Quick Summary of a problem: I have a Cisco PIX 515 that I am eliminating from the environment. We purchased a Cisco 2851 Router with a HWIC Fast Ethernet card for a DMZ. Issue is, when I setup nat, everything works EXCEPT outside connections coming inbound. I setup basic static mappings however, when I use an IP address in our block of IP's that was not previously configured, it works. It's as if something is still holding those old IP's. We physically turned off the PIX, rebooted the Routers, ISP connection...same issue.
interface gigabit 0/0
description TWC Internet - OUTSIDE
ip address xxx.xxx.204.50 255.255.255.224
ip nat outside
interface gigabit 0/1
description Network 126.96.36.199 - INSIDE
ip address 188.8.131.52 255.255.255.0
ip nat inside
interface fastethernet 0/2/0
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip route outside 0.0.0.0 0.0.0.0 xxx.xxx.204.33
ip nat inside source list NONAT-NAT interface gigabit 0/0 overload
ip nat inside source static 192.168.1.3 xxx.xxx.204.35
ip nat inside source static 192.168.1.2 xxx.xxx.204.36
ip nat inside source static 184.108.40.206 xxx.xxx.204.37
ip nat inside source static 220.127.116.11 xxx.xxx.204.38
ip nat inside source static 18.104.22.168 xxx.xxx.204.39
ip nat inside source static 22.214.171.124 xxx.xxx.204.40
ip access-list extended NONAT-NAT
deny ip 126.96.36.199 0.0.0.255 192.168.150.0 0.0.0.255
deny ip 192.168.1.0 0.0.0.255 192.168.150.0 0.0.0.255
deny ip 192.168.1.0 0.0.0.255 10.13.1.0 0.0.0.255
deny ip 188.8.131.52 0.0.0.255 10.13.1.0 0.0.0.255
well, I guess I could convince them to try this. TimeWarner cable hands off their Internet as Ethernet. I sent a TAC request and they immediately sent a replacement router?!?!?! All I need is some ideas/suggestions of why this is happening, not a new box. Has anyone else experienced this before?
I have powered off everything except for the InsideSwitch.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...