We help IT Professionals succeed at work.
Get Started

Unable to access servers on DMZ after switching to Comcast internet using Cisco 2600 router

Shando1971
Shando1971 asked
on
481 Views
Last Modified: 2012-05-08
We have 1 remote office tied to the HQ with a T1, we recently installed Comcast cable to the remote site to provide it with its own, all internet traffic is going to a proxy server and out to the internet, proxy setting in IE is configured not to use proxy for any internal IPs, both locations has a 2600 Cisco router. Once I configured the router for the new Comcast connection, we lost connection to the website, and our intranet server that are on a dmz at the head quarter. Please see the configuration below and let me know how I can resolve this issue.

version 12.2
service timestamps debug datetime
service timestamps log datetime
service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname router1

!
ip subnet-zero
no ip source-route
ip cef
!
!
no ip domain-lookup

interface FastEthernet0/0
 ip address 192.168.2.1 255.255.255.0
 ip nat inside
 no ip mroute-cache
 no keepalive
 speed 100
 full-duplex
!
interface Serial0/0
 description Point-to-Point
 bandwidth 1544
 ip address 192.168.254.x 255.255.255.252

interface FastEthernet0/1
 description internet connection
 ip address 173.161.y.n 255.255.255.252
 ip nat outside
 no ip mroute-cache
 no keepalive
 speed 100
 full-duplex
!
interface Serial0/1
 no ip address
 shutdown
!
router eigrp 10
 network 192.168.2.0
 network 192.168.3.0
 network 192.168.254.0
 auto-summary
 no eigrp log-neighbor-changes
!
ip nat inside source list ToNAT interface FastEthernet0/1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 173.161.y.n2
no ip http server
ip pim bidir-enable
!
!
ip access-list extended ToNAT
 permit ip host 192.168.2.10 (this is the proxy server's IP) any
access-list 199 permit icmp any any echo
access-list 199 permit icmp any any echo-reply
priority-list 1 protocol ip normal tcp 1494
priority-list 1 default high
dialer-list 1 protocol ip permit
route-map naci-worm permit 10
 match ip address 199
 match length 92 92
 set interface Null0
!
snmp-server community public RO
!
line con 0
 exec-timeout 0 0
 password 7 0826404F0A100005455F5552
 logging synchronous
 login
 
 login
!
no scheduler allocate
end
Comment
Watch Question
Commented:
This problem has been solved!
Unlock 3 Answers and 30 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE