Solved

Cisco NAT problem 2821 router

Posted on 2009-07-14
7
533 Views
Last Modified: 2012-05-07
I have cisco 2821 router. I NAT many devices thru it. Occasionally (every 2 days or so) I have 1 device that cannot be accessed from outside, like the NAT is not working. Other devices with static NAT's are working fine at same time. Sh ip nat trans for all devices shows traffic in and out. But for this one device with static NAT, not traffic but NAT shows in place. I do clear ip nat trans *, and still nothing. I remove the static NAT for that device only, then readd it, and it works (for a few more days), then stops again. Have to remove (no ip nat inside source static a.a.a.a b.b.b.b) and then readd it (ip nat inside source static a.a.a.a b.b.b.b) to get it to work again. Any ideas? I am on 12.4.(24) T1 IOS
0
Comment
Question by:tdiops
7 Comments
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 24853342
what says the log?
0
 
LVL 16

Expert Comment

by:memo_tnt
ID: 24853752
does it work with router reload ?? before removing the static nat ???
 
will you send run config ,, remove passwords and real IPs
??
 
BR
0
 
LVL 17

Expert Comment

by:mikecr
ID: 24855306
Do you have any issues pinging the inside device from the router, such as dropped pings or high ping times?
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 2

Author Comment

by:tdiops
ID: 24855414
no problems after reload of the router...that was how one of the other techs was solving the issue...reboot or clear ip nat trans in middle of busy activity. Only problem is that it killed every other connection thru device. By removing the one nat entry, then reapplying it, router stays up, other devices still work, and then this device now worked. no other issues. I can ping inside on local network, I can ping the router from the device and vice versa, just cannot pass anything thru the router until removing stat nat and reapply.
0
 
LVL 17

Expert Comment

by:mikecr
ID: 24855440
Can you post your configuration here so that I can get a look at it? Just remove any passwords or live IP addresses.
0
 
LVL 2

Accepted Solution

by:
tdiops earned 0 total points
ID: 24908743
I noticed that the router was on 12.3 and I read a forum somewhere where others had issues with NAT on 12.3 versions. Recommended was upgrade to 12.4 IOS. I upgraded and so far no problems. Will report back in it happens again.
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

I have seen some questions on problems with SSH/telnet access to Cisco routers that may occur despite the fact that from a PC connected to your LAN, Internet connectivity is in place and users can access Internet sites without any issues.  There are…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now