Re: HWIC-4ESW and NAT

mcolley · ‎10-27-2008

Hello All,

I have a Cisco 2821, I am looking for some resources to assist my endeavors configuring NAT (inbound to outbound access) on the HWIC-4ESW.

Currently the internal clients cannot access the internet. Here are my interfaces and config:

GigabitEthernet0/0: 77.77.77.77

Description: "Public Interface"

NAT Outside

FastEthernet0/0/0: 10.2.12.1

NAT Inside

VLAN 3

FastEthernet0/0/1: 10.3.12.1

NAT Inside

VLAN 2

ip nat inside source list 7 interface GigabitEthernet0/0 overload

ip nat pool ovrld 77.77.77.77 77.77.77.77 prefix 28

access-list 7 permit 10.2.12.1 0.0.0.100

access-list 7 permit 10.2.13.1 0.0.0.100

I am able to ping the public interface from the inside networks, and when looking into th translation table, nothing is listed there. Am I missing something in the config for the HWIC-4ESW ?

Many Thanks for any insight you can offer,

Jon Marshall · ‎10-27-2008

What are the subnet masks associated with the clients. Is there any reason why the mask is 0.0.0.100 in your acl 7. Could you explain this bit ?

Also i'm assuming this is not in use

ip nat pool ovrld 77.77.77.77 77.77.77.77 prefix 28

Jon

mcolley · ‎10-27-2008

The subnet masks on the clients are 255.255.255.0, and no - the IP address of 77.77.77.77 is not in use.

Jon Marshall · ‎10-27-2008

change

access-list 7 permit 10.2.12.1 0.0.0.100

access-list 7 permit 10.2.13.1 0.0.0.100

to

access-list 7 permit 10.2.12.0 0.0.0.255

access-list 7 permit 10.2.13.0 0.0.0.255

Edit - there is also a typo in either your interface config or your acl - is it 10.2.13.x or 10.3.12.x ?. Just make sure they match.

Jon