cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1878
Views
10
Helpful
44
Replies

issue with config

jlight80911
Level 1
Level 1

Hey guys i am back again for a little assistance.

keeping this brief

currently we have a dsl modem connecting to a linksys (p.o.s. router) then connecting to a dhcp server, which then hands out ip address's.

The linksys router is slowly dieing, and i purchased a cisco 1800 router.

The dsl modem has a built in router hands the linksys router 192.168.0.2. Our server 2008 hands out 172.16.1.0 ip's to the users.

my issues is figuring out how to configure the router with the default gateway. I want to keep all devices in place and use them as intended. not using the router for dhcp.

here is my config so far.

Current configuration : 1507 bytes

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname qwest-net-rtr

!

boot-start-marker

boot-end-marker

!

enable secret 5 $1$.cce$PE0lB1rdESIZxgFuB8ODl0

enable password password1

!

no aaa new-model

clock timezone MTN -7

clock summer-time MDT recurring

!

!

!

!

ip cef

multilink bundle-name authenticated

!

!

archive

log config

hidekeys

!

!

!

!

!

interface FastEthernet0/1/0

no cdp enable

!

interface FastEthernet0/1/1

no cdp enable

!

interface FastEthernet0/1/2

no cdp enable

!

interface FastEthernet0/1/3

no cdp enable

!

interface Cable-Modem0/0/0

no ip address

shutdown

no cdp enable

!

interface FastEthernet0/0

ip address 172.16.1.1 255.255.255.0

ip nat inside

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface FastEthernet0/1

ip address 192.168.0.2 255.255.255.0

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface Vlan1

no ip address

shutdown

no mop enabled

!

!

ip forward-protocol nd

!

!

ip http server

ip nat pool overload 192.168.0.10 192.168.0.10 prefix-length 24

ip nat inside source list 7 pool overload overload

!

access-list 7 permit 172.16.1.0 0.0.0.255

snmp-server community public RO

!

!

control-plane

!

!

line con 0

exec-timeout 0 0

line aux 0

line vty 0 4

password passwordv

login

!

scheduler allocate 20000 1000

no process cpu extended

no process cpu autoprofile hog

end

44 Replies 44

Jerry Ye
Cisco Employee
Cisco Employee

You can put the following configuration in, assuming your NAT is done correctly

ip routing

ip classless

ip route 0.0.0.0 0.0.0.0 f0/1

HTH,

jerry

tried that did not work. I am able to ping the web from the router, but not from my pc. from my pc i can ping the dsl modems default gateway, but can not get out past that.

any ideas?

Hi Jared,

Your NAT configuration needs to be changed along with the static routes I gave you before

no ip nat pool overload 192.168.0.10 192.168.0.10 prefix-length 24

no ip nat inside source list 7 pool overload overload

ip nat inside source list 7 interface FastEthernet0/1 overload

HTH,

jerry

Hey Jerry,

Here is the current config now.

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname qwest-net-rtr

!

boot-start-marker

boot-end-marker

!

enable secret 5 $1$.cce$PE0lB1rdESIZxgFuB8ODl0

enable password password1

!

no aaa new-model

clock timezone MTN -7

clock summer-time MDT recurring

!

!

!

!

ip cef

multilink bundle-name authenticated

!

!

archive

log config

hidekeys

!

!

!

!

!

interface FastEthernet0/1/0

no cdp enable

!

interface FastEthernet0/1/1

no cdp enable

!

interface FastEthernet0/1/2

no cdp enable

!

interface FastEthernet0/1/3

no cdp enable

!

interface Cable-Modem0/0/0

no ip address

shutdown

no cdp enable

!

interface FastEthernet0/0

no ip address

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface FastEthernet0/1

ip address 192.168.1.2 255.255.255.0

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface Vlan1

ip address 172.16.2.1 255.255.255.0

ip nat inside

ip virtual-reassembly

no mop enabled

!

ip forward-protocol nd

!

!

ip http server

ip nat inside source list 7 interface FastEthernet0/1 overload

!

access-list 7 permit 172.16.2.0 0.0.0.255 log

snmp-server community public RO

!

!

control-plane

!

!

line con 0

exec-timeout 0 0

line aux 0

line vty 0 4

password passwordv

login

!

scheduler allocate 20000 1000

no process cpu extended

no process cpu autoprofile hog

end

Yes i did change the IP's just so i can test this during the day with out putting a hault on employees. Currently it goes:

192.168.1.1 is my qwest dsl modem

192.168.1.2 is going to the wan port of cisco router

172.16.2.1 is the cisco router

172.16.2.45 is the lan ip from the cisco

we do have a DHCP Server that will be in production in time..

hopefully this helps you see what im trying to accomplish a little bit better.

At the moment, i can no longer access the dsl modem, i use to be able to get to the web gui, and ping 192.168.1.1. After using the command you gave me i can no longer do so. I also can not ping out to any web address's

any thoughts on this?

Thanks

Jared

Hi Jared,

You have to put the default route in the config

ip routing

ip route 0.0.0.0 0.0.0.0 FastEthernet0/1

After you did that and can you test it and post the the following commands if it is still not working

show ip route

show ip nat translations

HTH,

jerry

Jerry,

Here are the results from what you have asked for

qwest-net-rtr(config)#do sh ip route

Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2

i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2

ia - IS-IS inter area, * - candidate default, U - per-user static route

o - ODR, P - periodic downloaded static route

Gateway of last resort is 0.0.0.0 to network 0.0.0.0

172.16.0.0/24 is subnetted, 1 subnets

C 172.16.2.0 is directly connected, Vlan1

C 192.168.1.0/24 is directly connected, FastEthernet0/1

S* 0.0.0.0/0 is directly connected, FastEthernet0/1

qwest-net-rtr#sh ip nat trans

Pro Inside global Inside local Outside local Outside global

icmp 192.168.1.2:1 172.16.2.45:1 172.16.1.128:1 172.16.1.128:1

icmp 192.168.1.2:1 172.16.2.45:1 192.168.1.1:1 192.168.1.1:1

Thank you

Hi Jared,

Are you able to ping the DSL router? Or access the Internet. The output looks okay so far.

Regards,

jerry

From my pc i can not ping 192.168.1.1 (DSL router), also I can not access the internet either. However i can ping the wan port of the cisco router 192.168.1.2

From the Cisco router i can ping 192.168.1.1, and i can ping the WAN ip address of the dsl router. But i can not ping anything further than the WAN IP, i.e. www.google.com.

Hi Jared,

Sounds like your DSL router doesn't have a return path back to your router. I am assuming you are ping www.google.com's IP address (64.233.169.104), not the DNS name.

Regards,

jerry

yes, I am pinging it based off ip, nothing comes back.

Hi Jared,

Let's change the default route configuration and test this again.

no ip route 0.0.0.0 0.0.0.0 FastEthernet0/1

ip route 0.0.0.0 0.0.0.0 192.168.1.1

Regards,

jerry

Jerry,

Now from the router i can ping web address's, but i can not ping from my pc. So im thinking im missing a route now. Any suggestions?

here is the config

no aaa new-model

clock timezone MTN -7

clock summer-time MDT recurring

!

!

!

!

ip cef

no ip domain lookup

multilink bundle-name authenticated

!

!

archive

log config

hidekeys

!

!

!

!

!

interface FastEthernet0/1/0

no cdp enable

!

interface FastEthernet0/1/1

no cdp enable

!

interface FastEthernet0/1/2

no cdp enable

!

interface FastEthernet0/1/3

no cdp enable

!

interface Cable-Modem0/0/0

no ip address

shutdown

no cdp enable

!

interface FastEthernet0/0

no ip address

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface FastEthernet0/1

ip address 192.168.1.2 255.255.255.0

ip nat outside

ip virtual-reassembly

duplex auto

speed auto

no cdp enable

!

interface Vlan1

ip address 172.16.2.1 255.255.255.0

ip nat inside

ip virtual-reassembly

no mop enabled

!

ip forward-protocol nd

ip route 0.0.0.0 0.0.0.0 192.168.1.1

!

!

ip http server

ip nat inside source list 7 interface FastEthernet0/1 overload

!

access-list 7 permit 172.16.2.0 0.0.0.255 log

snmp-server community public RO

!

!

control-plane

!

!

line con 0

exec-timeout 0 0

line aux 0

line vty 0 4

password passwordv

login

!

scheduler allocate 20000 1000

no process cpu extended

no process cpu autoprofile hog

end

Can you do the following on the router

clear ip nat translation *

show ip route

show ip nat translation

And can you post me the ipconfig /all from your pc?

Regards,

jerry

Here is that information

qwest-net-rtr#clear ip nat translation *

qwest-net-rtr#show ip route

Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP

D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area

N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2

E1 - OSPF external type 1, E2 - OSPF external type 2

i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2

ia - IS-IS inter area, * - candidate default, U - per-user static route

o - ODR, P - periodic downloaded static route

Gateway of last resort is 192.168.1.1 to network 0.0.0.0

172.16.0.0/24 is subnetted, 1 subnets

C 172.16.2.0 is directly connected, Vlan1

C 192.168.1.0/24 is directly connected, FastEthernet0/1

S* 0.0.0.0/0 [1/0] via 192.168.1.1

qwest-net-rtr#show ip nat translation

qwest-net-rtr#

also,

IPv4 Address.... 172.16.2.45

subnet...........255.255.255.0

mask.............172.16.2.1

dns servers..... 172.16.2.1

.................172.16.1.1

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco