Solved: 819 Internet Access Issue

77agate77 · ‎07-08-2017

Hi!

I'm new to Cisco and I'm having trouble getting internet access on an 819 router. I have the cellular modem set up correctly as I'm able to ping out but wired clients (Vlan 1) are unable to access the internet.

Here's my config:

Building configuration...
WLAN_AP_SM: Config command is not supported

Current configuration : 5944 bytes
!
version 15.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
aqm-register-fnf
!
logging buffered 51200 warnings
!
no aaa new-model
!
crypto pki trustpoint TP-self-signed-3487231615
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3487231615
revocation-check none
rsakeypair TP-self-signed-3487231615
!
!
crypto pki certificate chain TP-self-signed-3487231615
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33343837 32333136 3135301E 170D3137 30373038 31383435
33315A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 34383732
33313631 3530819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100A087 32599E52 5F62CDE3 8D35D6A9 DD11BF00 22955E38 7E2555AA F979C613
64DD2D85 ABB32641 2732D795 DF279E4B 06E7145D F7B747EA 8928E1A5 506B7CB7
130E159D 82E2C023 4D19569C F9446549 85C1FFE8 8304E478 FD1269EA 88ADED5E
84951A77 CCCE4E72 3290054E 59D00493 A7076C5B 0DFBFDDE AA5CCC2E 5C623A63
18770203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
551D2304 18301680 146CA25C DBF8EFAC CA9291A2 68D09659 8EE99D6A 9B301D06
03551D0E 04160414 6CA25CDB F8EFACCA 9291A268 D096598E E99D6A9B 300D0609
2A864886 F70D0101 05050003 81810033 09E3DA95 B1A60CC7 475C5DCF 1794A3B6
40709DDA 3DC55B8B 1D324892 A0754650 1D4739B6 3D7D38A9 096A7C7C E81995A8
A1A76A47 CB7936E3 DF18CDD5 A89979FF 43314C48 CD889C83 873E17F1 0813A427
EAAA6456 3A7BA0B5 2A9A9D84 45CF0E49 88DB835A 140957B3 826933D8 246E7967
84DA608C CAB14EF6 0A10B907 9B0A85
quit
!
!
!
!

!
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.128
default-router 10.10.10.1
lease 0 2
!
!
!
no ip domain lookup
ip domain name yourdomain.com
ip cef
no ipv6 cef
!
!
!
!
!
multilink bundle-name authenticated
!
chat-script lte "" "AT!CALL" TIMEOUT 20 "OK"
chat-script ltescript "" "AT!CALL1" TIMEOUT 20 "OK"
!
!
!
!
!
!
license udi pid C819HG-4G-V-K9 sn FTX19478003
!
!
!
!
!
!
!
controller Cellular 0
!
!
!
!
!
!
!
!
!
!
!
interface Cellular0
ip address negotiated
no ip unreachables
ip nat outside
ip virtual-reassembly in
encapsulation slip
load-interval 30
dialer in-band
dialer idle-timeout 0
dialer string lte
dialer string ltescript
dialer watch-group 1
async mode interactive
!
interface FastEthernet0
no ip address
!
interface FastEthernet1
no ip address
!
interface FastEthernet2
no ip address
!
interface FastEthernet3
no ip address
!
interface GigabitEthernet0
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0
no ip address
shutdown
clock rate 2000000
!
interface Vlan1
description $ETH_LAN$
ip address 10.10.10.1 255.255.255.128
ip tcp adjust-mss 1452
!
ip forward-protocol nd
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
ip route 0.0.0.0 0.0.0.0 Cellular0
!
dialer watch-list 1 ip 5.6.7.8 0.0.0.0
dialer watch-list 1 delay route-check initial 30
dialer watch-list 1 delay connect 1
no cdp run
!
access-list 23 permit 10.10.10.0 0.0.0.127
!
control-plane
!
!
!
mgcp behavior rsip-range tgcp-only
mgcp behavior comedia-role none
mgcp behavior comedia-check-media-src disable
mgcp behavior comedia-sdp-force disable
!
mgcp profile default
!
!
!
!

line con 0
login local
no modem enable
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
stopbits 1
line 3
script dialer ltescript
modem InOut
no exec
speed 144000
line vty 0 4
access-class 23 in
privilege level 15
login local
transport input telnet ssh
line vty 5 15
access-class 23 in
privilege level 15
login local
transport input telnet ssh
!
scheduler allocate 20000 1000
!
end

Hector Gustavo Serrano Gutierrez · ‎07-09-2017

To get NAT configured, to your current configuration just add:

conf t
!
interface Vlan1
 ip nat inside
!
interface Cellular0
 ip nat outside
!
ip nat inside source list NAT-INSIDE-LOCAL interface cellular0 overload
!
ip access-list extended NAT-INSIDE-LOCAL
 permit ip 10.0.0.0 0.255.255.255 any
 permit ip 172.16.0.0 0.15.255.255 any
 permit ip 192.168.0.0 0.0.255.255 any
!
end

View solution in original post

Predrag Jovic · ‎07-08-2017

You are missing NAT part in your configuration.

77agate77 · ‎07-08-2017

Would the command be:

ip nat inside source 10.10.10.0 255.255.255.128 cellular 0 ?

Predrag Jovic · ‎07-08-2017

Not really. NAT have 3 steps for configuration.

1. configure interfaces to participate in NAT (ip nat inside, ip nat outside (or ip nat enabled))

2. choose interesting traffic (access list, route-map)

3. create NAT statement

Cisco NAT overload configuration

In your case, I guess, you don't need to configure NAT pool.

Hector Gustavo Serrano Gutierrez · ‎07-09-2017

To get NAT configured, to your current configuration just add:

conf t
!
interface Vlan1
 ip nat inside
!
interface Cellular0
 ip nat outside
!
ip nat inside source list NAT-INSIDE-LOCAL interface cellular0 overload
!
ip access-list extended NAT-INSIDE-LOCAL
 permit ip 10.0.0.0 0.255.255.255 any
 permit ip 172.16.0.0 0.15.255.255 any
 permit ip 192.168.0.0 0.0.255.255 any
!
end

77agate77 · ‎07-09-2017

Thank you so much!!