?
Solved

Cisco 871 Router - No NAT to Routable IP Range

Posted on 2011-09-13
5
Medium Priority
?
450 Views
Last Modified: 2012-08-13
Hi,

I’m having a bit of trouble with a test config I have setup for a new Internet service with publically routable IPv4s delivered to my company.

I have a /30 with which I peer my FW to my ISPs router and then a /25 routed to me from my ISP. I subnetted my /25 in to two /27 & one /26 networks. The /26 will be served to my company’s partners as publicly routable addresses.
 
In my config below I have set the peer up fine (fe4) so pinging etc. is fine. VLAN 1 is set to be the gateway for the /26 I’m serving to my partners. If I choose an IP address in that range I can’t reach the internet. I’ve tuned off NAT because I don’t need it for that network.

Any ideas? The IPs in the config have been sanitized but are stateful.

Thanks.
 NetworkTest.txt
0
Comment
Question by:InfoTech1970
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 3

Expert Comment

by:shbasm
ID: 36534194
-what FW  stands for
-how many public IPs you got
-the purpose (publish servers , vpn if vpn how many sites)
-post a diagram
0
 
LVL 6

Expert Comment

by:Sanjeevloke
ID: 36534943
I c on f4 u have put ip nat outside ...remove it...
also make a trace to any internet IP if it reached 2.2.2.1 then it is OK.
If browsing is not happening have u configured public DNS servers ?

also configure it in router to check for e,g
#ip name-server 3.3.3.3
#ip domain lookup

ping www.gmail.com from router ...
also check u can ping any public pingable IP

ping 74.125.236.23 source 1.1.1.126 ---if it ping there should not be a issue ...
0
 
LVL 17

Expert Comment

by:TimotiSt
ID: 37441837
If you mean  iface VLAN 10 is the gateway of your partners, then it looks good to me.
Are you sure your ISP is routing your /25 correctly?

Tamas
0
 

Accepted Solution

by:
InfoTech1970 earned 0 total points
ID: 37520732
This problem has been resolved.
0
 

Author Closing Comment

by:InfoTech1970
ID: 37555142
Fixed myself.
0

Featured Post

NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month8 days, 20 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question