08-17-2009 12:14 PM - edited 03-06-2019 07:17 AM
Hey guys i am back again for a little assistance.
keeping this brief
currently we have a dsl modem connecting to a linksys (p.o.s. router) then connecting to a dhcp server, which then hands out ip address's.
The linksys router is slowly dieing, and i purchased a cisco 1800 router.
The dsl modem has a built in router hands the linksys router 192.168.0.2. Our server 2008 hands out 172.16.1.0 ip's to the users.
my issues is figuring out how to configure the router with the default gateway. I want to keep all devices in place and use them as intended. not using the router for dhcp.
here is my config so far.
Current configuration : 1507 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname qwest-net-rtr
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$.cce$PE0lB1rdESIZxgFuB8ODl0
enable password password1
!
no aaa new-model
clock timezone MTN -7
clock summer-time MDT recurring
!
!
!
!
ip cef
multilink bundle-name authenticated
!
!
archive
log config
hidekeys
!
!
!
!
!
interface FastEthernet0/1/0
no cdp enable
!
interface FastEthernet0/1/1
no cdp enable
!
interface FastEthernet0/1/2
no cdp enable
!
interface FastEthernet0/1/3
no cdp enable
!
interface Cable-Modem0/0/0
no ip address
shutdown
no cdp enable
!
interface FastEthernet0/0
ip address 172.16.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface FastEthernet0/1
ip address 192.168.0.2 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface Vlan1
no ip address
shutdown
no mop enabled
!
!
ip forward-protocol nd
!
!
ip http server
ip nat pool overload 192.168.0.10 192.168.0.10 prefix-length 24
ip nat inside source list 7 pool overload overload
!
access-list 7 permit 172.16.1.0 0.0.0.255
snmp-server community public RO
!
!
control-plane
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password passwordv
login
!
scheduler allocate 20000 1000
no process cpu extended
no process cpu autoprofile hog
end
08-17-2009 12:32 PM
You can put the following configuration in, assuming your NAT is done correctly
ip routing
ip classless
ip route 0.0.0.0 0.0.0.0 f0/1
HTH,
jerry
08-18-2009 05:37 AM
tried that did not work. I am able to ping the web from the router, but not from my pc. from my pc i can ping the dsl modems default gateway, but can not get out past that.
any ideas?
08-18-2009 05:45 AM
Hi Jared,
Your NAT configuration needs to be changed along with the static routes I gave you before
no ip nat pool overload 192.168.0.10 192.168.0.10 prefix-length 24
no ip nat inside source list 7 pool overload overload
ip nat inside source list 7 interface FastEthernet0/1 overload
HTH,
jerry
08-18-2009 07:27 AM
Hey Jerry,
Here is the current config now.
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname qwest-net-rtr
!
boot-start-marker
boot-end-marker
!
enable secret 5 $1$.cce$PE0lB1rdESIZxgFuB8ODl0
enable password password1
!
no aaa new-model
clock timezone MTN -7
clock summer-time MDT recurring
!
!
!
!
ip cef
multilink bundle-name authenticated
!
!
archive
log config
hidekeys
!
!
!
!
!
interface FastEthernet0/1/0
no cdp enable
!
interface FastEthernet0/1/1
no cdp enable
!
interface FastEthernet0/1/2
no cdp enable
!
interface FastEthernet0/1/3
no cdp enable
!
interface Cable-Modem0/0/0
no ip address
shutdown
no cdp enable
!
interface FastEthernet0/0
no ip address
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface FastEthernet0/1
ip address 192.168.1.2 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface Vlan1
ip address 172.16.2.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no mop enabled
!
ip forward-protocol nd
!
!
ip http server
ip nat inside source list 7 interface FastEthernet0/1 overload
!
access-list 7 permit 172.16.2.0 0.0.0.255 log
snmp-server community public RO
!
!
control-plane
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password passwordv
login
!
scheduler allocate 20000 1000
no process cpu extended
no process cpu autoprofile hog
end
Yes i did change the IP's just so i can test this during the day with out putting a hault on employees. Currently it goes:
192.168.1.1 is my qwest dsl modem
192.168.1.2 is going to the wan port of cisco router
172.16.2.1 is the cisco router
172.16.2.45 is the lan ip from the cisco
we do have a DHCP Server that will be in production in time..
hopefully this helps you see what im trying to accomplish a little bit better.
At the moment, i can no longer access the dsl modem, i use to be able to get to the web gui, and ping 192.168.1.1. After using the command you gave me i can no longer do so. I also can not ping out to any web address's
any thoughts on this?
Thanks
Jared
08-18-2009 08:06 AM
Hi Jared,
You have to put the default route in the config
ip routing
ip route 0.0.0.0 0.0.0.0 FastEthernet0/1
After you did that and can you test it and post the the following commands if it is still not working
show ip route
show ip nat translations
HTH,
jerry
08-18-2009 09:06 AM
Jerry,
Here are the results from what you have asked for
qwest-net-rtr(config)#do sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is 0.0.0.0 to network 0.0.0.0
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.2.0 is directly connected, Vlan1
C 192.168.1.0/24 is directly connected, FastEthernet0/1
S* 0.0.0.0/0 is directly connected, FastEthernet0/1
qwest-net-rtr#sh ip nat trans
Pro Inside global Inside local Outside local Outside global
icmp 192.168.1.2:1 172.16.2.45:1 172.16.1.128:1 172.16.1.128:1
icmp 192.168.1.2:1 172.16.2.45:1 192.168.1.1:1 192.168.1.1:1
Thank you
08-18-2009 09:22 AM
Hi Jared,
Are you able to ping the DSL router? Or access the Internet. The output looks okay so far.
Regards,
jerry
08-18-2009 09:33 AM
From my pc i can not ping 192.168.1.1 (DSL router), also I can not access the internet either. However i can ping the wan port of the cisco router 192.168.1.2
From the Cisco router i can ping 192.168.1.1, and i can ping the WAN ip address of the dsl router. But i can not ping anything further than the WAN IP, i.e. www.google.com.
08-18-2009 09:47 AM
Hi Jared,
Sounds like your DSL router doesn't have a return path back to your router. I am assuming you are ping www.google.com's IP address (64.233.169.104), not the DNS name.
Regards,
jerry
08-18-2009 09:52 AM
yes, I am pinging it based off ip, nothing comes back.
08-18-2009 09:55 AM
Hi Jared,
Let's change the default route configuration and test this again.
no ip route 0.0.0.0 0.0.0.0 FastEthernet0/1
ip route 0.0.0.0 0.0.0.0 192.168.1.1
Regards,
jerry
08-18-2009 10:04 AM
Jerry,
Now from the router i can ping web address's, but i can not ping from my pc. So im thinking im missing a route now. Any suggestions?
here is the config
no aaa new-model
clock timezone MTN -7
clock summer-time MDT recurring
!
!
!
!
ip cef
no ip domain lookup
multilink bundle-name authenticated
!
!
archive
log config
hidekeys
!
!
!
!
!
interface FastEthernet0/1/0
no cdp enable
!
interface FastEthernet0/1/1
no cdp enable
!
interface FastEthernet0/1/2
no cdp enable
!
interface FastEthernet0/1/3
no cdp enable
!
interface Cable-Modem0/0/0
no ip address
shutdown
no cdp enable
!
interface FastEthernet0/0
no ip address
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface FastEthernet0/1
ip address 192.168.1.2 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
!
interface Vlan1
ip address 172.16.2.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no mop enabled
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.1.1
!
!
ip http server
ip nat inside source list 7 interface FastEthernet0/1 overload
!
access-list 7 permit 172.16.2.0 0.0.0.255 log
snmp-server community public RO
!
!
control-plane
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password passwordv
login
!
scheduler allocate 20000 1000
no process cpu extended
no process cpu autoprofile hog
end
08-18-2009 10:06 AM
Can you do the following on the router
clear ip nat translation *
show ip route
show ip nat translation
And can you post me the ipconfig /all from your pc?
Regards,
jerry
08-18-2009 10:11 AM
Here is that information
qwest-net-rtr#clear ip nat translation *
qwest-net-rtr#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is 192.168.1.1 to network 0.0.0.0
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.2.0 is directly connected, Vlan1
C 192.168.1.0/24 is directly connected, FastEthernet0/1
S* 0.0.0.0/0 [1/0] via 192.168.1.1
qwest-net-rtr#show ip nat translation
qwest-net-rtr#
also,
IPv4 Address.... 172.16.2.45
subnet...........255.255.255.0
mask.............172.16.2.1
dns servers..... 172.16.2.1
.................172.16.1.1
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: