Ms changes from persistant route to default gateway automatically

Question

We have 2 rdp servers running win 2019 n 2022. We have have multiple clients running at multiple sites that connect. We are having an intermittent problem, where we can’t ping the server from client, so if site has 3 clients, 2 out of 3 stops working. We did a traceroute from server, and for the 2 faulty devices we get * * *. But the one host it’s ok. If we change 1 endpoint ip., we get access back. Already disabled fw, av etc

We did a wireshark capture and found that the windows server would not go through the persistent route setting, but rather the default gw, which is the firewall. The firewall would reject the packet as it does not see the initial flow, (normal behavior). Why is windows sending traffic to the default gw, when the persistant route path is up?

Answer 1

Hello,

It is possible that the default gateway is being prioritized over the persistent route due to the metric value assigned to each route. The metric value determines the priority of the route, with lower values being prioritized over higher values. You can check the metric values of the routes using the "route print" command in the command prompt.

Best regards

Zunhui

Answer 2

Hi, not the case. also it can work for weeks and all of a sudden, it tries to send to the default gateway. if one remote site has 3 host, 2 might still work, where one stops. if we change the ip of the client, communication is back and the server send through persistant route.

Answer 3

Hi,

I suggest you check the event log to see if there are any related errors.

Best regards

Zunhui