Link to home
Start Free TrialLog in
Avatar of orac666
orac666

asked on

Sanity check needed on basic router config. Is likely a gateway config. error.

I'm having trouble configuring a router from scratch.

The DHCP server appears to be working but I can't get out.  I'm guessing I have the gateway syntax wrong, but am unsure.  The tutorials have got me close, I'm sure I'm missing something basic.

I've attached the config file.  It's accurate, save the replacement of the first series of digits with an x for security purposes.

When I replace the router with a chepie netgear everything works fine.
!
hostname UnionPlaza-gw
!
enable password xxxxxx
!
!
!
!
!
clock timezone CST -6
clock summer-time CDT recurring
ip subnet-zero
no ip source-route
ip domain-name x.com
ip name-server x.130.255.3
ip name-server x.122.32.71
ip name-server x.42.42.42
ip dhcp excluded-address 192.168.2.254
ip dhcp excluded-address 192.168.2.253
!
ip dhcp pool FranceOffice
   network 192.168.2.0 255.255.255.0
   default-router 192.168.2.254 
   dns-server x.130.255.3 x.122.32.71
   domain-name x.com
!
!
!
!
!
interface Ethernet0
 description LAN
 ip address 192.168.2.254 255.255.255.0 secondary
 ip address x.139.18.98 255.255.255.252
!
interface Serial0
 ip address 192.168.2.253 255.255.255.252
!
!
ip classless
ip route 0.0.0.0 0.0.0.0 x.139.18.97
no ip http server
!
!
!
line con 0
 transport input none
line aux 0
 transport input all
line vty 0 4
 access-class 99 in
 exec-timeout 0 0
 password x
 login
!

Open in new window

Avatar of kdearing
kdearing
Flag of United States of America image

Are you trying to use the E0 port for both outside and inside?
What is the S0 used for?
Need more info on what you are trying to do.

The first thing I noticed is that you have 2 interfaces configured in the same subnet.

interface Serial0
 ip address 192.168.2.253 255.255.255.252
             and
interface Ethernet0
 ip address 192.168.2.254 255.255.255.0 secondary

Unless the interfaces are bridged, it won't work.
Avatar of orac666
orac666

ASKER

Yes, I am using Eth) for both outside and inside.  There is only one NIC on this router.  It used to have 8 IP's bound to that single Interface and worked just fine.

The serial port is using the same subnet, I'm just using it to configure.  Does that matter?
ASKER CERTIFIED SOLUTION
Avatar of Les Moore
Les Moore
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of orac666

ASKER

I may not be a pro on these Cisco's but they can assign multiple IP's to one port.

That's one of their big advantages.

It was working that way before.
The only way that it MAY work is to trunk E0 with 2 VLANs, outside and inside.
Of course, that would involve using a VLAN-capable switch.
Configuring NAT may be tricky.
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of orac666

ASKER

TO clarify matters, this is a 3640 series router
In that case, if you only have one ethernet port, this isn't going to work for your setup. You need at least 2. One for inside, one for outside.
Please check to see if you have more than one. If you don't you won't be getting it working without buying another module and WIC.
Check the nat-on-a-stick in the link I referenced above. I've never seen it work and it is not TAC supported, but the document is there.
Lol the next thing I'm gonna invent will be ACLs on a stick! :-P
packets come in, but they can't get out!
the packet motel.....
Avatar of orac666

ASKER

Had the Eureka moment while reading these replies.

The router was prior configured with loads of IP's on the single NIC, but it did not do NAT.

It makes sense that NAT requires two NICs.

Thanks for all the help.
Avatar of orac666

ASKER

Thanks guys.  The multiple IP's on one NIC thing was what was throwing me, I forgot to consider the need for two NICs on NAT.

No problem! NAT does indeed require two network interfaces - one to act as outside and at lease one to act as inside.
:) Let me know if you have any other questions!