Forwarding is not enabled on the external adapter. This might prevent remote client traffic from reaching the internal network. (Network Steve Forum)

Forwarding is not enabled on the external adapter. This might prevent remote client traffic from reaching the internal network.

Hello,

We have DA installed and working fine, but suddenly getting this error:

Forwarding is not enabled on the external adapter.

What does it means, what should I do?

July 22nd, 2013 8:25am

Hi,

Let start with the basics. What is the firewall profile of your external network adapter?

If you have two network cards on your URA box, please be sure that your server cant' reach any of your domain controllers using the external network card.

have a nice day

Free Windows Admin Tool Kit Click here and download it now

July 22nd, 2013 10:46am

I am seeing similar kind of error. What all things should i look for apart from the firewall rule?

-Ashish

May 21st, 2015 12:12pm

Similar case with one or two network interface?

Free Windows Admin Tool Kit Click here and download it now

May 21st, 2015 12:21pm

with two network adaptor.

May 21st, 2015 1:12pm

Can your provide the output for NETSH INTERFACE IPV6 SHOW INTERFACE <LAN interface> and NETSH INTERFACE IPV6 SHOW INTERFACE <Public interface>. You might have the forwarding parameter configured to disabled.

Free Windows Admin Tool Kit Click here and download it now

May 21st, 2015 2:47pm

The first one is for LAN and Second one is for External.

May 21st, 2015 3:02pm

Hi,

Does not seems to be a configuration problem at this level. Can you confirm that firewall profile of the LAN interface is Domain profile? Internet facing interface must be public/private.

Free Windows Admin Tool Kit Click here and download it now

May 21st, 2015 3:46pm

If that is correct too, then what should i check.

-Ashish

May 21st, 2015 3:49pm

How can i check that using a powershell command. I am using windows 2012 server core edition as my base OS.

Free Windows Admin Tool Kit Click here and download it now

May 21st, 2015 7:38pm

get-NetConnectionProfile

May 22nd, 2015 3:37am

The issue was with the profile. Thanks Benoit for your help on this.

-Ashish

Free Windows Admin Tool Kit Click here and download it now

May 22nd, 2015 10:23am

i am seeing same error on same computer and the external interface is showing domainauthenticated. i tried to run the following command but that failed work get-netconnectionprofile -interfacealias "Name of the Interface" | set-netconnectionprofile -networkcategory Public. I also tried deleting the registry key but that didn't work either " HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\Nla\Cache\IntranetAuth ". My last resort should be to disable the traffic from external interface to the domain controllers.

-Ashish

June 17th, 2015 2:03pm

It's hard to overide domain firewall profile, especially if the server can reach your domain using the external network interface. IMO, your only solution is to be sure that external network cannot be used to communicate with your internal network, so a dedicated VLAN.

Free Windows Admin Tool Kit Click here and download it now

June 18th, 2015 3:30am

This topic is archived. No further replies will be accepted.