Solved

Cisco 1811 - routed subnet behind PPPOE can't reach internet without NAT

Posted on 2013-12-14
6
243 Views
Last Modified: 2015-04-12
Hello,
My ISP recently assigned me a routed subnet - let's call it 206.x.x.104/29 (255.255.255.248). They said that this routed subnet is "behind" the IP that is assigned to me automatically via PPPOE.
When I take one of those usable IPs (like 206.x.x.105), assign it to a VLAN called "206" on the router, and then get my laptop on that VLAN, I can see the router. The router can see me. The router can see the internet. The laptop cannot reach the internet.
I've turned on ip route. I've set the default gateway to use the Dialer1 interface. The PPPoE connects fine, I just can't get the VLAN 206 to see the internet.
Of course, when I enable NAT for the VLAN 206 (set VLAN 206 up for "ip nat inside", and set Dialer1 as "ip nat outside"), the VLAN 206 can see the internet, but nothing on the internet can see VLAN 206 since it's NATed.
Also worth noting: a traceroute from another place on the internet to an IP address in my routed subnet 206.x.x.104/29 never seems to reach my automatically  assigned PPPOE IP. Any good advice out there?1811WorkInProgress.txt
0
Comment
Question by:SPLAT-Tech
  • 3
  • 3
6 Comments
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39719220
Config looks good to me.  Have you tried using:

ip route 0.0.0.0 0.0.0.0 dhcp

instead of...

ip route 0.0.0.0 0.0.0.0 Dialer1

Alternatively, just remove the static default route.  You have the ppp ipcp route default command in the Dialer config so it will inject the route from the PPP session if IPCP negotiation succeeds.
0
 

Author Comment

by:SPLAT-Tech
ID: 39719585
OK - so I hopped into the router and removed the static default route which allowed the router to continue to see the internet (as you said, since the ipcp session comes up), but no internet from laptop still without NAT setup on the router. Also, re-adding the static default route as you suggested, using DHCP instead of Dialer1, gave me the same result.
I'm hoping to get a call from my ISP on Monday to see if this is on their end or not. Thanks craigbeck for the ideas.
My biggest concern: the ISP seems to be saying that the routed subnet is a next-hop after my PPPOE assigned IP, then why do I never see the PPPOE assigned IP in the tracert results? We'll see on Monday...
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39719683
They probably just set the route profile wrong in RADIUS.
0
Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

 

Accepted Solution

by:
SPLAT-Tech earned 0 total points
ID: 40711437
After speaking with the ISP ( i got someone that actually new what they were doing) we found out they had a bad route on their end.  They would not disclose the exact nature of the problem but they did fix it and all is good now.
0
 

Author Closing Comment

by:SPLAT-Tech
ID: 40719447
The problem was actually with the ISP
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 40719476
So why was my answer not selected??

craigbeck 2013-12-15 at 10:01:44  ID: 39719683
They probably just set the route profile wrong in RADIUS.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now