Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
959
Views
0
Helpful
3
Replies

Cannot get PAT working for all my networks.

Go to solution
Networking_Adz
Level 1
Level 1

‎02-18-2020 04:02 PM - edited ‎02-18-2020 04:10 PM

Hi there , I am trying to create a network which will allow me to use PAT on the router although i am having difficulty to make it work. I have R3 being the main router to configure the nat translations. the server connected to R3 is able to ping just fine to ISP network. Other networks are unable to ping the ISP. Vlans are all using dhcp and management is using it too. i have 3 routers in the network excluding the ISP router which uses a different address. R1, R2 and R3

My network structure is as follows 

Subnet

VLAN10 ------ 10.0.1.0 /24

VLAN15 ------ 10.0.2.0 /24

VLAN20 ------ 10.0.3.0 /24

Management -- 10.0.4.0 /24

Server ------- 10.0.5.0 /24

R1-R2 ------- 10.0.6.0 /24

R2-R3 ------- 10.0.7.0 /24

R1-R3 ------- 10.0.8.0 /24

PAT network 

R3-ISP------- 209.165.100.30 | .17 respectively 

 

where R1 holds all vlans 10,15,20

R2 holds management

R3 holds server and the Isp

all networks are able to ping with eachother just fine. aside from the ISP as mentioned. I am using EIGRP for this network.

---------------------------------------------------------------------

R1 ---> Show running config

hostname R1

!

ip dhcp excluded-address 10.0.0.1 10.0.0.11

ip dhcp excluded-address 10.0.1.1 10.0.1.11

ip dhcp excluded-address 10.0.1.129 10.0.1.139

ip dhcp excluded-address 10.0.2.1 10.0.2.11

ip dhcp excluded-address 10.0.3.1 10.0.3.11

!

ip dhcp pool VLAN10

network 10.0.1.0 255.255.255.0

default-router 10.0.1.1

ip dhcp pool VLAN15

network 10.0.2.0 255.255.255.0

default-router 10.0.2.1

ip dhcp pool VLAN20

network 10.0.3.0 255.255.255.0

default-router 10.0.3.1

!

no ip cef

no ipv6 cef

!

spanning-tree mode pvst

interface GigabitEthernet0/0

no ip address

duplex auto

speed auto

!

interface GigabitEthernet0/0.1

encapsulation dot1Q 10

ip address 10.0.1.1 255.255.255.0

!

interface GigabitEthernet0/0.2

encapsulation dot1Q 15

ip address 10.0.2.1 255.255.255.0

!

interface GigabitEthernet0/0.3

encapsulation dot1Q 20

ip address 10.0.3.1 255.255.255.0

!

interface GigabitEthernet0/1

no ip address

duplex auto

speed auto

shutdown

!

interface GigabitEthernet0/2

no ip address

duplex auto

speed auto

shutdown

!

interface Serial0/0/0

ip address 10.0.6.1 255.255.255.0

!

interface Serial0/0/1

ip address 10.0.8.1 255.255.255.0

!

interface Serial0/1/0

no ip address

clock rate 2000000

shutdown

!

interface Serial0/1/1

no ip address

clock rate 2000000

shutdown

!

interface Vlan1

no ip address

shutdown

!

router eigrp 1

network 10.0.1.0 0.0.0.255

network 10.0.2.0 0.0.0.255

network 10.0.3.0 0.0.0.255

network 10.0.4.0 0.0.0.255

network 10.0.5.0 0.0.0.255

network 10.0.6.0 0.0.0.255

network 10.0.7.0 0.0.0.255

network 10.0.8.0 0.0.0.255

!

end

----------------------------------------------------

R2 -----> show running config

 

hostname R2

!

!

!

!

ip dhcp excluded-address 10.0.4.1 10.0.4.11

!

ip dhcp pool MANAGEMENT

network 10.0.4.0 255.255.255.0

default-router 10.0.4.1

!

no ip cef

no ipv6 cef

!

spanning-tree mode pvst

!

interface GigabitEthernet0/0

no ip address

duplex auto

speed auto

shutdown

!

interface GigabitEthernet0/1

ip address 10.0.4.1 255.255.255.0

duplex auto

speed auto

!

interface GigabitEthernet0/2

no ip address

duplex auto

speed auto

shutdown

!

interface Serial0/0/0

ip address 10.0.6.2 255.255.255.0

clock rate 2000000

!

interface Serial0/0/1

ip address 10.0.7.1 255.255.255.0

clock rate 2000000

!

interface Serial0/1/0

no ip address

clock rate 2000000

shutdown

!

interface Serial0/1/1

no ip address

clock rate 2000000

shutdown

!

interface Vlan1

no ip address

shutdown

!

router eigrp 1

network 10.0.1.0 0.0.0.255

network 10.0.2.0 0.0.0.255

network 10.0.3.0 0.0.0.255

network 10.0.4.0 0.0.0.255

network 10.0.5.0 0.0.0.255

network 10.0.6.0 0.0.0.255

network 10.0.7.0 0.0.0.255

network 10.0.8.0 0.0.0.255

!

ip classless

ip route 1.1.1.1 255.255.255.255 Serial0/0/1

!

ip flow-export version 9

!

line con 0

!

line aux 0

!

line vty 0 4

login

!

end

------------------------------------------------------------------------------------------------

R3 show running-config

hostname R3

!

no ip cef

no ipv6 cef

!

spanning-tree mode pvst

!

interface Loopback1

ip address 1.1.1.1 255.255.255.255

!

interface GigabitEthernet0/0

ip address 10.0.5.1 255.255.255.0

ip access-group 1 out

ip nat inside

duplex auto

speed auto

!

interface GigabitEthernet0/1

no ip address

duplex auto

speed auto

shutdown

!

interface GigabitEthernet0/2

no ip address

duplex auto

speed auto

shutdown

!

interface Serial0/0/0

ip address 10.0.7.2 255.255.255.0

ip nat inside

!

interface Serial0/0/1

ip address 10.0.8.2 255.255.255.0

ip nat inside

clock rate 2000000

!

interface Serial0/1/0

ip address 209.165.100.30 255.255.255.240

ip nat outside

clock rate 2000000

!

interface Serial0/1/1

no ip address

clock rate 2000000

shutdown

!

interface Vlan1

no ip address

shutdown

!

router eigrp 1

network 10.0.1.0 0.0.0.255

network 10.0.2.0 0.0.0.255

network 10.0.3.0 0.0.0.255

network 10.0.4.0 0.0.0.255

network 10.0.5.0 0.0.0.255

network 10.0.6.0 0.0.0.255

network 10.0.7.0 0.0.0.255

network 10.0.8.0 0.0.0.255

!

ip nat inside source list 10 interface Serial0/1/0 overload

ip classless

ip route 0.0.0.0 0.0.0.0 Loopback1

!

ip flow-export version 9

!

access-list 10 permit 10.0.0.0 0.0.255.255

!

line con 0

!

line aux 0

!

line vty 0 4

login

!

end

----------------------------------------------------------------------------------

I have posted a picture of my network below. Sorry about the post being kind of messy, its my first time posting on a cisco forum. 

Labels:
Preview file
72 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni

‎02-18-2020 06:37 PM

Hi

First, you don't have to declare all your network statements on all routers. You have to make network statement for local subnets. For examlle R3, doesn't have all you subnets and should only have network statements with its local subnets. As R1 is the one having all subnets, it will have all network statement.
Then on R3, why you have a default route pointing to your loopback? The default route sound ehave your isp router ip as next hop (isp ip sitting in the same subnet as your s0/1/0 interface.
After having done that, you'll need to advertise this default route to your routers over eigrp. There are different methods (redistribution, network statement, summary). For example, this is the redistribution method:
redistribute static metric 1544 10 255 1 1500

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni

‎02-18-2020 06:37 PM

Hi

First, you don't have to declare all your network statements on all routers. You have to make network statement for local subnets. For examlle R3, doesn't have all you subnets and should only have network statements with its local subnets. As R1 is the one having all subnets, it will have all network statement.
Then on R3, why you have a default route pointing to your loopback? The default route sound ehave your isp router ip as next hop (isp ip sitting in the same subnet as your s0/1/0 interface.
After having done that, you'll need to advertise this default route to your routers over eigrp. There are different methods (redistribution, network statement, summary). For example, this is the redistribution method:
redistribute static metric 1544 10 255 1 1500

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful

Go to solution
luis_cordova
VIP Alumni
VIP Alumni

‎02-18-2020 07:12 PM

Hi @Networking_Adz 

 

Try this changes:

 

R1

router eigrp 1

no auto-summary 

no network 10.0.4.0 0.0.0.255
no network 10.0.5.0 0.0.0.255

no network 10.0.7.0 0.0.0.255

 

R2

router eigrp 1

no auto-summary 

no network 10.0.1.0 0.0.0.255
no network 10.0.2.0 0.0.0.255

no network 10.0.3.0 0.0.0.255

no network 10.0.5.0 0.0.0.255

no network 10.0.8.0 0.0.0.255

 

R3

router eigrp 1

no auto-summary 

no network 10.0.1.0 0.0.0.255
no network 10.0.2.0 0.0.0.255

no network 10.0.3.0 0.0.0.255

no network 10.0.4.0 0.0.0.255

no network 10.0.6.0 0.0.0.255

redistribute static <— this command ensures that the default static route is learned by the other EIGRP routers.

 

no ip route 0.0.0.0 0.0.0.0 Loopback1

ip route 0.0.0.0 0.0.0.0 s0/1/0


Regards

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP

‎02-19-2020 05:08 AM

Hello,

 

I recreated your topology, have a look at the revised project (version 7.3.0 is required)...

EIGRP_NAT.zip
0 Helpful
Customers Also Viewed These Support Documents