[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.
Question
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
8.0

Can't route to Internet from branch offices

Asked by hullc65203 in Network Routers

Tags: Cisco

I've put in a new MPLS system and it seems to be working internally just fine.

My main office is 10.71.42.0 The MPLS router that goes to my branches is at 10.71.42.142.
All Internet bound traffic is routed to the firewall at 192.168.1.1

I can get to the Internet from 10.71.42.0, but can't from any of my branches (10.71.40.0, 10.71.41.0, 10.71.43.0) coming from 10.71.42.142.

Can someone take a look at my config and see if I'm overlooking something?

Building configuration...

Current configuration : 2419 bytes
!
! Last configuration change at 15:14:02 UTC Mon Sep 8 2008
! NVRAM config last updated at 15:14:38 UTC Mon Sep 8 2008
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname CFB-1750
!
boot-start-marker
boot-end-marker
!
no logging console
enable secret 5 $xxxxxxxxxxxxxxxxxxxxxxxxOa7m7.
!
memory-size iomem 25
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
!
!
!
ip cef
ip inspect name firewall cuseeme
ip inspect name firewall fragment maximum 256 timeout 1
ip inspect name firewall ftp
ip inspect name firewall http java-list 51
ip inspect name firewall realaudio
ip inspect name firewall smtp
ip inspect name firewall sqlnet
ip inspect name firewall streamworks
ip inspect name firewall tftp
ip inspect name firewall vdolive
ip inspect name firewall tcp
ip inspect name firewall udp
ip inspect name firewall h323
ip audit po max-events 100
no ftp-server write-enable
!
!
!
!
!
!
!
interface Ethernet0
 description Connected to DMZ
 ip address 192.168.1.254 255.255.255.0
 ip helper-address 10.71.42.125
 ip helper-address 10.71.42.164
 half-duplex
 no cdp enable
!
interface FastEthernet0
 description Connected to Protected
 ip address 10.71.42.126 255.255.255.128 secondary
 ip address 10.71.42.158 255.255.255.224
 ip helper-address 10.71.42.164
 ip helper-address 10.71.42.125
 no ip redirects
 ip route-cache same-interface
 speed 100
 full-duplex
 no cdp enable
!
interface Serial0
 no ip address
 shutdown
 no fair-queue
 no cdp enable
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.1.1
ip route 10.6.1.0 255.255.255.0 10.71.42.99
ip route 10.71.40.0 255.255.255.0 10.71.42.142
ip route 10.71.41.0 255.255.255.0 10.71.42.142
ip route 10.71.42.160 255.255.255.224 192.168.1.1
ip route 10.71.43.0 255.255.255.0 10.71.42.142
ip route 10.71.44.0 255.255.255.0 10.71.42.142
ip route 10.71.45.0 255.255.255.0 192.168.1.1
ip route 10.73.18.0 255.255.254.0 10.71.42.129
ip route 10.120.168.0 255.255.255.0 10.71.42.99
ip route 192.9.200.0 255.255.255.0 10.71.42.129
no ip http server
no ip http secure-server
!
!
no cdp run
!
!
line con 0
 exec-timeout 120 0
 login
 transport preferred all
 transport output all
line aux 0
line vty 0 4
 exec-timeout 120 0
 password xxxxxxxxxxxxx
 login
 transport preferred all
 transport input all
 transport output all
!
!
end

CFB-1750#
 
Related Solutions
Keywords: Can't route to Internet from branch of…
Title
1 I need help adding a router to my netw…
 
Loading Advertisement...
 
[+][-]12/19/08 09:45 AM, ID: 23213953Accepted Solution

View this solution now by starting your 30-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

About this solution

Zone: Network Routers
Tags: Cisco
Sign Up Now!
Solution Provided By: hullc65203
Participating Experts: 1
Solution Grade: A
 
[+][-]12/19/08 10:57 AM, ID: 23214499Expert Comment

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20091021-EE-VQP-81 - Hierarchy / EE_QW_2_20070628