Hi  Deepak,

Thanks for your help!

You know the problem is my router got only two interfaces. so literally i have three connections and two interfaces.

Hi,

then add a switch to the router and both ISP connection you can terminate on the switch and Switch to the router make a trunk port. 

ISP 1--------->

                                 Switch1 ------> Router WAN port

ISP2---------->

Regards,

Deepak Kumar

Hi Deepak,

Thanks again for your help!!

Can you please help me on that?

Hi,

Your switch configuration must be like:

!

VLAN 20

name Internet

!

interface VLAN 20

no shut

no cdp enable

!

VLAN 30

name WAN

!

interface VLAN 30

no shut

no cdp enable

!

Interface FastEthernet 0/1

description "Connected to Internet ISP"

Switchport mode access

switchport access vlan 20

no shut

!

Interface FastEthernet 0/2

description "Connected to WAN ISP"

Switchport mode access

switchport access vlan 30

no shut

!

Interface FastEthernet 0/2

description "Connected to Router WAN interface"

switchport mode trunk

switchport tunk allowed vlan 20,30

no shut

!

No ip route !<If the switch is L3)

!

!

----------------------

Router configuration as below:

interface GigabitEthernet0/2
description Connected to Internet switch
no ip address
duplex full
speed auto

no shut
!
interface GigabitEthernet0/2.20

description "Connected to Internet ISP VLAN"
encapsulation dot1Q 20
ip address dhcp

IP nat outside

no shut
!
!
interface GigabitEthernet0/2.30

description "Connected to WAN ISP VLAN"
encapsulation dot1Q 30
IP address 172.16.0.1 255.255.255.0

no shut

!

----------

If you are having a dial-up connection then Internet connection configuration must be different with Dial-up configuration.

Regards,

Deepak Kumar

Thanks Deepak,

Am confused with the NAT configuration, can you please help me on that?

Thanks.

Hi,

You have to NAT the packet from LAN to the Internet. So I have configured the NAT from LAN (IP NAT Inside) to outside (IP nat Outside). 

As I mentioned that I am not aware of WAN connection, Is it MLPS connection? If then mostly we don't require NAT over the MPLS connection (If subnet will not same at both locations). That why I have not configured any NAT on MPLS connection.

for better understanding, please explain your complete network details. 

Regards,

Deepak Kumar

Hi Deepak,

Thanks Again,

WAN is like MPLS network. but in my case it will not work unless I use NAT command. Is there any way that I can use two NAT commands at the same time for the Internet and MPLS.

Thanks.

Hi,

Yes, you can use the two NAT at a time but you can share remote end subnet details. so I can make a good configuration for your bust you can suppose that remote end subnet is 192.168.100.0/24 then your configuration must be like:

ip access-list extended NAT-Internet

10 deny ip 192.168.1.0 0.0.0.255 172.16.0.0 0.0.0.255

20  deny ip 192.168.1.0 0.0.0.255 192.168.100 0.0.0.255
30 permit ip 192.168.1.0.0 0.0.0.255 any

!

ip access-list extended NAT-WAN

10 permit ip 192.168.1.0 0.0.0.255 172.16.0.0 0.0.0.255

20  permit ip 192.168.1.0 0.0.0.255 192.168.100 0.0.0.255
30 deny ip 192.168.1.0.0 0.0.0.255 any

!

ip nat inside source list NAT-Internet interface  GigabitEthernet0/2.20 overload

ip nat inside source list NAT-WAN interface  GigabitEthernet0/2.30 overload

!

!

!

interface GigabitEthernet0/2
description Connected to Internet switch
no ip address
duplex full
speed auto

no shut
!
interface GigabitEthernet0/2.20

description "Connected to Internet ISP VLAN"
encapsulation dot1Q 20
ip address dhcp

IP nat outside

no shut
!
!
interface GigabitEthernet0/2.30

description "Connected to WAN ISP VLAN"
encapsulation dot1Q 30
IP address 172.16.0.1 255.255.255.0

IP nat outside

no shut

!
!

P route 0.0.0.0 0.0.0.0 XX xx/01

IP route 192.168.100.0 255.255.255.0 172.16.0.2

!

!

Regards,

Deepak Kumar

Hi, 

I happy that it resolved the issue. Don't forget to vote a helpful post.

Regards,

Deepak Kumar