Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...}

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ smallbiz
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Calendar Permissions Hi, is there a quick way to give everyone permission to view everyone else's calendar in Outlook without having to set permissions on each person's Outlook folder Thank Jon Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152787
  - 2
    - Doing Upgrade tonight, any advice? I have my upgrade software, CALs, new Trend SMB, Veritas 9.1. From what i understand I will block port 25, remove Trend 5.1 from server/workstations. Remove Veritas Backup 8.6 for SBS. Run SBS upgrade on server, install Trend SMB, Install Veritas, run all patches on server, install Trend on all workstations. Open up port 25 again. Anything I am missing? Thanks, Dougals Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152786
  - 3
    - Doing Upgrade tonight, any advice? I have my upgrade software, CALs, new Trend SMB, Veritas 9.1. From what i understand I will block port 25, remove Trend 5.1 from server/workstations. Remove Veritas Backup 8.6 for SBS. Run SBS upgrade on server, install Trend SMB, Install Veritas, run all patches on server, install Trend on all workstations. Open up port 25 again. Anything I am missing? Thanks, Dougals Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152785
  - 4
    - Virus extension question.... I have an application that uses .job extensions. Would this be a problem to exclude this extension from real-time scanning? I'm not sure if there are viruses that may use a .job extension. JoeMcc Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152783
  - 5
    - VPN problems Hello, When a user connects via an IPSEC tunnel, the tunnel comes up fine and you can ping the server, but you cannot map a drive, or browse the network. I have put in an LMHOSTS and HOSTS file, setup WINS, but all to no avail. I have got the exact VPN setup somewhere else and it works fine, can anybody identify what might be causing the problem? Many thanks, Mark Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152782
  - 6
    - can't ping When I am at a PC that is outside our network and try to ping the server, I get a response timed out error (DNS maps our domain name to the proper IP). We are hosting a website and it works fine so obviously the site is up and running. Could IMCP be turned off? I haven't made any changes to the default. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152775
  - 7
    - Exchange Rejecting Some Outgoing Mail We've set up our independent salespeople with POP3 email addresses at our ISP (e.g. larry@xyz.com). These salespeople do not have network accounts and do not use Exchange. While traveling (100%) they self-manage their email using the ISP's webmail tool. We do not use our Exchange POP3 connector to download their emails -- only internal users. No problems there. Problem: When my INTERNAL Exchange users (user1@xyz.com) try to send email to larry@xyz.com, Exchange sees the xyz.com domain and figures it is internal mail. Obviously, larry@xyz.com doesn't exist in Exchange, so the mail is rejected. Does anyone know of a way to 'trick' Exchange to actually send the salespeople's mail. For corporate visibility reasons, our independent salespeople must have emails ending with xyz.com, even though they do not actually log-in to our network. Thanks, John B Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152773
  - 8
    - best practice for .... Hi! I have a client who we want to possible move to sbs2003 premium. My question is this: they have two static ip's (one for the web and one for their WAN side). Currently, they have a router that directs dmz to the web server and the other to their lan switches. They are currently not a domain, only peer2peer. What is the best practices if they want to have their own web server (I like keeping it separate from their sbs box) and having the sbsbox be the pdc? Any thoughts would greatly help. Thanks. MArcia Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152772
  - 9
    - terminal server problems Hi, I'm trying to get terminal server up and running in remote admin mode. It works fine internally but when I try to access it externally I get an "The specified remote computer could not be found." error. I published the server through ISA by creating a protocol definition using TCP, port 3389, inbound. I server published the definition by supplying the external and internal nics (2 nic setup). We do have a router sitting in front of our ISA server. We have dsl and this router was installed by our service provider. All traffic should route through the router. I have server/web published a number of protocols on the server so I'm fairly comfortable with ISA. I just don't see what could be the issue. I tried to telnet to port 3389 and it said connection could not be established. But I don't know if you can even use telnet to test terminal server. Any ideas on how I can find out where the bottleneck is? I can't even tell if the request is even making it to the server. Any help would be appreciated. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152771
  - 10
    - RRAS Connection? Need a user to connect to our network from a variety of countries. What is the best way to achieve this for someone who is not exactly computer literate. Would it be RRAS he uses Windows XP. Cheers DaveT Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152768
  - 11
    - upgrade from NT 4.0 to SBS2003 questions I have an NT 4 single domain exchange 5.5. Just 12 users or so. No IIS, pretty much file sharing, printing and e-mail. External firewall no multihoming on server. Two servers, a PDC and BDC (BDC hosts all project files and that's all it does. Do I need to reinstall NT 4 as a server? Or will the upgrade to SBS 2003 domain allow me to keep it as a file server) My question is should I risk doing the migration that Microsoft provides info for? In the past I have always thought it better to avoid migrations and start fresh. In this case would it be difficult to start with a fresh network install? Could I run the two networks concurrently for a time? It seems pretty easy to export Pst files and reimport to the new SBS2003 server. What I am unsure about and have no experience with is the new Active Directory domain structure. Any hints, or links to outside resources or case studies etc. would be great. Thanks! Stan Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152766
