Configuring NAT via using the Microsoft Loopback Adapter and Internet Connection Sharing

MSDN Blogs > Ben Armstrong > Configuring NAT via using the Microsoft Loopback Adapter and Internet Connection Sharing
Live Now on Server & Tools Blogs
Menu
Twitter Feed
Recent Posts
Tags
More
Archives
Archives
More

Configuring NAT via using the Microsoft Loopback Adapter and Internet Connection Sharing

Rate This
5 Oct 2005 12:16 AM
  • Comments 12

In previous posts I have mentioned using the Microsoft Loopback Adapter for advanced networking scenarios.  Today I am going to talk about how to team up the Microsoft Loopback Adapter with the Internet Connection Sharing capabilities of Windows to construct a NAT network solution.  This is very handy to do with Virtual Server - which has no built in NAT solution - and it is even useful for Virtual PC as it provides a more flexible NAT solution than the built in shared networking functionality (such as the capability for virtual machines to network with each other and the host computer).

The directions on how to install the Microsoft Loopback Adapter under Windows XP are as follows:

  1. On the host operating system go to 'Control Panel'
  2. Go to 'Add Hardware'
  3. In the 'Add Hardware' wizard, click 'Next'
  4. When the 'Is the hardware connected?' page appears, select 'Yes, I have already connected the hardware', and then click 'Next'
  5. In the 'Installed hardware' list, select 'Add a new hardware device' and then click 'Next'
  6. In the 'What do you want the wizard to do?' list, select 'Install the hardware that I manually select from a list (Advanced)', and then click 'Next'
  7. In the 'Common hardware types' list, click 'Network adapters', and then click 'Next'
  8. In 'Manufacturer' list, select 'Microsoft'
  9. In the 'Network Adapter' list, select 'Microsoft Loopback Adapter', and then click 'Next' twice
  10. In the 'Completing the Add Hardware Wizard' page, click 'Finish'

Once you have done this you will then need to enable Internet Connection Sharing (ICS).  The catch here is that you need to enable ICS on the network interface that you want to use to access the Internet - not the Microsoft Loopback Adapter:

  1. On the host operating system go to 'Control Panel'
  2. Go to 'Network Connections'
  3. Right click on the network connection that you use for Internet connectivity and select 'Properties' 
  4. Click on the 'Advanced' tab
  5. Check the option to 'Allow other network users to connect through this computer's Internet connection'
  6. If you have multiple network adapters you will need to also specify that you are sharing the Internet connection with the Microsoft Loopback Adapter.
  7. Click 'OK'

A couple of things to know at this stage:

  1. Under Windows XP this will cause your Microsoft Loopback Adapter to be hard configured to use '192.168.0.1'.  This is problematic if your external network is configured to use the 192.168.0.xxx subnet - but unfortunately there is nothing that you can do about this except to change your physical network settings (I have moved my physical home network to 192.168.1.xxx for exactly this reason).

  2. Under Windows Server 2003 it is possible to change the IP address and subnet used on the Microsoft Loopback Adapter when ICS is enabled.

  3. ICS provides DHCP services as well - so virtual machines connected to the Microsoft Loopback Adapter do not need to have static IP addresses configured.

Cheers,
Ben

Leave a Comment
  • Please add 2 and 2 and type the answer here:
  • Post
Comments
  • Jonathan
    5 Oct 2005 2:59 AM
    1. Isn't this post a straight cut-n-paste from the Virtual Server help? I disticntly remember performing exactly this when I was trying out VS, after getting bummed out that it doesn't have built-in NAT.

    2. What doesn't Virtual Server have shared folders like Virtual PC? This is really useful for someone like me, who uses VS to test networking-related stuff, and therefore doesn't always have network connectivity to the host.

    3. How do you change the IP/subnet of the ICS-assigned addresses? I couldn't find it.
  • 5 Oct 2005 3:15 AM
    Hi Jonathan,

    1) Actually no - I made this post because I was quite surprised to find out today that this configuration is not documented 'end-to-end' anywhere.

    2) Shared folders was not included in Virtual Server due to anumber of security concerns

    3) With Windows Server 2003 all you need to do is to change the IP address on the Loopback adapter.

    Cheers,
    Ben
  • Jonathan
    5 Oct 2005 5:22 AM
    1. Well, I managed to do it just by reading the .chm, and I've never even heard of the loopback adapter or setup ICS before. But I may just be more versed in networking than some...

    2. I suspected as much.

    3. Really? And ICS' DHCP will just distribute addresses from the adapter's subnet? That's cool.
  • David
    5 Oct 2005 6:25 AM
    I knew the ICS IP:s could change cause I've done it myself a while ago (due to conflict with WAN adresses).
    After searching the net I found this page describing how to do it (though there seems to be a bug in defining DHCP-range)
    http://www.wown.com/j_helmig/icsadcnf.htm
  • Norman Diamond
    5 Oct 2005 9:40 PM
    On both Windows XP and 2003 I have changed the IP address of the loopback adapter in network properties. That wasn't a problem. But when I tried enabling Internet Connection Sharing, that forced the loopback adapter's IP address to change to the same as a physical external machine. (Which physical external machine? The one that provides connectivity for viewing Microsoft's web site, activating a guest OS, sending crash dumps to Microsoft, etc.) So I had to give up. In Windows 2003 I could use Routing and Remote Access to set a non-conflicting subnet and get a guest connected, but in Windows XP there's no way.

    I think the help for Virtual PC does give most of those steps from beginning to end, even if the help for Virtual Server doesn't.

    Meanwhile why did plain old NAT stop working in Virtual PC? From your posting I understand that it was removed from Virtual Server (though I wonder why), but why did it stop working in Virtual PC? When the real machine is running Windows XP there no longer seems to be any way to establish connectivity for a guest.
  • Chris Davidson
    10 Oct 2005 3:34 PM
    Heya VPC guy...I found this post and was hoping that you might be able to provide a suggestion for my scenario...

    What I've got is a machine running Virtual Server 2005 on it...with one network adapter and 1 loopback adapater. The machine is unjoined to any domains. There is an virtual network setup to use the loopback adapter so that VM's can get an IP address and talk to each other.

    There are 2 VM's running, ones a DC and the other a member server joined to the virtual DC.

    The host is capable of getting to domain resources by providing a domain authenticated user's credentials, however the VM's are not.

    So my question is what do I need to do in order for the VM's to be able to access network resources, while still remaining isolated?

    Thanks. :)
  • Norman Diamond
    10 Oct 2005 7:56 PM
    I'll try to help Chris Davidson since I've done more than half of the steps that I think are necessary for this.

    Assuming that the real machine is running a Windows Server OS, enable Routing and Remote Access on the real machine to forward packets between the VMs and the real network. Next, when a VM attempts to access a share on some real machine in the domain, there will be a prompt for authentication. The user will have to authenticate as a domain account that has privileges, in the following manner:
    Username: MyDomain\SomeDomainUsername
    Password: SomeDomainUsername's domain password
  • Rob Keiser
    2 Nov 2005 3:48 PM
    Well we tried to do this but did not have any success. The IP address on the external adapter is not a 192.168.x.y but a routable address. Could this be causing a problem?

    What we get is the ability to see the host from the guest but not the rest of the internet. Any ideas?
  • Mehul Parekh
    8 Dec 2010 3:11 AM

    I want to share host and guest machine. Following is the detail:

    1. Host OS windows 7 Enterprise

    2. Guest OS Windows 2003 Enterprise installed in VPC.

    3. Microsoft Loopback adapter installed on both Host and Guest machine

    Please guide me how do connect/share host-guest machine.

    Regards,

  • GThomas
    10 Dec 2010 6:28 PM

    I could use some help.   I'm training for my MCITP cert and I'm running through the training book(configuring windows server 2008)  I downloaded Virtual PC 2007 and installed it on my Win7 box and created my first VM named Server01 and installed Server 2008 standard on it.  I ran through the first few exercises with no problems and set up the first VM with the AD DS role, and created the Contoso.com domain.  In the VM console I have 2 network adapters configured for my first VM one is my local area connection of my win7 box and second is set to local only.  Next I created a second VM called Server02 and installed a 2008 Server core build and I'm trying to do a netdom join to join Server02 to the domain I created on server01 but doesn't seem to work.  I know it probably has to do with how I have my 2nd VM network configured.  How should I set up my VM's network settings so I can simulate my network?    AdvancedEvolution@charter.net  Thank you in advance. :)

  • Carlos
    10 Sep 2011 2:42 PM

    Is there any way to change nat type using ics from an android tether app

  • CJ
    19 Sep 2011 7:03 PM

    Will all this work on Windows CE in Microsoft Virtual PC 2007?

Page 1 of 1 (12 items)