Solved: Network and Vlan no internet

MarkoAnastasov45813 · ‎12-27-2019

Hello Everyone!

Merry Christmas !!!

This will be my first post here and I bit exacted . I am kind of beginner in Cisco networking. I am trying to build something as Soho network. I have a problem with topology and I can not find where is my wrong.

I can not connect my V LAN 's to internet, but most of the host communicated together

I would like to apologies if my questions is too stupid but i need to know where is my wrong

Thank you in advance!

Cisco 2651 and switch 2950 24

You can see the configuration of my network here-

User Access Verification

Password:

Router_1>en

Router_1#show i p route

Gateway of last resort is 192.168.0.1 to network 0.0.0.0

C 192.168.10.0/24 is directly connected, Fast Ethernet 0/1.1

172.16.0.0/24 is sub netted, 1 sub nets

C 172.16.1.0 is directly connected, Fast Ethernet 0/1

C 192.168.20.0/24 is directly connected, Fast Ethernet 0/1.2

C 192.168.0.0/24 is directly connected, Fast Ethernet 0/0

S* 0.0.0.0/0 [254/0] via 192.168.0.1

Router_1#show access-

Router_1#show access-l

Router_1#show access-lists

Standard IP access list 1

permit 172.16.1.0, wildcard bits 0.0.0.255 (15094 matches)

permit 192.168.0.0, wildcard bits 0.0.0.255 (4019 matches)

permit 192.168.10.0, wildcard bits 0.0.0.255 (15 matches)

permit 192.168.20.0, wildcard bits 0.0.0.255 (5 matches)

Router_1#show run

Building configuration...

Current configuration : 1599 bytes

!

version 12.2

service timestamps debug uptime

service timestamps log uptime

no service password-encryption

!

hostname Router_1

!

ip subnet-zero

!

ip dhcp excluded-address 172.16.1.1 172.16.1.10

!

ip dhcp pool soho

network 172.16.1.0 255.255.255.0

default-router 172.16.1.1

dns-server 8.8.8.8

!

call rsvp-sync

!

!interface FastEthernet0/0

ip address dhcp

ip nat outside

duplex auto

speed auto

!

interface FastEthernet0/1

ip address 172.16.1.1 255.255.255.0

ip nat inside

duplex auto

speed auto

!

interface FastEthernet0/1.1

encapsulation dot1Q 10

ip address 192.168.10.1 255.255.255.0

ip nat inside

!

interface FastEthernet0/1.2

encapsulation dot1Q 20

ip address 192.168.20.1 255.255.255.0

ip nat inside

!

interface Serial1/0

no ip address

shutdown

!

interface Serial1/1

no ip address

shutdown

!

interface Serial1/2

no ip address

shutdown

!

interface Serial1/3

no ip address

shutdown

!

interface Serial1/4

no ip address

shutdown

!

interface Serial1/5

no ip address

shutdown

!

interface Serial1/6

no ip address

shutdown

!

interface Serial1/7

no ip address

shutdown

!

ip nat inside source list 1 interface FastEthernet0/0 overload

ip classless

ip route 0.0.0.0 0.0.0.0 192.168.0.1 254

no ip http server

!

access-list 1 permit 172.16.1.0 0.0.0.255

access-list 1 permit 192.168.0.0 0.0.0.255

access-list 1 permit 192.168.10.0 0.0.0.255

access-list 1 permit 192.168.20.0 0.0.0.255

!

dial-peer cor custom

!

!Router_1#show ip nat t

Router_1#show ip nat st

Router_1#show ip nat statistics

Total active translations: 3256 (0 static, 3256 dynamic; 3256 extended)

Outside interfaces:

FastEthernet0/0

Inside interfaces:

FastEthernet0/1, FastEthernet0/1.1, FastEthernet0/1.2

Hits: 1024259 Misses: 13107

Expired translations: 9110

Dynamic mappings:

-- Inside Source

[Id: 1] access-list 1 interface FastEthernet0/0 refcount 3256

Also I will give more info witch network communicate each other

172.16.1.1ping 192.168.0.1

172.16.0.0 ping 192.168.10.1

172.16.1.1 ping 192.168.20.1

All vlan 's is ping between them

192.168.0.1 not ping 172.16.0.1 – not work

vlan's

192.168.10.1

192.168.20.1 can ping all pc with linux, printers, android device

from 192.168.0.1 network, but can not ping pc with win 10 from some network.

192.168.0.1 – ping 192168.10.1 and 192.168.20.0 does not work

No internet on the vlans

There is internet on 172.16.1.0 lan

192.168.0.1

Thank you in advance!!!

Georg Pauwen · ‎12-27-2019

Hello,

on a side note, I assume you have an ISP modem connected to the 2651 ?

Remove the line 'access-list 1 permit 192.168.0.0 0.0.0.255' from your access list, as this is the subnet you use to connect to the uplink. Also, you might as well want to add dhcp pools for your Vlans.

So the entire config should look like this (important parts marked in bold):

Current configuration : 1599 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Router_1
!
ip subnet-zero
!
ip dhcp excluded-address 172.16.1.1 172.16.1.10
ip dhcp excluded-address 192.168.10.1
ip dhcp excluded-address 192.168.20.1
!
ip dhcp pool soho
network 172.16.1.0 255.255.255.0
default-router 172.16.1.1
dns-server 8.8.8.8
!
ip dhcp pool VLAN10
network 192.168.10.0 255.255.255.0
default-router 192.168.10.1
dns-server 8.8.8.8
!
ip dhcp pool VLAN20
network 192.168.20.0 255.255.255.0
default-router 192.168.20.1
dns-server 8.8.8.8
!
call rsvp-sync
!
interface FastEthernet0/0
ip address dhcp
ip nat outside
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 172.16.1.1 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface FastEthernet0/1.1
encapsulation dot1Q 10
ip address 192.168.10.1 255.255.255.0
ip nat inside
!
interface FastEthernet0/1.2
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
ip nat inside
!
interface Serial1/0
no ip address
shutdown
!
interface Serial1/1
no ip address
shutdown
!
interface Serial1/2
no ip address
shutdown
!
interface Serial1/3
no ip address
shutdown
!
interface Serial1/4
no ip address
shutdown
!
interface Serial1/5
no ip address
shutdown
!
interface Serial1/6
no ip address
shutdown
!
interface Serial1/7
no ip address
shutdown
!
ip nat inside source list 1 interface FastEthernet0/0 overload
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp
no ip http server
!
access-list 1 permit 172.16.1.0 0.0.0.255
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 1 permit 192.168.20.0 0.0.0.255
!
dial-peer cor custom

View solution in original post

Jaderson Pessoa · ‎12-27-2019

@MarkoAnastasov45813 Hello again..

Please, make changes below;

no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254

no access-list 1

ip route 0.0.0.0 0.0.0.0 192.168.0.1

access-list 1 permit 172.16.1.0 0.0.0.255

access-list 1 permit 192.168.10.0 0.0.0.255

access-list 1 permit 192.168.20.0 0.0.0.255

which device is 192.168.0.1? It your switch? or your Modem?

You will need create three routes back to your router on this device to your VLAN's.

Log on this device 192.168.0.1 and create three routes, like below;

ip route 172.16.1.0 255.255.255.0 192.168.0.49

ip route 192.168.10.0 255.255.255.0 192.168.0.49

ip route 192.168.20.0 255.255.255.0 192.168.0.49

I think that you didnt my suggestion, try again.

Jaderson Pessoa
*** Rate All Helpful Responses ***

View solution in original post

MarkoAnastasov45813 · ‎12-28-2019

Hello Georg!

Job done!

Massive help! Thank you! I appreciate it!

This is the config and work perfect!

Also thank you of all of you guys!!

Also thank you of all of you guys!!!

!ip dhcp excluded-address 172.16.2.1 172.16.2.20

ip dhcp excluded-address 192.168.10.1

ip dhcp excluded-address 192.168.20.1

!

ip dhcp pool Route_2

network 172.16.2.0 255.255.255.0

default-router 172.16.2.1

dns-server 8.8.8.8

!

ip dhcp pool 10

network 192.168.10.0 255.255.255.0

default-router 192.168.10.1

dns-server 8.8.8.8

!

ip dhcp pool 20

network 192.168.20.0 255.255.255.0

default-router 192.168.20.1

dns-server 8.8.8.8

!

call rsvp-sync

interface FastEthernet0/0

ip address dhcp

ip nat outside

duplex auto

speed auto

!

interface Serial0/0

no ip address

shutdown

!

interface BRI0/0

no ip address

encapsulation hdlc

shutdown

!

interface FastEthernet0/1

ip address 172.16.2.1 255.255.255.0

ip nat inside

duplex auto

speed auto

!

interface FastEthernet0/1.1

encapsulation dot1Q 10

ip address 192.168.10.1 255.255.255.0

ip nat inside

!

interface FastEthernet0/1.2

encapsulation dot1Q 20

ip address 192.168.20.1 255.255.255.0

ip nat inside

!

ip nat inside source list marko interface FastEthernet0/0 overload

ip classless

ip http server

!

ip access-list standard marko

permit 172.16.2.0 0.0.0.255

permit 192.168.10.0 0.0.0.255

permit 192.168.20.0 0.0.0.255

!

dial-peer cor custom

View solution in original post

paul driver · ‎12-27-2019

Hello

Config looks okay apart from your default gateway, try the following

no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp

sent from iphone

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

MarkoAnastasov45813 · ‎12-27-2019

Hello Paul.Thank you so much. I will try it now.

Georg Pauwen · ‎12-27-2019

Hello,

on a side note, I assume you have an ISP modem connected to the 2651 ?

Remove the line 'access-list 1 permit 192.168.0.0 0.0.0.255' from your access list, as this is the subnet you use to connect to the uplink. Also, you might as well want to add dhcp pools for your Vlans.

So the entire config should look like this (important parts marked in bold):

Current configuration : 1599 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Router_1
!
ip subnet-zero
!
ip dhcp excluded-address 172.16.1.1 172.16.1.10
ip dhcp excluded-address 192.168.10.1
ip dhcp excluded-address 192.168.20.1
!
ip dhcp pool soho
network 172.16.1.0 255.255.255.0
default-router 172.16.1.1
dns-server 8.8.8.8
!
ip dhcp pool VLAN10
network 192.168.10.0 255.255.255.0
default-router 192.168.10.1
dns-server 8.8.8.8
!
ip dhcp pool VLAN20
network 192.168.20.0 255.255.255.0
default-router 192.168.20.1
dns-server 8.8.8.8
!
call rsvp-sync
!
interface FastEthernet0/0
ip address dhcp
ip nat outside
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 172.16.1.1 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface FastEthernet0/1.1
encapsulation dot1Q 10
ip address 192.168.10.1 255.255.255.0
ip nat inside
!
interface FastEthernet0/1.2
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
ip nat inside
!
interface Serial1/0
no ip address
shutdown
!
interface Serial1/1
no ip address
shutdown
!
interface Serial1/2
no ip address
shutdown
!
interface Serial1/3
no ip address
shutdown
!
interface Serial1/4
no ip address
shutdown
!
interface Serial1/5
no ip address
shutdown
!
interface Serial1/6
no ip address
shutdown
!
interface Serial1/7
no ip address
shutdown
!
ip nat inside source list 1 interface FastEthernet0/0 overload
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp
no ip http server
!
access-list 1 permit 172.16.1.0 0.0.0.255
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 1 permit 192.168.20.0 0.0.0.255
!
dial-peer cor custom

MarkoAnastasov45813 · ‎12-27-2019

Hello Georg! I am starting with now config right now . Thank you very much!

We will be in touch!

MarkoAnastasov45813 · ‎12-28-2019

Hello Georg!

Job done!

Massive help! Thank you! I appreciate it!

This is the config and work perfect!

Also thank you of all of you guys!!!

!ip dhcp excluded-address 172.16.2.1 172.16.2.20

ip dhcp excluded-address 192.168.10.1

ip dhcp excluded-address 192.168.20.1

!

ip dhcp pool Route_2

network 172.16.2.0 255.255.255.0

default-router 172.16.2.1

dns-server 8.8.8.8

!

ip dhcp pool 10

network 192.168.10.0 255.255.255.0

default-router 192.168.10.1

dns-server 8.8.8.8

!

ip dhcp pool 20

network 192.168.20.0 255.255.255.0

default-router 192.168.20.1

dns-server 8.8.8.8

!

call rsvp-sync

interface FastEthernet0/0

ip address dhcp

ip nat outside

duplex auto

speed auto

!

interface Serial0/0

no ip address

shutdown

!

interface BRI0/0

no ip address

encapsulation hdlc

shutdown

!

interface FastEthernet0/1

ip address 172.16.2.1 255.255.255.0

ip nat inside

duplex auto

speed auto

!

interface FastEthernet0/1.1

encapsulation dot1Q 10

ip address 192.168.10.1 255.255.255.0

ip nat inside

!

interface FastEthernet0/1.2

encapsulation dot1Q 20

ip address 192.168.20.1 255.255.255.0

ip nat inside

!

ip nat inside source list marko interface FastEthernet0/0 overload

ip classless

ip http server

!

ip access-list standard marko

permit 172.16.2.0 0.0.0.255

permit 192.168.10.0 0.0.0.255

permit 192.168.20.0 0.0.0.255

!

dial-peer cor custom

Jaderson Pessoa · ‎12-27-2019

@MarkoAnastasov45813 hello

Please, make changes below;

no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254

no access-list 1

ip route 0.0.0.0 0.0.0.0 192.168.0.1

access-list 1 permit 172.16.1.0 0.0.0.255

access-list 1 permit 192.168.10.0 0.0.0.255

access-list 1 permit 192.168.20.0 0.0.0.255

which device is 192.168.0.1? It your switch? or your Modem?

You will need create three routes back to your router on this device to your VLAN's.

Log on this device 192.168.0.1 and create three routes, like below;

ip route 172.16.1.0 255.255.255.0 (ip of your interface FastEthernet0/0 on your router)

ip route 192.168.10.0 255.255.255.0 (ip of your interface FastEthernet0/0 on your router)

ip route 192.168.20.0 255.255.255.0 (ip of your interface FastEthernet0/0 on your router)

and post here the result.

Jaderson Pessoa
*** Rate All Helpful Responses ***

MarkoAnastasov45813 · ‎12-27-2019

Hello Jaderson! Thank you for your advice .

Yes 192.168.0.1 is a my home router. let me start with new config and I will keep in touch!

MarkoAnastasov45813 · ‎12-27-2019

Hello guys!

I am still fighting with this.

Much appreciate your help. Thank you!

When I try to apply some of this :

no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254

ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp ---I Lost the connection with internet.

I believe that FastEthernet0/0 dhcp is with ip 192.168.0.49.

permit 172.16.1.0, wildcard bits 0.0.0.255 (628 matches)
permit 192.168.10.0, wildcard bits 0.0.0.255
permit 192.168.20.0, wildcard bits 0.0.0.255

I still go it :

Gateway of last resort is 192.168.0.1 to network 0.0.0.0

C 192.168.10.0/24 is directly connected, FastEthernet0/1.1
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.1.0 is directly connected, FastEthernet0/1
C 192.168.20.0/24 is directly connected, FastEthernet0/1.2
C 192.168.0.0/24 is directly connected, FastEthernet0/0
S* 0.0.0.0/0 [254/0] via 192.168.0.1

hostname Router_1
!
!
ip subnet-zero
!
!
ip dhcp excluded-address 172.16.1.1 172.16.1.10
!
ip dhcp pool soho
network 172.16.1.0 255.255.255.0
default-router 172.16.1.1
dns-server 8.8.8.8
!
call rsvp-sync
!
!
!
!
!
interface FastEthernet0/0
ip address dhcp --- No ip here ??
ip nat outside
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 172.16.1.1 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface FastEthernet0/1.1
encapsulation dot1Q 10
ip address 192.168.10.1 255.255.255.0
!
interface FastEthernet0/1.2
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
!
!
ip nat inside source list 1 interface FastEthernet0/0 overload - how to delete this one
ip nat inside source list marko interface FastEthernet0/0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.0.1 254
no ip http server
!
!
ip access-list standard marko
permit 172.16.1.0 0.0.0.255
permit 192.168.10.0 0.0.0.255
permit 192.168.20.0 0.0.0.255

show

Georg Pauwen · ‎12-27-2019

Hello,

you need to delete the static route you have in place, in global config mode:

--> no ip nat inside source list 1 interface FastEthernet0/0 overload - how to delete this one
ip nat inside source list marko interface FastEthernet0/0 overload
ip classless
--> no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254
no ip http server

and add the static route:

ip route 0.0.0.0 0.0.0.0 FastEtheernet0/0 dhcp

Router_1#conf t

Router_1(config)#no ip nat inside source list 1 interface FastEthernet0/0 overload

Router_1(config)#no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254

Router_1(config)#ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp

MarkoAnastasov45813 · ‎12-27-2019

Hi Georg.

I much apprentice your help. Respect

I did it.

and I have it :

Router_1>en
Router_1#config
Configuring from terminal, memory, or network [terminal]?
Enter configuration commands, one per line. End with CNTL/Z.
Router_1(config)#$nside source list 1 interface FastEthernet0/0 overload
Router_1(config)#no ip route 0.0.0.0 0.0.0.0 192.168.0.1 254
Router_1(config)#ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp
^
% Invalid input detected at '^' marker.

Router_1(config)#ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp - this is worried me

Also i do not have internet access

this is done -

ip nat inside source list marko interface FastEthernet0/0 overload
ip classless
no ip http server

Router_1#show ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
* - candidate default, U - per-user static route, o - ODR
P - periodic downloaded static route

Gateway of last resort is not set -- ???

C 192.168.10.0/24 is directly connected, FastEthernet0/1.1
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.1.0 is directly connected, FastEthernet0/1
C 192.168.20.0/24 is directly connected, FastEthernet0/1.2
C 192.168.0.0/24 is directly connected, FastEthernet0/0

Georg Pauwen · ‎12-27-2019

Hello,

just configure:

Router_1(config)#ip route 0.0.0.0 0.0.0.0 FastEthernet0/0

without the 'dhcp' keyword at the end...

MarkoAnastasov45813 · ‎12-27-2019

Hi buddy!

Yes now command is work. Thank you.

but unfortunately still not internet.

#show ip route

Gateway of last resort is 0.0.0.0 to network 0.0.0.0

C 192.168.10.0/24 is directly connected, FastEthernet0/1.1
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.1.0 is directly connected, FastEthernet0/1
C 192.168.20.0/24 is directly connected, FastEthernet0/1.2
C 192.168.0.0/24 is directly connected, FastEthernet0/0
S* 0.0.0.0/0 is directly connected, FastEthernet0/0

MarkoAnastasov45813 · ‎12-27-2019

Hi buddy!

Yes now command is work. Thank you.

but unfortunately still not internet no where

#show ip route

Gateway of last resort is 0.0.0.0 to network 0.0.0.0

C 192.168.10.0/24 is directly connected, FastEthernet0/1.1
172.16.0.0/24 is subnetted, 1 subnets
C 172.16.1.0 is directly connected, FastEthernet0/1
C 192.168.20.0/24 is directly connected, FastEthernet0/1.2
C 192.168.0.0/24 is directly connected, FastEthernet0/0
S* 0.0.0.0/0 is directly connected, FastEthernet0/0

Jaderson Pessoa · ‎12-27-2019

Did you do my suggestion?

to see what ip address of your interface... try commands below;

show ip interface brief
show ip arp

Jaderson Pessoa
*** Rate All Helpful Responses ***