  - 12
    - Connecting SBS to the internet sing 1 NIC Hello, I have to connect my SBS to a business ADSL network (Cisco Router) using a single NIC. There used to be a article on the de smallbizserver.net site but it is no longer there. Any sugestions how to go about this? And what would be best practice using ISA (proxy) or not? I want static IP adresses for my clients but I want my clients to get al there IP information (DNS/gateway) when the boot, how should I configure DHCP? Thanks in advance Victor Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152765
  - 13
    - Installation Question Doing a bare install this weekend; Order of Installation: Install from Original Disks then SBS SP1 W2000 SP3 Exchange SP3 ISA SP1 W2000 SP4 Exchange SP3 Roll Up Patches (from a CD) IIS Lockdown ISA Feature Pack However, I'm not sure at what point I can start SBS SP1; do I need to complete a full installation first of SBS first? Chris Curtis Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152759
  - 14
    - installation path problem with changing sbs options When I need to change my sbs installation options, sbs asks for the sbs cd's. But my local cd-rom is broken so I use the one from another computer. SBS does not seem to like this because the location I specify does not work. Also when I copy the installation files to the local drive SBS does not accept this. Can anyone tell me what is going on? Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152757
  - 15
    - SBS CAL Compatibility Hi, Have SBS4.5, want to add some more CAL's. Are SBS200 or SBS2003 CAL's backward compatible? Were still with 4.5 due to some bespoke issues, so we can't migrate for a while yet. Regards, George Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152756
  - 16
    - SBS Consultants Any SBS consultants in the Hertfordshire / Essex / London Area in the UK ? Regards Antony Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152753
  - 17
    - Terminal Services Session hanging W2K TS with SBS2K. . The servers have been up and running for about 3 weeks and everything has been working just fine but the following has happened a few times for the first time in the last 3 days. When a user is logged into a TS session and has Outlook open and is trying to do some other work normally in Office, the whole session just hangs and have to wait about 5 to 10 minutes to be able to close all applications and then log off. When the user has closed all applications and logged off and then logs on again, evrything seems to work again. I have got Office XP SP1 installed on the TS. There is no specific time of day when the sessions have hung so am at a bit of a loss as to what could be the problem. Thanks in advance Regards Antony Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152746
  - 18
    - Low Memory on SBS2K When I open the SBS Admin Console and look at the memory counter under Server status, the percentage free memory has been dropping down to about 4 or 5 % at certain times of the day, which works out at about 40 to 50 MB free memory (Have 1 GB of RAM) ? Is there some process that is using a lot of memory ? It has been recommended to me to put more RAM into the server but I have been following the message thread a few days ago about Exchange errors / memory fragmentation, when you put more then 1 GB of RAM in the SBS2K server ? The Paging file is set to 1.5 GB. Should I increase this ? Any possible recommendations or is this low memory not a problem ? Thanks in advance. Regards Antony Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152745
  - 19
    - OWA page cannot be displayed I have a SBS2k box with windows 2000 clients internally and externally. I have had no real problems to date with OWA until now. All of our external staff can access OWA and browse through their inbox but as soon as they try to open one of the e-mails it comes up with "Page cannot be displayed" in a new window. It is doing it to all of our remote clients now and im struggling to see what is the cause of the issue. Just to add to the issue, all the mails that cannot be opened in the users OWA can be opened internally with Outlook. If anyone can help it would be much appreciated. Thanks in advance. Andy C Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152744
  - 20
    - Connector for POP3 Hi all, I badly need your help, I use my Exchange Server 2000 to download mails from my ISP server to be resend to the users in my network. I Have already setup the Exchange System Manager --> Server(exchange) --> Administrative Groups --> Connectors --> Connector for POP3 Mailboxes. SOMETIME it happen that one or two users tell me that they are not receivinig their mails. My exchange server 2000 do download the mails from my ISP but it dont send it to the user (Note that the users do get internal mails but not external (Mails from ISP)), So i have to stop all exchange services and restart them 2 or 3 times so that they restart getting their mails, but the mails that they didnt got in that labs of time have disappears.They never got their mails back, they will only get new coming mails It's never the same user who got the problem, its Alternetive user. I have already update all the pack (even my SBS2000 Pack It use to happen about 1 every 2 wee Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152740
  - 21
    - Monitoring internal emails Its late can't think... I know how to set up monitoring all emails...Is there a way to monitor just internal ? -- www.smallbizserver.net (2000 and 2003) microsoft.public.backoffice.smallbiz2000 (2000 NG) microsoft.public.windows.server.sbs (2003 NG) http://groups.google.com/groups?hl=en&safe=off&group=microsoft.public.backoffice.smallbiz2000 http://groups.google.com/groups?hl=en&lr=lang_en&ie=UTF-8&safe=off&group=microsoft.public.windows.server.sbs http://www.sbslinks.com/ Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152728
  - 22
    - Trend virus coincidence, or cause for concern? Two servers auto-emailed me today with msgs about virus infection in (I think) the Index Server indexing process. This is unusual - what do you think? Msgs below ------------------------------------------------------------- virus Scan: REAL-TIME SCAN Virus: (See view log) File: C:\WINNT\TEMP\gthrsvc\flt10300_10360.eml Computer: SVR2 User: SYSTEM Infection source: SVR2 Action: CLEAN FAIL ------------------------------------------- Scan: REAL-TIME SCAN Virus: (See view log) File: C:\WINNT\TEMP\gthrsvc\flt9504_11032.EML Computer: SVR1 User: SYSTEM Infection source: SVR1 Action: CLEAN FAIL ------------------------------------------- Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152726
  - 23
    - Problem opening another users mailbox, Please Help I have an odd problem heres what has happened. 1. Created a user and a mailbox. (SBS 2000) 2. Logged in as that user opened outlook and assigned 3 users as delegates with full permissions. 3. Went to a delegate computer and in the advanced tab (Outlook XP) added the user that was created as a mailbox to be opened when Out look opens. 4. When opening Outlook on the client computer, It comes up in the list but when clicking on the users mailbox I get the message.."Unable to display the folder. Microsoft Outlook could not access the specified folder location. The operation failed" 5. If I go File-Open-Other Users mailbox, I can in fact view the mailbox. And see email in it and reply and so on. One thing I did do which may have had an impact was when I created the user and Mailbox, I made an error with the display name, and I removed the user and Mailbox, and recreated it with the only change being the display name. Have tried, Rebooting, Deleting and recreating again, deleting the client outlook profile and recreating it. I feel it must be in Exchange but am unsure what to do next. Any help would be appreciated. TIA Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152724
  - 24
    - CEICW - what happened to all of the posts? What happened to all of the posts on this subject. I left a message and noted that there were a few similar to my own posted later on. I come back a few days later and they've all gone! Where is this black hol.... Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152722
  - 25
    - Can the SBS2000 POP3 Connector handle DomainPOP? Our company email is handled by DomainPOP - a global POP mailbox at our ISP. Until now we've used Chimera EFS to download mail from the ISP into Exchange 2000. This works very well, except the EFS utility keeps hanging at login to our ISP's mail server. Can't really complain since it's free! Can the SBS POP3 connector handle this type of mailbox or will I have to create a seperate mailbox at the ISP for each email address in our company, and then setup a corresponding entry in the POP3 connector? Unfortunately retrieving by SMTP is not an option as we are on a dialup connection. Many thanks in advance. Paul. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152720
- Next
  - 1
    - SBS transition to full Help! There is no info on how you upgrade from SBS to the full blown version. In particular do I have to kill my SBS server and then install the individual transition versions What I want to do is to have a separate SQL service and initially we want to disable SQL server on the SBS system and install SQL on one of my Windows 2000 clients. I've got a consultant implementing uSoft CRM who thinks the max data set for SBS is not big enough. Information on SBS is very hard to come by. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152719
  - 2
    - write to security logs Hi, How do you write to/initialize the system security event log (in the Event Viewer)? I want to track when people log onto the network via Terminal server. Is this the place to track this? (I asked a similar question before but got no replies. Hopefully I have explained myself better this time.) Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152718
  - 3
    - SBS2003 - POP3 Connector I am getting an event entry (Event ID 1052/Source:POP3 Connector) listed below. This is happening every 15 minutes as scheduled. In addition it is sending out the subject messages to people who have sent emails to one of the accounts on the server. I can stop it by shutting down POP3, but need to know how to find the offending messages to delete them. The Microsoft Connector for POP3 Mailboxes will reattempt delivery of message <id: {90824F3B-8433-4560-91FD-91923D9DB1FE}>. The message was processed previously by the connector but could not be routed to the correct recipient(s). If you continue to see this message, you should reinstall the Microsoft Connector for POP3 Mailboxes. To do so, run Small Business Server Setup again, and reinstall the Networking component. Kevin Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152717
  - 4
    - Messenger Hi, I need to allow some users to be able to accept MSN Messenger features (desktop sharing, whiteboard, video conf etc.) from external parties. Can you recommend how I should configure ISA to allow this? Or is there another way of doing this such as using Netmeeting Thanks Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152710
  - 5
    - What Server should I use? Help! Hello. I'm working for a small business which is moving, and I've been given the systems responsibility. We are keen to implement a server at the new site (we're currently peer- to-peer), but I have no idea what version to go for. Cost is a big issue. We will initially have seven users, most running Win2K but some will be XP pro. We need the server to hold databases, files and we'd like to instigate roaming profiles too. Data security will be extremely important. We will also have a 512k net connection, potentially with a VPN connection to another site (we're planning to get a VPN Router to deal with this). Any input would be great. Thanks very much. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152707
  - 6
