Can you please look at my configuration and suggest your ideas.
My Current network details:-
Br_router- HQ router- Etisalat ISPCloud for internet
- Branch ofc router and HQ are connected with a Leased line .
-From HQ router Internet link is connected from ISP on a Fast ethernet port.
-Between Branch office and HQ Eigrp 1 is configured and able to ping till HQ.
-From HQ default route is configured towards ISP ip address to access internet from router.
-After this HQ router is able to ping Outside WWW world.
*- To allow Branch office also to access the same HQ internet i have configured PAT with access-list allowing Branch ofc network on HQ router , but still i can not able to access/ping internet.
Interface ser 0/3/1 (leasedline ->Branch)
ip address 172.30.1.10 255.255.255.0
interface fa 0/1 ( ISP connection)
ip add 22.214.171.124 255.255.255.252
Router Eigrp 1
network 172.30.0.0 0.0.255.255
-ip route 0.0.0.0 0.0.0.0 126.96.36.199
(default route for ISP link)
-ip nat pool INTERNET 188.8.131.52 184.108.40.206 netmask 255.255.255.248
-ip nat inside source list 1 pool INTERNET overload
access-list 1 permit 172.30.0.0 0.0.255.255
access-list 1 permit 192.168.20.0 0.0.0.255
BR office router:-
ip add 172.30.1.20 255.255.255.0
router eigrp 1
After configuring above configuration i am not able to ping 220.127.116.11 ip address which is the ISP end ip from Branch office router and not able
to ping www world.
at Branch off router , my trace is not crossing beyond 172.30.1.10.
at the other end at HQ router i am able to ping 18.104.22.168 and ping www world .
Thanks for all your support.
The branch router needs a default route for internet destinations.
As Kevin suggests easiest thing is to add this to your config on HQ router
router eigrp 1
that way the default route configured on the HQ router will be passed to the branch router.
Where are we this, is it still not working ? If not can you add the above and also ensure you have added "ip nat inside" to the serial interface on HQ router and then retest and let us know.
As Jon stated, put:
"ip nat inside" under your serial connection to Br
If this still fails, then make sure.
1. 22.214.171.124 - 126.96.36.199 is the correct range of public IPs you are allocated.
2. HQ has a route for the 192.168.x.x segment.