Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Windows Networking > Puzzled: Extra 'ghost' IP address

Reply
Thread Tools Display Modes

Puzzled: Extra 'ghost' IP address

 
 
Egbert Nierop \(MVP for IIS\)
Guest
Posts: n/a

 
      10-27-2005, 05:53 PM
Hi,

I'm puzzled. I have Windows 2003 Sp1 with a single network card, that
has -no- extra TCP/IP addresses defined.
It has a static address of 192.168.0.7.

Further on, this server, is not part of a cluster or never had been.

Anyway, since a few days, it assigns (how???) an extra dynamic address on
the -same- NIC such as
192.168.0.22

arp -a reveals that it is really -the same- MAC address that has been bound
to 192.168.0.7.

Secondly the DNS server, reveals that 192.168.0.22 has been registered as
well.
So nslookup
[myserver as input]


returns
192.168.0.7, 192.168.0.22

In addition, I can have all traffic such as HTTP and RDP (and others)
through this mysterious IP address except SMTP, which does not 'like' the
new address and disconnects with an exception.

Is this a virus or keylogger or what is it?

Regards
 
Reply With Quote
 
 
 
 
Egbert Nierop \(MVP for IIS\)
Guest
Posts: n/a

 
      10-27-2005, 06:12 PM

"Egbert Nierop (MVP for IIS)" <(E-Mail Removed)> wrote in
message news:%(E-Mail Removed)...
> Hi,
>
> I'm puzzled. I have Windows 2003 Sp1 with a single network card, that
> has -no- extra TCP/IP addresses defined.
> It has a static address of 192.168.0.7.
>
> Further on, this server, is not part of a cluster or never had been.
>
> Anyway, since a few days, it assigns (how???) an extra dynamic address on
> the -same- NIC such as
> 192.168.0.22

After a long search, it seems that routing and remote access has assigned
this extra address.
Why this happens is still not clear.
 
Reply With Quote
 
Bill Grant
Guest
Posts: n/a

 
      10-27-2005, 10:56 PM
Answered in win2000.ras_routing newsgroup.

Egbert Nierop (MVP for IIS) wrote:
> "Egbert Nierop (MVP for IIS)" <(E-Mail Removed)> wrote in
> message news:%(E-Mail Removed)...
>> Hi,
>>
>> I'm puzzled. I have Windows 2003 Sp1 with a single network card, that
>> has -no- extra TCP/IP addresses defined.
>> It has a static address of 192.168.0.7.
>>
>> Further on, this server, is not part of a cluster or never had been.
>>
>> Anyway, since a few days, it assigns (how???) an extra dynamic
>> address on the -same- NIC such as
>> 192.168.0.22
>
> After a long search, it seems that routing and remote access has
> assigned this extra address.
> Why this happens is still not clear.
 
Reply With Quote
 
 
 
Reply

« Name resolution on second ip address (single NIC) | Administer from workstation »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
still puzzled by Netstumbler results bjs555 Wireless Internet 4 10-20-2005 10:49 AM
Puzzled Imran Ahmad Windows Networking 0 08-02-2005 01:32 AM
Puzzled? red Wireless Internet 9 02-08-2005 12:18 AM
WRT54G - Puzzled Joseph Sullivan Wireless Internet 1 08-16-2004 05:06 AM
puzzled..... Captain Paraletic Home Networking 0 12-07-2003 09:25 AM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11