Hi, All
We have ASR 1001 (with image asr1001-universalk9_npe.03.07.01.S.152-4.S1.bin)
While trying to configure NAT on it enforced the following problem:
Address translation is working OK, except one thing: dns resolving from inside to outside interface not working.
(but I see the udp packets on port 53 in "show ip nat nat translation...")
Config of ASR1001:
ip dhcp pool test1
network 192.168.3.0 255.255.255.0
default-router 192.168.3.1
dns-server xxx.xxx.xxx.xxx
lease 0 0 20
interface GigabitEthernet0/0/0
description Internet
ip address aaa.aaa.aaa.aaa 255.255.255.252
ip nat outside
ip virtual-reassembly
interface GigabitEthernet0/0/1
description LAN
ip address 192.168.3.1 255.255.255.0
ip nat inside
ip virtual-reassembly
ip default-gateway zzz.zzz.zzz.zzz
ip nat pool testpool aaa.aaa.aaa.aaa aaa.aaa.aaa.aaa netmask 255.255.255.252
ip nat inside source list 7 pool testpool overload
ip route 0.0.0.0 0.0.0.0 zzz.zzz.zzz.zzz
access-list 7 permit 192.168.3.0 0.0.0.255
The question is: what's wrong with our config?
I can ping from inside (LAN) interface external dns-server, but when I try to
use nslookup on client's pc - there's no resolve from this dns server...
WBR,
Andrew
