Re: Connection Problem

busbrian · ‎11-18-2002

I have a 2600 Router connecting 2 networks A (10.0.0.X) & B (10.10.10.X). I have connect A to Ethernet0/0 and B to Ethernet0/1. The "show run" is as follow:

=======================================================

Current configuration : 1485 bytes

!

version 12.1

no service timestamps debug uptime

no service timestamps log uptime

service password-encryption

!

hostname SAMS_Router

!

logging buffered 4096 debugging

enable secret 5 $1$0lhA$G5IJtCWbM/I52qrvriMOu.

enable password 7 01030717481C091D25

!

no ip subnet-zero

no ip source-route

no ip domain-lookup

!

interface Ethernet0/0

description ITED Network IP 10.0.0.X

ip address 10.0.0.254 255.255.255.0

ip access-group 101 in

no ip redirects

no ip unreachables

no ip proxy-arp

full-duplex

no cdp enable

!

interface Ethernet0/1

description SAMS Network IP 10.10.10.X

ip address 10.10.10.254 255.255.255.0

no ip redirects

no ip unreachables

no ip proxy-arp

full-duplex

no cdp enable

!

no ip classless

no ip http server

!

access-list 101 permit tcp 10.0.0.0 0.0.0.255 10.10.10.0 0.0.0.255 gt 1023 established

access-list 101 permit udp 10.0.0.0 0.0.0.255 10.10.10.0 0.0.0.255 gt 1023

access-list 101 permit udp host 10.0.0.21 eq netbios-dgm 10.10.10.0 0.0.0.255 eq netbios-dgm

access-list 101 permit tcp host 10.0.0.21 gt 1023 10.10.10.0 0.0.0.255 eq 139

access-list 101 permit udp host 10.0.0.22 eq netbios-dgm 10.10.10.0 0.0.0.255 eq netbios-dgm

access-list 101 permit tcp host 10.0.0.22 gt 1023 10.10.10.0 0.0.0.255 eq 139

access-list 101 permit icmp 10.0.0.0 0.0.0.255 10.10.10.0 0.0.0.255 echo-reply

access-list 101 deny ip any any log

no cdp run

!

line con 0

line aux 0

line vty 0 4

password 7 105E080A16001D1908

login

!

end

=======================================================

10.0.0.21 is the Fileserver and 10.0.0.22 is the Proxy Server. The problem I encountered is that when I ping from B network, only the Fileserver can be reached, everything else (including the Proxy Server) is unreachable.

Can anyone give me some hints to solve the problem? Thanks!!

thisisshanky · ‎11-18-2002

Are web connections, working via Proxy server from network B?

What about ping from router to Proxy server ?

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus

busbrian · ‎11-18-2002

Network B do not work with Proxy, it needs the Proxy in Network A to access Internet

Ping from Router to Proxy Server is unsuccessful

Thanks!!

patrick.zhang · ‎11-18-2002

I think you should consider the proxy server.

First you should make sure to ping successful from fileserver to proxy server.

If you can't ping successfully,it's nothing about this router,I think.

busbrian · ‎11-19-2002

I can ping successfully from the Fileserver to the Proxy Server ......

I have tried to remove the access list and access group, but the result is still the same except that now Network A (10.0.0.X) can ping the Router interface (10.0.0.254)

Thanks!!

michael-faust · ‎11-19-2002

Do you have a route back from the proxy server? I suspect that the default route and / or default gateway in the proxy server are set to point to the internet. If it doesn't have a route back to the 10.10.10.0 network it will drop the packets. In order to ping, you need to get the request to the end station and the end station needs to get the reply back to you.

busbrian · ‎11-19-2002

I have also try to disconnect the proxy from Network A. But I still cannot ping between Network A and Network B. What make me even more confused is that I can ping the Fileserver on Network A from Network B. So I think it may not be the problem with the Proxy.

Anyways, I will give a try and let you know the result. Thanks!!

busbrian · ‎11-20-2002

Thanks for you suggestion. I have tried to add a route to the Proxy as suggested, but the problem still exists.

Would any body suggest any possible solution? Thanks in advance!

deilert · ‎11-21-2002

Try to ping the host in question with an extended ping, use the record option, if your pings are successful using this option you have a stuck cache entry somewhere

try clearing the Cef table on all routers involved. "clear ip cef" , You may have a stuck Cef entry. If you are not running Cef try " clear ip route-cache.'

I