10-15-2012 06:25 AM - edited 03-04-2019 05:51 PM
Hi, All
We have ASR 1001 (with image asr1001-universalk9_npe.03.07.01.S.152-4.S1.bin)
While trying to configure NAT on it enforced the following problem:
Address translation is working OK, except one thing: dns resolving from inside to outside interface not working.
(but I see the udp packets on port 53 in "show ip nat nat translation...")
Config of ASR1001:
ip dhcp pool test1
network 192.168.3.0 255.255.255.0
default-router 192.168.3.1
dns-server xxx.xxx.xxx.xxx
lease 0 0 20
interface GigabitEthernet0/0/0
description Internet
ip address aaa.aaa.aaa.aaa 255.255.255.252
ip nat outside
ip virtual-reassembly
interface GigabitEthernet0/0/1
description LAN
ip address 192.168.3.1 255.255.255.0
ip nat inside
ip virtual-reassembly
ip default-gateway zzz.zzz.zzz.zzz
ip nat pool testpool aaa.aaa.aaa.aaa aaa.aaa.aaa.aaa netmask 255.255.255.252
ip nat inside source list 7 pool testpool overload
ip route 0.0.0.0 0.0.0.0 zzz.zzz.zzz.zzz
access-list 7 permit 192.168.3.0 0.0.0.255
The question is: what's wrong with our config?
I can ping from inside (LAN) interface external dns-server, but when I try to
use nslookup on client's pc - there's no resolve from this dns server...
WBR,
Andrew
08-19-2013 12:56 PM
Andrew,
Did you ever find a solution to this issue.
I have the same problem. Can ping 8.8.8.8 and websits by ip from router, switch and pc, but can not browse.
Thank you,
Raymond
05-11-2018 12:51 AM
Andrew - How did you manage to resolve?
Much thanks
Dave
11-06-2022 12:58 PM
same issue here on asr1006x
11-06-2022 01:50 PM
make new post to make all answer you.
11-06-2022 11:41 PM
Hello
Try the following:
ip dhcp pool test1
no dns-server xxx.xxx.xxx.xxx
dns-server 192.168.3.1
exit
ip dns server
11-07-2022 01:23 AM
Only thing what helped was :
clear ip nat translation *
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide