Solved: No connectivity to internet with 1841 through Comcast gateway.

Dleetomlinjr · ‎05-04-2017

I will start by stating that I am currently studying for my CCENT, so I have a basic understanding of some of the requirements regarding NAT and ACL's but still learning. I have a study lab that I am trying to connect to the internet. The issue I am having is getting through the comcast gateway. I am using an 1841 Cisco router behind the gateway. Feel free to shred my config and offer any advice. I have racked my brains with what little I DO know to find a solution, and of course Comcast tech support will not help.

Gateway IP is 10.0.0.1 /24

Fa 0/1 faces the Comcast gateway (ip dhcp from gateway 10.0.0.41)

Fa 0/0 faces my LAN (ip 10.10.10.1 /24) statically assigned

Host (10.10.10.50 /24) can successfully ping both int on the 1841 as well as the gateway ip, but nothing past that.

Current configuration : 1313 bytes
!
! Last configuration change at 03:41:51 UTC Fri May 5 2017 by lee
version 15.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Maximus_3
!
boot-start-marker
boot-end-marker
!
!
enable secret 5 $1$n5p8$lSTZWvPuA2305FyVNsKCM0
!
no aaa new-model
dot11 syslog
!
!
!
!
!
!
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
license udi pid CISCO1841 sn FTX13088BD1
username lee secret 5 $1$pVBb$57DcsEYj/2L6oyQekavNH/
!
redundancy
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 10.10.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
!
interface FastEthernet0/1
ip address dhcp
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface Serial0/0/0
no ip address
shutdown
!
interface Serial0/1/0
no ip address
shutdown
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip nat inside source list GATEWAY interface FastEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 10.0.0.1
!
ip access-list standard GATEWAY
permit any
!
!
!
!
control-plane
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
login local
line aux 0
line vty 0 4
logging synchronous
login local
transport input telnet ssh
!
scheduler allocate 20000 1000
!
end

chrihussey · ‎05-05-2017

Can you ping the Comcast router (10.0.0.1) from the 10.10.10.50 host?

Even though you are getting the DHCP address from the Comcast gateway, try removing the "ip route 0.0.0.0 0.0.0.0 10.0.0.1" and change it to "ip route 0.0.0.0 0.0.0.0 FastEthernet0/1 dhcp"

View solution in original post

Hitesh Vinzoda · ‎05-10-2017

Hi tthere

ip nat inside source list GATEWAY interface FastEthernet0/0 overload

Change your NAT statement to point to FastEthernet0/1

HTH

Hitesh