Sonicwall SOHO3, Cisco 678 Qwest DSL

Posted on 2003-03-14
Medium Priority
Last Modified: 2012-05-04
Sonicwall SOHO3 set up as my DHCP server issuing private IPs to my local LAN (Win 2k machines)

connected to a Cisco 678 DSL Router connected to Qwest DSL

When my Cisco is configured to pull is IP info via DHCP from Qwest, everything works fine, Sonicwall pulls its WAN IP info from the Cisco, the Cisco gets a WAN IP and and IP of, the Sonicwall receives an IP of and a gateway of and subnets of

Like I said, the above works perfectly, the LAN computers get IPs in the 192.168.168.x range, they use (sonicwall internal IP) as they're gateway, they can surf the net, access email, the sonicwall protects us, we're happy, yada yada....

Now.... I leased a block of static IPs from Qwest, got assigned thru  The label .128 as Reserved Network, .134 as Reserved Gateway, .135 as Reserved Broadcast, and the other 5 as user assignable.

Here's what I do to configure the Cisco 678
set nat disable
set dhcp server disable
set ppp wan0-0 ipcp
set ppp wan0-0 dns
set ppp wan0-0 login ktpc1
set ppp wan0-0 password xxxxxxxxxxxxxx
set int eth0 address
set int eth0 netmask
set int wan0-0 disable
set int wan0-0 close
set int wan0-0 vpi 0
set int wan0-0 vci 32
set int wan0-0 enable


I configure the Sonicwall to work in NAT enabled mode
I keep the LAN IP at the mask as
I set the WAN Gateway address as
I set the sonicwall WAN (NAT Public address) as (the first of my five user assignable)
I set the sonicwall WAN subnet as
I set the DNS servers to and (per Qwest)

I cannot surf the web, check email, nothing from my workstations.  

Here's what I can do

From the Cisco - I can tracert all the way to the DNS servers (and presumably beyond)

From the sonicwall I can tracert as far as (the WAN IP of the Cisco)
From the workstations I can tracert as far as (the WAN IP of the Cisco)

Of course Qwest says its not their problem, sonicwall says its qwest's problem, blah blah.

I think the problem lies in the Cisco, I don't think it knows to route traffic from the LAN to the WAN, how do I check this?

Qwest did say it takes 24 hours for the IPs to become "routable".  That was 30 hours ago.  Is it possible that I just need to wait it out longer, or I am configuring something wrong?
Question by:dcaparaso
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Accepted Solution

epylko earned 1000 total points
ID: 8154597
I'm not sure if you can do a traceroute with extended options on a 678, but try something like the following:

Protocol [ip]:
Target IP address: (that's www.cisco.com)
Source address:
<take the rest of the options as default>

That will help show that the IP block you have is routable.

If that works, try setting the IP address of your SoHo to .133 and check.  Work your way down to .129  Perhaps they think you only have 1 usable IP (a mask of instead of 5.

LVL 79

Expert Comment

ID: 8637229
No comment has been added lately (78 days), so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area for this question:

RECOMMENDATION: Award points to epylko

Please leave any comments here within 7 days.



EE Cleanup Volunteer
If you feel that your question was not properly addressed, or that none of the comments received were appropriate answers, please post a request in Community support (with a link to this page) to refund your points. http://www.experts-exchange.com/Community_Support/

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It happens many times that access list (ACL) have to be applied to outgoing router interface in order to limit some traffic.This article is about how to test ACL from the router which is not very intuitive for everyone. Below scenario shows simple s…
Shadow IT is coming out of the shadows as more businesses are choosing cloud-based applications. It is now a multi-cloud world for most organizations. Simultaneously, most businesses have yet to consolidate with one cloud provider or define an offic…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question