Solved: Re: Cant get PAT to work in Cisco Packet Tracer

fullaccess · ‎10-16-2023

Title says it all. I'm a complete newbie to cisco packet tracer, I started using it 2 days ago so I'm quite lost. Anyway my network (

.pkt file

attached) is as follows:

The ISP server with

ip 208.67.220.220

acts as both a dhcp and a dns server. The router's WAN interface

(gig0/0/0)

gets its ip from the ISP server with dhcp and the LAN interface's

(gig0/0/1) ip is 192.168.0.1

which belongs to VLAN 1. There are other 2 vlans: VLAN 10 with PC0, PC1 and the L3 switch with

ip 192.168.1.1

and VLAN 20 with PC2, PC3 and the L3 switch with

ip 192.168.2.1

The L3 switch is also on vlan 1 with

ip 192.168.0.2, and its default gateway

is the router's lan interface

(192.168.0.1)

The L3 switch is also a VTP server and the L2 switches are its clients. I've enabled ip routing in the L3 switch and I also added a static route in the router which routes all traffic from

192.168.0.0/16 to 192.168.0.2

(the L3 switch). From the pcs I can ping pcs in other vlans as well as the router. With this setup I want to ping the ISP server from one of the pcs, in order to do this I configured PAT in the router. The router is configured like this:

Router#show running-config

Building configuration...




Current configuration : 852 bytes

!

version 15.4

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

!

hostname Router

!

ip cef

no ipv6 cef

!

spanning-tree mode pvst

!

interface GigabitEthernet0/0/0

ip address dhcp

ip nat outside

duplex auto

speed auto

!

interface GigabitEthernet0/0/1

ip address 192.168.0.1 255.255.255.0

ip nat inside

duplex auto

speed auto

!

interface GigabitEthernet0/0/2

no ip address

duplex auto

speed auto

shutdown

!

interface Vlan1

no ip address

shutdown

!

router rip

!

ip nat inside source list 1 interface GigabitEthernet0/0/0 overload

ip classless

ip route 192.168.0.0 255.255.0.0 192.168.0.2

!

ip flow-export version 9

!

access-list 1 permit 192.168.0.0 0.0.255.255

!

line con 0

!

line aux 0

!

line vty 0 4

login

!

end

I'm completely lost as to why it doesnt work.

Diogo Figueiredo · ‎10-17-2023

Hi,

I think that all is ok but you’re missing a

default route

to the outside from your router.

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0

BR

Diogo

View solution in original post

ammahend · ‎10-16-2023

Your routing between L3 switch and Router is not in place, your PAT config was right, once routing is Fixed, I can see translation, seee the fixed file attached.

-hope this helps-

Martin L · ‎10-16-2023

I added

default route to L3 switch; your ip default-gateway 192.168.0.1

is not for L3 switches but for just L2 ones;

Add ip route 0.0.0.0 0.0.0.0 192.168.0.1

Ping Pcs to server and I got

Router#sh ip nat translations

Pro Inside global Inside local Outside local Outside global

icmp 208.67.220.2:1 192.168.1.2:1 208.67.220.220:1 208.67.220.220:1

icmp 208.67.220.2:9 192.168.1.3:9 208.67.220.220:9 208.67.220.220:9

Regards, ML
**Please Rate All Helpful Responses **

Diogo Figueiredo · ‎10-17-2023

Hi,

I think that all is ok but you’re missing a

default route

to the outside from your router.

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0

BR

Diogo