    - Bott partition resizing or cloning Good afternoon This is slightly OT - can anyone advise me on a utility which will allow me to enlarge the boot partition on my SBS 2000 server or move the whole contents of Disk0 to a new drive and make it bootable? The default installation on my Dell Poweredge 1400 partitioned the 18GB SCSI drive as a small FAT partition (for Dell system utilities) a 4 GB drive C and a 132GB drive D (both NTFS). I am down to about 280MB on C: and no amount of housekeeping can get this above around 400MB. I have two other drives in the box (36 and 68GB) respectively and I thought that the least dangerous thing to do was clone disk0 to the 68GB drive, then swop the SCSI disk IDs. Partition Magic is the thing most people recommend for partition maintenance but this is a workstation product which won't run on servers. The server version (called Volume Manager) seems to be volume licensed at around $600 minimum. This is too much money for one-time use. I bought Paragon's Hard Disk Manager (which includes their Partition Manager 5.5) but I can't get this to work properly. I've tried emailing Paragon for technical support but this is a German product - the manuals and help stuff is poorly written (might be great in German FAIK) and the online support is similarly inadequate. The particular problem I have is that these partition managers can't work on the boot partition with open files so it has to reboot in its own OS (a kind of mock-DOS). When PM did this, it appeared to stall part way through even though there was loads of disk activity. I wondered whether I could use Ghost to clone the partitions from disk0 to disk1 and then use Partition Manager to resize the new partitiion (which won't be active so won't have the problem of open files). Anyway, I'd be grateful for advice from anyone who has actually succeeded in cloning a boot disk in this way. To be honest, I am not really interested in hearing from folk who haven't actually tried it and succeeded. Thanks Paul, UK Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152703
  - 7
    - e-mail bouncing I'm having a problem with e-mails bouncing back from a sister company of a company that I have a SBS2000 system installed, other e-mails from other domains including my own seem to be fine. The e-mail domain on the SBS2000 is similar to @abc.co.uk and the sister company who are not running an SBS is similar to @xabc.co.uk. The sister company sends the e-mail via a POP account and after a couple of days they get a message saying postmaster@abc.co.uk could not deliver the e-mail. I have checked the e-mail logs on the Server and can not find any e-mails from the sister company. E-mails from the SBS2000 to the sister company are also working OK. Has any one seem anything similer and any idea's on how to resolve this problem ? Regards Mike Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152702
  - 8
    - emails being sent multiple times We are running SBS 2000 with Exchange 2000. A few times recently we have users complaining that they are receiving the same message multiple times, sometimes as many as five times. Anyone experienced this before with Exchange? Is there a fix? Thanks. Richard Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152701
  - 9
    - File Locking Hi We have a small file sharing network consisting of W98, W2k, XP and MAC work stations connected to a W2k server. Most of the time everything works fine but we keep getting file locking errors. You will try to delete a file from one machine and after it reports the file is in use on another machine, you find according to the server log it is, but on the machine itself, it's no longer in use. Last time it occured it appeared to be windows explorer that last accessed the file on an XP machine Has anyone got any clues ?? Many thanks Lavbear Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152696
  - 10
    - Motherboard change We have SBS2000 with 2xSATA RAID drives It would seem that either one of the drives or the drive controller is faulty and causing the machine to crash If it's one of the drives, fine, they can simply be changed I take it by ghosting the original drives onto new ones However, if it proves to be the controller, the whole motherboard will have to be changed and this also has e embedded NIC's, 1 we use as the server NIC and the other for our broadband connection Is this going to cause me problems or will the SBS installation be able to be re-configured ok Anything specific I should/shouldn't do TIA Alan. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152695
  - 11
    - Uninstall and upgrade same box to Server2003 Standard Hey everyone, I just want to know if anyone has been in my position before regarding the uninstall of SBS 2000 and install of Server 2003 on the same server. I have SBS 2000 on it now with Exchange, no SQL (on separate box). I want to know if anyone has advice on the best way to approach this install and if you might have a few links for reading up on what needs to be done. The worst thing would be if I mess up the install and are not able to get the domain back up and functioning Bria Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152691
  - 12
    - Switch to Native Mode SBS2K I have a SBS2K runing in Mixed mode. This is the only server in the network. I also have a network with 2 Win2K servers. If I switch to Native Mode the SBS, do I gain some new functionalities? Gus Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152689
  - 13
    - Re Installing New Licenses on SBS2000 Hello I had a client who has purchased 5 SBS licenses for their sbs 2000 server. They were told they could only by 2003 licenses and that is what they recieved. The question is. How do you install new licenses into sbs 2000 with out the floppy disk as the sbs 2003 licenses provide a piece of paper with a license key? Any help would be appreciated. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152679
  - 14
    - SBS 2003 down grade? Will a sbs 2003 licence allow me to install SBS 2000 ?? There are reasons !!! Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152678
  - 15
    - Public folder error Hi, if I try to expand the public folder list in exchange manager I get "Operation failed due to an invalid http request" ID c1030af0. Any Ideas? Keith Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152670
  - 16
    - DNS Error Hi everyone, All of a sudden we can't send/ receive mail through our SMTP server or access the Internet. Error received is 11002 host not found This error indicates that the gateway could not find an authorative DNS Server for web site you're trying to access. No error code in any Kb articles that I could find & any google previous don't seem to have an answer. Help!!! ipconfig /all shows DNS Server is pointing to 192.168.16.2 Cannot ping any external web site - host name unknown The strange thing is when I ping our Public IP address -= I get a reply but form a different IP address! Can anyone help as we have No Email or Internet access. TIA Gary Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152669
  - 17
    - Fax RAS and telephony service. Hello All Any help with the following would be great I have an SBS 2000 server with two modems, one (com2) for Internet access and RAS, two(com1) for Fax The fault happens with both shared fax and fax service When the fax service is started the telephony service "unexpectedly stops" this then stops any access to modem service and the server has to be rebooted. The event log gives a 7031 error Some times the fax service will start and work for a couple of days but when server is re booted chances are the fax server will not start again Any ideas would be gratefully received. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152666
  - 18
    - ISA Packet filter- LAT/routing table conflict My application log file is filing with the following errors: Microsoft web proxy Event ID 14120 The ISA Server services cannot create a packet filter 207.46.130.112. This event occurs when there is a conflict between the Local Address Table (LAT) configuration and the Windows 2000 routing table. Check the routing table and the LAT to find the source of the conflict. I researched the KB but could not find a for me understandable explanation and solution. Does someone now what courses this and howto correct this? Regards, Fred Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152665
  - 19
    - Microsoft Outlook Web Access failure on shared folders I'm having trouble trying to use the MS outlook web acess feature to look at shared folders. When I click the folders button near the top left of the screen, it says "This service is no longer available" and only displays only the users private folders. Simon. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152663
  - 20
    - Using the SBS as SMTP We have a fulltime broadband connection from our ISP in the UK BTOpenworld, and were wondering how we configure our emails to be sent directly to us instead of us picking up from a POP3 box at the ISP. BTOpenWorld have given us a static IP address. We send out mail through their SMTP server. We are currently facing the problem where we are getting mail HELO errors when sending out to a particular recipient as they are conducting a postfix check. Please can someone give me pointers on how to do this. Thanks, Sachin Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152662
  - 21
    - SPs Hello, What is recommended for SBS, to install SBS SP or individual components SPs? Thank you. Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152659
  - 22
    - sbs2k not adding mailboxes I have a client with eleven users and any extra users I add i get an error when applying their name in outlook properties to attach to the exchange server. the error is "unable to find name in list, " I have 15 user licencences" I am really tearing my hair out as I have made 5 or 6 attempts to add different users, it creates logon and allowa right to shared drives and access to Internet but not exchage for both internal and external mail. The PC's are xp pro. please, please any suggestions appreciated!!! Finn Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152658
  - 23
    - Interesting OWA behavior SBS 2000... up to date patches, etc. Two remote users who access their email only through OWA have found if they open an email (double-click) to read it, then go back to the main OWA window (without closing the opened email) and click on Inbox, the opened email is suddenly gone - there's no trace of it in the sent items, deleted items, etc. I have tried to replicate this on other OWA accounts on the server, but it is proprietary to only these two in particular... Any ideas? Thanks, Scott Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152656
  - 24
    - System takes forever to boot, Currenty stuck on 'applying computer settings' I am running SBS2000 SP3, I was in the process of upgrading to SP4 when the server crashed. The system now does not boot, it gets stuck at the 'applying computer settings' stage. I have rebooted into safe mode and reapplied SP3, this however has not resolved the problem I have succesfully rebooted the SBS2000 server in directory repair mode. The server is configured with 2 NIC's, Internal network and External (Internet). The internal is configure with no default gateway and the primary DNS is pointing at the internal network address. The external NIC is configured with the default gateway pointing at the router and the primary DNS pointing at the internal NIC address (as per microsoft documentation). I have checked the binding order, internal NIC followed by external NIC. However, I am unable to run the ICW (during directory repair mode). When I reboot the server it still hangs during the 'applying computer settings' phase. Its now 7:30am local time, I have been on site through the night ! The users are due to arrive at 8:30amm ! Obviously I require URGENT assistance ! Any help would be greatfuly received Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152654
  - 25
    - Chicago SBS Users Group Kickoff All Chicago area SBS consultants and administrators are welcome to our first meeting of the Chicago SBS Users Group. Here's the link to the Microsoft Events page http://tinyurl.com/25ab Bob Hoo Hood Consulting Group - Chicag MCP - Small Business Networkin www.hoodconsulting.co mailto:bobhood@hoodconsulting.co Tag: Strange events all around...Block Attacker creates strange name, not just IP address... xxx.xxx.xxx.xxx {xxxx xxxx ...} Tag: 152653

