Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7553
Views
0
Helpful
16
Replies

Cannot ping public ip address

Forbes Jenalyn Rose
Level 1
Level 1

‎01-29-2014 06:35 AM - edited ‎03-04-2019 10:11 PM

Hi,

Can anyone please help me on this? All internal routes are working but cannot ping outside the internet.

Strange things is the tunnel is UP. But the router cannot ping the modem or any public ip.

Here's the config on the router:

interface Tunnel65

description ipsec vti to sgsineqnix-gw-2

ip address 10.255.255.14 255.255.255.252

ip summary-address eigrp 89 10.160.0.0 255.255.224.0 5

tunnel source 177.244.222.58

tunnel destination 176.215.93.246

interface FastEthernet0/0

description ADSL WAN Interface

ip address 177.244.222.58 255.255.255.248

ip access-group firewall in

no ip redirects

no ip unreachables

no ip proxy-arp

ip nat outside

duplex auto

speed auto

interface FastEthernet0/1

description internal

ip address 10.160.1.1 255.255.255.0

no ip redirects

no ip proxy-arp

ip nat inside

duplex auto

speed auto

router eigrp 89

redistribute static

network 10.160.0.0 0.0.31.255

network 10.255.255.12 0.0.0.3

network 10.255.255.32 0.0.0.3

network 10.255.255.40 0.0.0.3

network 10.255.255.92 0.0.0.3

network 10.255.255.100 0.0.0.3

no auto-summary

!

ip route 0.0.0.0 0.0.0.0 177.244.222.57

ip route 10.160.0.0 255.255.224.0 10.160.1.254

!

no ip http server

ip nat translation tcp-timeout 42300

ip nat translation udp-timeout 150

ip nat translation finrst-timeout 45

ip nat translation syn-timeout 45

ip nat translation dns-timeout 45

ip nat translation icmp-timeout 45

ip nat translation max-entries 4000

ip nat pool nat 177.244.222.58 177.244.222.58 netmask 255.255.255.248

ip nat inside source route-map nat pool nat overload

!

ip access-list extended firewall

permit ip any host 177.244.222.58

permit ip any host 177.244.222.57

permit icmp any any

ip access-list extended nat

permit ip 10.160.0.0 0.0.31.255 any

!

route-map nat permit 10

match ip address nat

FastEthernet0/0            177.244.222.58  YES manual up                    up 

FastEthernet0/1            10.160.1.1      YES NVRAM  up                    up 

Serial0/3/0                10.252.160.2     YES NVRAM  down                  down

NVI0                       unassigned      NO  unset  up                    up 

Tunnel61                   10.255.255.102  YES NVRAM  up                    up 

Tunnel65                   10.255.255.14   YES NVRAM  up                    up 

Tunnel152                  10.255.255.42   YES NVRAM  up                    up 

Tunnel6301                 10.255.255.94   YES NVRAM  up                    up 

Tunnel8601                 10.255.255.34   YES NVRAM  up                    up 

Please have a look on my config and check if I'm missing something.

Regards,

Jenna

1 person had this problem
Labels:
0 Helpful
16 Replies 16

Forbes Jenalyn Rose
Level 1
Level 1
In response to Jon Marshall

‎01-29-2014 09:47 AM

Hi Jon,

I changed the NAT pool to use 177.244.222.59 and clear the nat translation.

But still no luck.

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame
In response to Forbes Jenalyn Rose

‎01-29-2014 09:56 AM

Jenna

Is this a normal internet connection ?

I have just used ping and traceroute to some of your tunnel destination IPs and they are all fine.  But when i traceroute to your 177.244.222.58 address it's not that is getting lost when it gets to your modem,  it is getting lost after only three hops.

It is as though this public IP block has not been advertised to the rest of the internet but your tunnels are working so i am wondering whether this is a standard internet connection or whether it something specific to the provider.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card