Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
367
Views
5
Helpful
6
Replies

About NAT

wesley_wang
Level 1
Level 1

‎07-23-2006 12:24 AM - edited ‎03-03-2019 04:11 AM

The Network topology is as the attachment.Two Routers (2505) link together with serial line .R1 connects to the address 172.16.12.1 , which is the gateway for the lan computers to go on the Internet.The two router's configuration are as the two attachments.

On R1 , I can ping the gateway 172.16.12.1 , also the Internet Global address ,such as Google .But I cann't do this On R2 . On R1 can ping the address 172.16.12.31 , but not 172.16.12.1 .

SO What's the problem ? Can Anyone who knows this help me ? Thanks a lot .

Labels:
Preview file
16 KB
3385-R2.log
3384-R1.log
0 Helpful
6 Replies 6

o.hassairi
Level 1
Level 1

‎07-23-2006 02:18 AM

when you make ping from R1 to 172.16.12.1 the source ip @ will be: 192.168.12.1 (s0) so it will not be NATted in R2 that NATs only IP paquet with source 10.0.0.x.

of course your gateway :172.16.12.1 doesn't know how to reply to 192.168.12.0 network. so the ping wll fail.

wesley_wang
Level 1
Level 1
In response to o.hassairi

‎07-23-2006 04:39 AM

Then , What else should I do ?

Could anyone help ?

0 Helpful

royalblues
Level 10
Level 10
In response to wesley_wang

‎07-23-2006 12:27 PM

You would need to allow the Serial IP subnet on the access-lits for NAT

access-list 1 permit 192.168.12.0 0.0.0.3

Also your gateway should have a reverse route for this subnet.

But if your requirement is just to ping from the R1 router, then you can do an extended ping

router# ping ip

Target IP address: 172.16.12.1

Repeat count [5]:

Datagram size [100]:

Timeout in seconds [2]:

Extended commands [n]: y

Source address or interface:10.0.0.1

0 Helpful

wesley_wang
Level 1
Level 1
In response to royalblues

‎07-23-2006 05:24 PM

Thank you for your reply, royalblues !

But it seems I cann't ping source from the 10.0.0.1 interface .

And I also have a question that do i have to add a route to 192.168.12.0/30 since i have nated the 192.168.12.0/30 to 172.16.12.31 ?

0 Helpful

jackyoung
Level 6
Level 6
In response to wesley_wang

‎07-23-2006 08:28 PM

Try to connect a PC to R1 E0 at ping to Internet then check the NAT at R2 to determine the NAT is working.

I don't think we need static route for 192.168.12.0/30, it is a connected interface in both routers.

Please provide show nat

0 Helpful

zerozerotito
Level 1
Level 1

‎07-24-2006 12:45 AM

Please provide sh ip route and show nat!

And please first clear access-list counters to do it

router# clear access-lists counters

then try to ping again,

and look sh access-lists to ensure that ping packets are passing through accesslists...

Pls let me know how it goes...

Regards

0 Helpful
Customers Also Viewed These Support Documents