This is my first post so I hope I give you all enough information .....
I have a client that has a 1603 router connected via ISDN with NAT translating to 2 internal servers. Everything works perfectly. They have installed a faster link and were given a 1710 router to configure. Both routers are connected to the same hub. I am attempting to recreate the translations on the new router but cannot even get a basic SMTP test on port 25 to work on the new router. I have taken the configuration of the 1710 to it's most basic as a starting point. When I try to Telnet I get a timeout and then back to the command prompt. If I run a "show ip nat translations" when I am doing this I can see the translations listed in the table but it doesn't connect.
Is there any reason why both routers cannot be running together for a testing period or is it more than I have a configuration issue on my new router. I have inclued a "show running-config" on the new router:
service timestamps debug uptime
service timestamps log uptime
enable password *****
memory-size iomem 25
no ip domain-lookup
ip audit notify log
ip audit po max-events 100
ip ssh timeout 120
ip ssh authentication-retries 3
interface Ethernet 0
description connected to Internet
ip address x.x.x.x 255.255.255.252
ip nat outside
interface FastEthernet 0
description connected to
ip address 192.168.0.15 255.255.255.0
ip nat inside
passive-interface Ethernet 0
ip nat pool xxxx-natpool-1 x.x.x.x x.x.x.x netmask 255.255.255.248
ip nat inside source list 1 pool xxxx-natpool-1 overload
Thanks for the input. The routers are both active and running but have different IP addresses for both interenal and external addresses. Everything is running through the 1603 router until I can get the 1710 working as it should, then I will migrate the domain across to the new IP addresses and decomission the 1603 router.
I will be going to site to run a debug on "ip nat" to see if I can get anymore information as to where my sessions are going.
From this I gather that the router is sending through to 192.168.0.2 correctly but not recieving a response back. The server is a Windows 2000 server and I have tried changing the default gateway on it but it doesn't seem to make a difference (although I didn't do a full shutdown and restart as 2000 should handle the change in default gateway).
Solved .... thanks for the help. You were right I did a "show ip nat translations" on the other router and there was my traffic. The default gateway was sending it though. As the system was already live and running through the 1603 router I had to schedule a downtime and test it with the corect default gateways and it worked perfectly.
Thanks to both lgijssel and mklaphek for pointing me in the right direction.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...