PRB: DCOM Does Not Work over Network Address Translation-Based Firewall

Article translations Article translations
Article ID: 248809 - View products that this article applies to.
This article was previously published under Q248809
Expand all | Collapse all

SYMPTOMS

When you try to make Distributed Component Object Model (DCOM) calls over a Network Address Translation (NAT)-based Firewall, you receive the error 0x800706BA (RPC_S_SERVER_UNAVAILABLE).

CAUSE

For DCOM to work, the client must be able to reach the server by its actual IP address. If you use firewalls that translate network addresses, the client cannot use the actual IP address to reach the server.

COM inserts the IP address of the server computer into the interface marshaling packets that are returned to the client. Instead of using the translated IP/header, Remote Procedure Call (RPC, or DCOM) uses the actual IP address to reach the server. Because the firewall prevents the client from directly accessing the server, the client receives the above-mentioned error message.

REFERENCES

For more information on using DCOM with firewalls, see the following Microsoft Web site:
http://www.microsoft.com/com/wpaper/dcomfw.asp
For additional information, click the article numbers below to view the articles in the Microsoft Knowledge Base:
154596 HOWTO: Configure RPC Dynamic Port Allocation to Work with Firewall
193230 PRB: Server.CreateObject Fails When Object Is Behind Firewall
249726 HOWTO: Search for COM and DCOM Knowledge Base Articles

Properties

Article ID: 248809 - Last Review: November 17, 2003 - Revision: 3.2
APPLIES TO
  • Microsoft COM+ 2.0 Standard Edition, when used with:
    • the operating system: Microsoft Windows 2000
    • Microsoft Windows NT 4.0
Keywords: 
kbclient kbclientserver kbdcom kbprb kbserver KB248809

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com