• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 257
  • Last Modified:

NAT problems - I belive?

Dear All,

We have a problem with a Cisco 877 Series ADSL router at a remote office in the States. We have successfully set up the ADSL line and can ping the local outside interface, the ISP gateway and ping-able web servers.

The dhcp pool is working, and the router is assigning ip addresses wirelessly via the BVI. The nat configuration appears to be fine to me, however, we are not getting any translation between the inside and outside interfaces, and cannot reach any public addresses from the 192.168.2.0 network. The config is pasted below. Any help greatly appreciated!

!This is the running config of the router: 192.168.2.1
!----------------------------------------------------------------------------
!version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ************
!
boot-start-marker
boot-end-marker
!
enable secret 5 *********
enable password ******
!
no aaa new-model
!
!
no ip routing
no ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.2.1 192.168.2.9
ip dhcp excluded-address 192.168.2.51 192.168.2.254
!
ip dhcp pool sdm-pool1
   network 192.168.2.0 255.255.255.0
   dns-server 71.242.0.12
   default-router 192.168.2.1
!
!
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
!
!
!
!
archive
 log config
  hidekeys
!
!
!
bridge irb
!
!
interface ATM0
 no ip address
 no ip route-cache
 no atm ilmi-keepalive
 dsl operating-mode auto
!
interface ATM0.1 point-to-point
 ip address 71.242.244.81 255.255.255.0
 ip nat outside
 ip virtual-reassembly
 no ip route-cache
 atm route-bridged ip
 pvc 0/35
  encapsulation aal5snap
 !
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
 no ip address
 no ip route-cache
 shutdown
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
 station-role root
!
interface Vlan1
 no ip address
 no ip route-cache
 bridge-group 8
!
interface BVI8
 ip address 192.168.2.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 71.242.244.1
!
ip http server
no ip http secure-server
ip nat inside source list 1 interface ATM0.1 overload
!
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.2.0 0.0.0.255
!
!
!
control-plane
!
bridge 8 protocol ieee
bridge 8 route ip
!
line con 0
 no modem enable
line aux 0
line vty 0 4
 password qubeadm
 login
!
scheduler max-task-time 5000
end



 
0
ollygd
Asked:
ollygd
1 Solution
 
kdearingCommented:
I believe the problem is in how your bridge group is configured.
http://www.cisco.com/en/US/docs/routers/access/800/850/software/configuration/guide/857swcg.html
0
 
Press2EscCommented:
have you confirmed the public address is properly getting routed to you?
0
 
ollygdAuthor Commented:
Sorry to leave this one dangling everyone. In the end, it turned out to be a problem at the ISP end. All working now! Thanks for your input.

Regards

Olly
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now