lots more entries.

So, it's been this way for 1 year.  The users are able to work day to day.

What if you put your ISP's IP address as the forwarders.

If you think something is wrong with IE then get chrome or firefox on this machine and check.

Is there any switch in between? try changing the port on the switch.

ARP chache may be.. not sure.