Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1686
Views
10
Helpful
6
Replies

ASR 1001 dns requests via NAT problem

Avilkov
Level 1
Level 1

‎10-15-2012 06:25 AM - edited ‎03-04-2019 05:51 PM

    Hi, All

We have  ASR 1001  (with image asr1001-universalk9_npe.03.07.01.S.152-4.S1.bin)

While trying to configure NAT on it enforced the following problem:

Address  translation is working OK, except one thing: dns resolving from inside to outside interface not working.

(but I see the udp packets on port 53 in "show ip nat nat translation...")

Config of ASR1001:

ip dhcp pool test1

network 192.168.3.0 255.255.255.0

default-router 192.168.3.1

dns-server xxx.xxx.xxx.xxx

lease 0 0 20

interface GigabitEthernet0/0/0

description Internet

ip address aaa.aaa.aaa.aaa 255.255.255.252

ip nat outside

ip virtual-reassembly

interface GigabitEthernet0/0/1

description LAN

ip address 192.168.3.1 255.255.255.0

ip nat inside

ip virtual-reassembly

ip default-gateway zzz.zzz.zzz.zzz

ip nat pool testpool aaa.aaa.aaa.aaa aaa.aaa.aaa.aaa netmask 255.255.255.252

ip nat inside source list 7 pool testpool overload

ip route 0.0.0.0 0.0.0.0 zzz.zzz.zzz.zzz

access-list 7 permit 192.168.3.0 0.0.0.255

The question is: what's wrong with our config?

I can ping from inside (LAN) interface external dns-server, but when I try to

use nslookup on client's pc - there's no resolve from this dns server...

WBR,

Andrew

9 people had this problem
Labels:
6 Replies 6

Raymond Kleinsasser
Level 1
Level 1

‎08-19-2013 12:56 PM

Andrew,

Did you ever find a solution to this issue.

I have the same problem.  Can ping 8.8.8.8 and websits by ip from router, switch and pc, but can not browse.

Thank you,

Raymond

0 Helpful

sarge
Level 1
Level 1

‎05-11-2018 12:51 AM

Andrew - How did you manage to resolve?

 

Much thanks

 

Dave

0 Helpful

divadko
Level 1
Level 1

‎11-06-2022 12:58 PM

same issue here on asr1006x

MHM Cisco World
VIP
VIP
In response to divadko

‎11-06-2022 01:50 PM

make new post to make all answer you.

0 Helpful

paul driver
VIP
VIP

‎11-06-2022 11:41 PM

Hello

Try the following:

ip dhcp pool test1
no dns-server xxx.xxx.xxx.xxx
dns-server 192.168.3.1
exit

ip dns server




Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

divadko
Level 1
Level 1

‎11-07-2022 01:23 AM

Only thing what helped was :

clear ip nat translation *
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card