A new experience for me -

Call from client - Outlook sluggish - server overall slow. Remote
connection kept timing out so I went onsite. Problem is widespread in the
office and, server appears frozen. The SBS 2000 box shows a blank
background - cursor still moves. Zero hard-drive activity. (Dell PE4600)
Remote desktop from local machine doesn't work.
CTRL-ALT-DEL doesn't work.
Unplugged internet from server... and did a hard shutdown.

Two users admit openning up attachments on messages minutes before problem
seemed to start.
Scanned all workstations. Scans detected NetSky.B and C along with Jeem all
noticed and neutralized by InoculateIT within the last 24hrs with NetSky.B
being detected (and supposedly neutralized) just minutes before overall
problems noticed.

Reboot server - starts up normally.
Deleted handful (about 15) of outbound messages sitting in SMTP queue.
No viruses detected on actual sever box with VET and InoculateIT scans.
Reconnected internet.

Checked logs - complete blanks from shortly after I received call until
server was rebooted.
Last active messages were in regards to ISA - Block Attacker - then nothing
untill the reboot.

Checked Packet Filters and found a string of 20 or so new blocked attacks.
All from the same IP BUT the name as listed had an appending string
following this pattern:
{11A1A1A1-1111-1A11-11AA-1AA1AA1AA11A} (note: yes, I replaced the actual hex
with 1's and A's.)
No two of the codes were the same and the actuall IP on the remote port was
all the same.

That's the first time I've seen that type of notation posted by block
attacker.
Other than the obvious poor protocol followed by the users (in not reporting
virus incidents) and this strange event - I've got nothing else to go on.

The machine is generally good. HFNETCHK says the box is 100% patched. Dual
NIC's. All status reports "normal" immediately prior to and after the issue.

All machines and processes appear to be running within normal parameters
now.

Any thoughts?
If nothing else, a clear explanation of the bizarre Block Attacker
nomenclature would at least give me some peace of mind.

Thanks in advance.

db