Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
3637
Views
5
Helpful
5
Replies

DHCP from ISP not working with NAT

Go to solution
ricky levesque
Level 1
Level 1

‎11-13-2018 05:09 PM - edited ‎03-05-2019 11:03 AM

Hello All,

I have an issue with an ISR router i'm setting up on my home lab.

my ISP provides IP addresses on a vlan interface.

when my router is configured with this Dot1Q interface, it gets an IP from the ISP DHCP server.

when i configure NAT on the outside interface, (ip nat outside) i can no longer receive an IP from the DHCP server for that interface.

 

here are my configs:

 

outside interface:

interface GigabitEthernet0/0/0.35
description ISP_vlan_35
encapsulation dot1Q 35
ip address dhcp
ip nat outside

 

NAT configs:

ip nat inside source list 100 interface GigabitEthernet0/0/0.35 overload

 

ACL config:

access-list 100 permit ip any any

 

default route:

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0/0.35 dhcp

 

 

if i get an IP address and configure NAT afterwards, i can get on the internet from internal devices... until the DHCP lease expires.

 

any ideas on why i'm not getting an IP when i configure NAT-Outside?

 

thanks in advances for your help and attemtion to my question

2 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni

‎11-13-2018 07:02 PM

Hi,

If I am getting your point correctly. As I am getting that this issue with NATTing. It is not happing if you will connect ISP after configuring the NAT. 

 

Please share some output:

sho ip nat statistics

Show IP nat translation

Show ip route

show ip access-list

 

But same time, you can try to edit ACL 100 with a specific LAN subnet.

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

View solution in original post

5 Replies 5

Go to solution
johnd2310
Level 8
Level 8

‎11-13-2018 06:52 PM

Hi,

 

What router and ios version are you running?

 

Thanks

John

**Please rate posts you find helpful**
0 Helpful

Go to solution
ricky levesque
Level 1
Level 1
In response to johnd2310

‎11-13-2018 07:16 PM

router is an ISR 1111

 

curently running: IOS version 16.06.04

also tried: 16.07.01

 

 

0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni

‎11-13-2018 07:02 PM

Hi,

If I am getting your point correctly. As I am getting that this issue with NATTing. It is not happing if you will connect ISP after configuring the NAT. 

 

Please share some output:

sho ip nat statistics

Show IP nat translation

Show ip route

show ip access-list

 

But same time, you can try to edit ACL 100 with a specific LAN subnet.

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

Go to solution
ricky levesque
Level 1
Level 1
In response to Deepak Kumar

‎11-13-2018 08:10 PM

Thank you Deepak kumar

changing the ACL to the specific subnet has fixed the issue.

i'll have to find out why the ACL was stopping the DHCP traffic.

 

thanks for your help.

0 Helpful

Go to solution
Michael Gerencser
Cisco Employee
Cisco Employee
In response to Deepak Kumar

‎01-16-2020 05:34 PM

This really helped me too! I actually had "ip access-group 100 out" on the WAN side and this caused big problems. I was loosing hours of troubleshooting NAT..and then I just removed it...the more specified ACL did it for me too...WOW...what a relief...esp. running an ISR 1111x-8P at home..too good of a device to have considered defective or whatever have you...

0 Helpful
Related community topics
Top