Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
959
Views
5
Helpful
3
Replies

no internet access on Ethernet ports

Go to solution
Ralf110666
Level 1
Level 1

‎04-08-2020 01:02 AM

Hello all,

for a function test i need to get internet connection with a IR 829. before i worked allready with a 809 and used the setup on that 829...unfortunately not successful. I modified it here and there a bit now i am able to ping 8.8.8.8 via console port. but not over GE 1 to 4. on a connected computer i get an IP address from the dhcp pool i can also ping the 829 from a connected computer but i can not ping 8.8.8.8 and i have also no DNS.

The actual config looks as follows :

~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2020.04.08 09:04:27 =~=~=~=~=~=~=~=~=~=~=~=

IR800#show
*Apr 8 08:00:36.781: %SYS-5-CONFIG_I: Configured from console by console runnin
Building configuration...

Current configuration : 3821 bytes
!
! Last configuration change at 08:00:36 UTC Wed Apr 8 2020
!
version 15.7
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname IR800
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
service-module wlan-ap 0 bootimage autonomous
!
ignition off-timer 900
!
ignition undervoltage threshold 11
--More--  
IR800#how     show running
Building configuration...

Current configuration : 3821 bytes
!
! Last configuration change at 08:00:36 UTC Wed Apr 8 2020
!
version 15.7
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname IR800
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
service-module wlan-ap 0 bootimage autonomous
!
ignition off-timer 900
!
ignition undervoltage threshold 11
--More--  !
no ignition enable
!
!
!
!
!
!
!
!
!
!
!


!
ip dhcp excluded-address 192.168.7.1
!
ip dhcp pool dpool1
import all
network 192.168.7.0 255.255.255.0
dns-server 192.168.7.1
domain-name test
--More--   default-router 192.168.7.1
!
!
!
ip domain name Spessart
ip name-server 192.168.7.1
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
chat-script lte "" "AT!CALL" TIMEOUT 20 "OK"
!
!
license udi pid IR829-2LTE-EA-EK9 sn FGL23259005
!
!
!
redundancy

!
--More--  !
!
!
!
controller Cellular 0
lte modem link-recovery disable
!
controller Cellular 1
no lte gps enable
lte modem link-recovery disable
!
!
!
!
!
!
!
!
!
!
!
interface GigabitEthernet0
no ip address
--More--   shutdown
!
interface GigabitEthernet1
switchport mode access
no ip address
!
interface GigabitEthernet2
switchport mode access
no ip address
!
interface GigabitEthernet3
switchport mode access
no ip address
!
interface GigabitEthernet4
switchport mode access
no ip address
!
interface Wlan-GigabitEthernet0
no ip address
!
interface GigabitEthernet5
no ip address
--More--   shutdown
duplex auto
speed auto
!
interface Cellular0/0
ip address negotiated
ip nat outside
ip virtual-reassembly in
encapsulation slip
dialer in-band
dialer idle-timeout 0
dialer string lte
dialer-group 1
ipv6 address autoconfig
!
interface Cellular1/0
ip address negotiated
encapsulation slip
dialer in-band
dialer idle-timeout 0
dialer string lte
dialer-group 1
ipv6 address autoconfig
--More--  !
interface Cellular0/1
no ip address
encapsulation slip
!
interface Cellular1/1
no ip address
encapsulation slip
!
interface wlan-ap0
no ip address
shutdown
!
interface Vlan1
ip address 192.168.7.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
!
interface Async0
no ip address
encapsulation scada
!
interface Async1
--More--   no ip address
encapsulation scada
!
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source list NAT interface Cellular0/0 overload
ip route 0.0.0.0 0.0.0.0 Cellular0/0
ip route 0.0.0.0 0.0.0.0 Vlan1
ip route 8.8.8.8 255.255.255.255 Cellular0/0
ip route 0.0.0.0 0.0.0.0 Vlan1 dhcp
!
ip access-list extended NAT
permit ip host 0.0.0.0 any
!
dialer-list 1 protocol ip permit
dialer-list 1 protocol ipv6 permit
ipv6 ioam timestamp
!
!
--More--  !
control-plane
!
!
!
line con 0
stopbits 1
line 1 2
stopbits 1
line 3
script dialer lte
no exec
transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
rxspeed 150000000
txspeed 50000000
line 4
no activation-character
no exec
transport preferred none
transport input all
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
line 8
--More--   no exec
transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
rxspeed 150000000
txspeed 50000000
line 9
script dialer lte
no exec
transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
line 15
no exec
transport preferred lat pad telnet rlogin lapb-ta mop udptn v120 ssh
transport output lat pad telnet rlogin lapb-ta mop udptn v120 ssh
line 1/3 1/6
transport preferred none
transport output none
stopbits 1
line vty 0 4
login
transport input none
!
no scheduler max-task-time
--More--  no iox hdm-enable
iox client enable interface GigabitEthernet5
no iox recovery-enable
!
!
!
!
!
!
!
end

 

Best regards

ralf

 

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎04-08-2020 01:46 AM

 

Make these changes - 

 

1) In your DHCP pool setup - 

 

dns-server 8.8.8.8  + any others you want to add 

 

2) Your NAT access-list - 

 

permit ip 192.168.7.0 0.0.0.255 any 

 

Jon

View solution in original post

3 Replies 3

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎04-08-2020 01:46 AM

 

Make these changes - 

 

1) In your DHCP pool setup - 

 

dns-server 8.8.8.8  + any others you want to add 

 

2) Your NAT access-list - 

 

permit ip 192.168.7.0 0.0.0.255 any 

 

Jon

Go to solution
Ralf110666
Level 1
Level 1
In response to Jon Marshall

‎04-08-2020 02:15 AM

Thanks a lot Jon. It seem to be fine now.

 

Best regards

Ralf

 

0 Helpful

Go to solution
paul driver
VIP
VIP

‎04-08-2020 02:17 AM

Hello

Your nat access-list isn’t correct and you have multiple default routes pointing towards various egress interfaces

Suggest you change this and test again.


no ip route 0.0.0.0 0.0.0.0 Vlan1
no ip route 8.8.8.8 255.255.255.255 Cellular0/0
no ip route 0.0.0.0 0.0.0.0 Vlan1 dhcp
no ip access-list extended NAT


ip access-list extended NAT
permit ip 192.168.7.0 0.0.0.255 any


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card