Solved

Cisco 871 Router - No NAT to Routable IP Range

Posted on 2011-09-13
5
445 Views
Last Modified: 2012-08-13
Hi,

I’m having a bit of trouble with a test config I have setup for a new Internet service with publically routable IPv4s delivered to my company.

I have a /30 with which I peer my FW to my ISPs router and then a /25 routed to me from my ISP. I subnetted my /25 in to two /27 & one /26 networks. The /26 will be served to my company’s partners as publicly routable addresses.
 
In my config below I have set the peer up fine (fe4) so pinging etc. is fine. VLAN 1 is set to be the gateway for the /26 I’m serving to my partners. If I choose an IP address in that range I can’t reach the internet. I’ve tuned off NAT because I don’t need it for that network.

Any ideas? The IPs in the config have been sanitized but are stateful.

Thanks.
 NetworkTest.txt
0
Comment
Question by:InfoTech1970
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 3

Expert Comment

by:shbasm
ID: 36534194
-what FW  stands for
-how many public IPs you got
-the purpose (publish servers , vpn if vpn how many sites)
-post a diagram
0
 
LVL 6

Expert Comment

by:Sanjeevloke
ID: 36534943
I c on f4 u have put ip nat outside ...remove it...
also make a trace to any internet IP if it reached 2.2.2.1 then it is OK.
If browsing is not happening have u configured public DNS servers ?

also configure it in router to check for e,g
#ip name-server 3.3.3.3
#ip domain lookup

ping www.gmail.com from router ...
also check u can ping any public pingable IP

ping 74.125.236.23 source 1.1.1.126 ---if it ping there should not be a issue ...
0
 
LVL 17

Expert Comment

by:TimotiSt
ID: 37441837
If you mean  iface VLAN 10 is the gateway of your partners, then it looks good to me.
Are you sure your ISP is routing your /25 correctly?

Tamas
0
 

Accepted Solution

by:
InfoTech1970 earned 0 total points
ID: 37520732
This problem has been resolved.
0
 

Author Closing Comment

by:InfoTech1970
ID: 37555142
Fixed myself.
0

Featured Post

Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
Arrow Electronics was searching for a KVM  (Keyboard/Video/Mouse) switch that could display on one single monitor the current status of all units being tested on the rack.
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question