[newbie] Trouble connecting Cisco Router to ISP Router/Modem

mirnesc92 · ‎09-29-2015

Hey Guys,

I have a local area network setup on a Cisco 891-W router and Catalyst 3750 switch, that I am trying to connect to the public internet. In order to do that I understand I have to connect my Cisco router to my Verizon ISP router/modem.

I tried following this Cisco How To Guide but still can't seem to connect. I can't seem to figure out where I went wrong here.

The Cisco router is connected to the Verizon ISP router on Gi0; and the Cisco switch on Fa8.

This is my current running-configuration of the Cisco router.

R1(config)#do show run
Building configuration...

Current configuration : 4681 bytes
!
! Last configuration change at 17:15:14 UTC Tue Sep 29 2015 by admin
! NVRAM config last updated at 16:44:29 UTC Tue Sep 29 2015 by admin
! NVRAM config last updated at 16:44:29 UTC Tue Sep 29 2015 by admin
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname R1
!
boot-start-marker
boot config usbflash0:CVO-BOOT.CFG
boot-end-marker
!
!
enable secret 5 [removed].
!
no aaa new-model
!
service-module wlan-ap 0 bootimage autonomous
crypto pki token default removal timeout 0
!
!
ip source-route
!
!
!
ip dhcp excluded-address 196.1.10.2 196.1.10.200
ip dhcp excluded-address 196.1.20.2 196.1.20.200
ip dhcp excluded-address 196.1.30.2 196.1.30.200
ip dhcp excluded-address 196.1.40.2 196.1.40.200
ip dhcp excluded-address 196.1.50.2 196.1.50.200
ip dhcp excluded-address 196.1.60.2 196.1.60.200
ip dhcp excluded-address 196.1.66.2 196.1.66.200
ip dhcp excluded-address 196.1.77.2 196.1.77.200
!
ip dhcp pool vlan10
 network 196.1.10.0 255.255.255.0
 default-router 196.1.10.1
!
ip dhcp pool vlan20
 network 196.1.20.0 255.255.255.0
 default-router 196.1.20.1
!
ip dhcp pool vlan30
 network 196.1.30.0 255.255.255.0
 default-router 196.1.30.1
!
ip dhcp pool vlan40
 network 196.1.40.0 255.255.255.0
 default-router 196.1.40.1
!
ip dhcp pool vlan50
 network 196.1.50.0 255.255.255.0
 default-router 196.1.50.1
!
ip dhcp pool vlan60
 network 196.1.60.0 255.255.255.0
 default-router 196.1.60.1
!
ip dhcp pool vlan66
 network 196.1.66.0 255.255.255.0
 default-router 196.1.66.1
!
ip dhcp pool vlan77
 network 196.1.77.0 255.255.255.0
 default-router 196.1.77.1
!
!
ip cef
ip domain name mydomain.net
no ipv6 cef
!
!
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
license udi pid CISCO891W-AGN-A-K9 sn [removed]
!
!
username admin password 7 [removed]
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0
 no ip address
!
interface FastEthernet1
 no ip address
!
interface FastEthernet2
 no ip address
!
interface FastEthernet3
 no ip address
!
interface FastEthernet4
 no ip address
!
interface FastEthernet5
 no ip address
!
interface FastEthernet6
 no ip address
!
interface FastEthernet7
 no ip address
!
interface FastEthernet8
 no ip address
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
 duplex auto
 speed auto
 no cdp enable
!
interface FastEthernet8.10
 encapsulation dot1Q 10
 ip address 196.1.10.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.20
 encapsulation dot1Q 20
 ip address 196.1.20.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.30
 encapsulation dot1Q 30
 ip address 196.1.30.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.40
 encapsulation dot1Q 40
 ip address 196.1.40.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.50
 encapsulation dot1Q 50
 ip address 196.1.50.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.60
 encapsulation dot1Q 60
 ip address 196.1.60.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.66
 encapsulation dot1Q 66
 ip address 196.1.66.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface FastEthernet8.77
 encapsulation dot1Q 77
 ip address 196.1.77.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 no ip route-cache
!
interface GigabitEthernet0
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
 no ip route-cache
 duplex auto
 speed auto
 no cdp enable
!
interface wlan-ap0
 description Service module interface to manage the embedded AP
 no ip address
 arp timeout 0
!
interface Wlan-GigabitEthernet0
 description Internal switch interface connecting to the embedded AP
 no ip address
!
interface Vlan1
 ip address 196.1.1.2 255.255.255.0
!
interface Async1
 no ip address
 encapsulation slip
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip nat inside source list 102 interface GigabitEthernet0 overload
ip route 0.0.0.0 0.0.0.0 192.168.1.1 254
!
access-list 102 permit ip 196.1.0.0 0.0.255.255 any
!
!
!
!
!
!
control-plane
!
!
!
!
mgcp profile default
!
!
!
!
!
line con 0
line 1
 modem InOut
 stopbits 1
 speed 115200
 flowcontrol hardware
line 2
 no activation-character
 no exec
 transport preferred none
 transport input all
 transport output pad telnet rlogin udptn ssh
line aux 0
line vty 0 4
 login local
 transport input ssh
!
end

Anyone have any ideas as to what may be causing this?

Mark Malone · ‎09-30-2015

that guide is based on the Verizon CM being in bridge mode

You don't need an AD on this route remove the 254...ip route 0.0.0.0 0.0.0.0 192.168.1.1...and it should also be pointing to the public ip address of the modem or to g0 as the interface

This line ....ip nat inside source list 102 interface GigabitEthernet0 overload...its telling the router to translate your private ip range to another private ip range as your not getting a public Ip address on that interface , the reason its not working is your modem should be in bridge mode , what this does is pulls the public ip off the Verizon router and bridges it to your G0 interface where your ip nat outside is set on your cisco router , do that and your config should work fine

mirnesc92 · ‎10-01-2015

The command 'no ip route 0.0.0.0 0.0.0.0 192.168.1.1 254' and 'no ip route 0.0.0.0 0.0.0.0 192.168.1.1' don't seem to be working.

!
!
no ip http server
no ip http secure-server
ip nat inside source list 102 interface GigabitEthernet0 overload
ip route 0.0.0.0 0.0.0.0 192.168.1.1 254
!
access-list 102 permit ip 196.1.0.0 0.0.255.255 any
!
!
!
!
!
!
control-plane
!
!
!
!
mgcp profile default
!
!
!

R1(config)#no ip route 0.0.0.0 0.0.0.0 192.168.1.1 254
%No matching route to delete
R1(config)#no ip route 0.0.0.0 0.0.0.0 192.168.1.1
%No matching route to delete
R1(config)#

show ip route

Gateway of last resort is 192.168.1.1 to network 0.0.0.0

S*    0.0.0.0/0 [254/0] via 192.168.1.1
      192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks
C        192.168.1.0/24 is directly connected, GigabitEthernet0
L        192.168.1.4/32 is directly connected, GigabitEthernet0
      196.1.1.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.1.0/24 is directly connected, Vlan1
L        196.1.1.1/32 is directly connected, Vlan1
      196.1.10.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.10.0/24 is directly connected, FastEthernet8.10
L        196.1.10.1/32 is directly connected, FastEthernet8.10
      196.1.20.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.20.0/24 is directly connected, FastEthernet8.20
L        196.1.20.1/32 is directly connected, FastEthernet8.20
      196.1.30.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.30.0/24 is directly connected, FastEthernet8.30
L        196.1.30.1/32 is directly connected, FastEthernet8.30
      196.1.40.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.40.0/24 is directly connected, FastEthernet8.40
L        196.1.40.1/32 is directly connected, FastEthernet8.40
      196.1.50.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.50.0/24 is directly connected, FastEthernet8.50
L        196.1.50.1/32 is directly connected, FastEthernet8.50
      196.1.60.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.60.0/24 is directly connected, FastEthernet8.60
L        196.1.60.1/32 is directly connected, FastEthernet8.60
      196.1.66.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.66.0/24 is directly connected, FastEthernet8.66
L        196.1.66.1/32 is directly connected, FastEthernet8.66
      196.1.77.0/24 is variably subnetted, 2 subnets, 2 masks
C        196.1.77.0/24 is directly connected, FastEthernet8.77
L        196.1.77.1/32 is directly connected, FastEthernet8.77

Mark Malone · ‎10-02-2015

that's strange are you copying the line straight off the router or typing it

couple ways you could sort this , take copy off your config onto notepad wipe the router with erase startup-config then reload ,then re-apply with correct default route or 2nd option add another default route along with that route that has no AD at the end and that route will take preference in the routing table as it will only have a default AD of 1

rmott19811 · ‎04-19-2016

I have the same issue - I have a route in my routing table on my 2811 I cannot get rid of either:

S* 0.0.0.0/0 [254/0] via 192.168.1.1

I have cleared all static routes and it still shows up. However, when I add the route "ip route 0.0.0.0 0.0.0.0 192.168.1.1" - The admin distance changes to 1. See output:

R1#sh ip route

Codes: ** OMITTED CODES**
Gateway of last resort is 192.168.1.1 to network 0.0.0.0

S*    0.0.0.0/0 [254/0] via 192.168.1.1
      10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        10.1.1.0/24 is directly connected, FastEthernet0/1
L        10.1.1.1/32 is directly connected, FastEthernet0/1
      192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks
C        192.168.1.0/24 is directly connected, FastEthernet0/0
L        192.168.1.8/32 is directly connected, FastEthernet0/0

R1#conf t

Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#ip route 0.0.0.0 0.0.0.0 192.168.1.1 <- Adding in static default route

R1(config)#do sh ip route
Codes: ** OMITTED CODES **

Gateway of last resort is 192.168.1.1 to network 0.0.0.0

S*    0.0.0.0/0 [1/0] via 192.168.1.1
      10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        10.1.1.0/24 is directly connected, FastEthernet0/1
L        10.1.1.1/32 is directly connected, FastEthernet0/1
      192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks
C        192.168.1.0/24 is directly connected, FastEthernet0/0
L        192.168.1.8/32 is directly connected, FastEthernet0/0
R1(config)#

Tawanda · ‎02-08-2019

Hi, I've been having the same issue but I notice that the

S*    0.0.0.0/0 [254/0] via 192.168.1.1

Is set by the DHCP server and it seems it is not stored in the running config so when you try to do the 'no ip route 0.0.0.0 0.0.0.0 X.X.X.X it will therefore give the

%No matching route to delete

error.

I noticed that when I booted up my router (using GNS3 connected to the outside network). Before I connected the network cable to my outside router, the default route was not appearing but as soon as I connected it and got an ip from DHCP I ran the show ip route command and the default route appeared.

Anyone with more knowledge can clarify. Does a Gateway of last resort configured automatically by DHCP not appear in running config and does DHCP somehow restrict you from deleting one of its parameters (ie the default static route that it sets)

Richard Burts · ‎02-08-2019

It is a good observation that the default route with AD of 254 is generated from DHCP. If you do not have a manually configured static default route then the DHCP route (with its AD of 254) is used. If you configure your own static default route (whose default AD is 1) then it appears in the routing table and the default route from DHCP is not used.

You asked a couple of specific questions and here are the answers:

Does a Gateway of last resort configured automatically by DHCP not appear in running config

Yes the gateway of last resort learned by DHCP does not appear in the running config.

does DHCP somehow restrict you from deleting one of its parameters

Yes DHCP does not allow you to delete one of its parameters. If you think about it the DHCP parameters are configured on the server. You are configuring your router. How would something you configure on your router change the configuration of a remote server?

HTH

Rick

HTH

Rick

paul driver · ‎10-02-2015

Hello

your dhcp exlcued addrress ISNT negating the ip address of your subinterfaces

ip dhcp excluded-address 196.1.10.1 196.1.10.200
ip dhcp excluded-address 196.1.20.1 196.1.20.200
etc....

no ip route 0.0.0.0 0.0.0.0 192.168.1.1 254
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0 dhcp 2

ip dhcp pool vlan x x
import all

As Mark states, your ISP is already perform NAT, So I guess there is not need for this

interface GigabitEthernet0
no ip nat outside

interface x/x
no ip nat intside

res

Paul

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul