09-16-2008 12:26 AM - edited 03-03-2019 11:33 PM
Sir,
We have 3 routers,One is at My location(Hyderabad) ,other at Mumbai(Remote),one more at client place name is CDSL.
1. Hyderabad to Mumabai is connected via
2 Mbps Serial cable ,Ip addresses are
192.168.2.X -My End
192.168.2.X -Mumbai End
2.From Mumbai to CDSl connected through Lan Interface using Cross Cable.
Ip addresses are 10.155.132.2 -Mumabi End,10.155.132.1 -CDSL End.
3.In Hyderabad Router We are given Route to 10.155.132.0/24 with gateway as 192.168.2.X (Static route in Hyderabad routerwith gateway is Mumbai Wan-ip)
4.in Mumbai Router we are Patted 172.16.25.0/24(this is Hyderabad Network) with 10.155.132.10/255.255.255.255
5.When i am testing From My location 172.16.25.x (PC Ip) to 10.155.132.1 it is not pinging but i am able to ping 10.155.132.2.
6.i made accesslist in CDSL Router
access-list 101 permit any any. Eventhough it is not pinging From My pc to 10.155.132.1.
Pls Suggest if Any thing else
Tnks
Ramu
Netsupport Gr
CMC Ltd
09-16-2008 12:37 AM
Hello!
The problem is that your CDSL router (10.155.132.1) does not know through were to sent back packets to your 172.16.25.x PC.
You can reach 10.155.132.2 because it's on the same router with 192.168.2.x which you set as next hop on Hyderabad for 10.155.132.0/24.
Try the following on CDSL.
ip route 172.16.25.0 255.255.255.0 10.155.132.2
and see if it is working.
at point 4 I don't understand why you have Patted the traffic.
Also I would advice some routing protocols in this topology, if it is possible
Good luck!
Cheers,
Calin
09-16-2008 12:42 AM
Thank u Sir,
I will do that,Is it requires any Access list in CDSL router ?
Ex : access-list 101 permit ip any any
Pls Let me know
Tnks
Ramu
Netsupport Gr
09-16-2008 12:48 AM
Hi!
You need a permit access-list only if you have another access-list that is dropping packets. If not, you do not need an access-list.
Anyway, in the test phase I recommend not to use access-list.
Good luck!
Cheers,
Calin
09-16-2008 12:55 AM
Sir,
Actually my Network ie 172.16.25.x is Patted with 10.155.132.100 in Mumbai Router,so Is it requires Static route in CDSL Router?
ie ip route 172.25.0.0 255.255.0.0 10.155.132.2.
Is CDSL router should know abt 172.16.25.X network?)
Pls clarify me clearly as im in little bit confusion.
Tnks
Ramu
Netsupport gr
09-16-2008 01:24 AM
Hello!
I saw that your network is patted, but this is wrong. You cannot NAT/PAT a locat subnet over 2 hops in the WAN. In your network you can NAT/PAT 172.16.25.x with 192.168.2.x the most.
Otherwise, if what you did would be possible I would NAT my private IP throuth CISCO.com IP :)
So, take out that NAT, because I will not work, as your natted subnet and NAT interface are in different LANs.
Cheers,
Calin
09-16-2008 01:48 AM
Sir,
What shall i do to access 10.155.132.X from My PC.
09-16-2008 02:06 AM
Hi!
You have to do routing. There is no need for PAT/NAT there as you do not need public IP address.
You can do static routing or dynamic.
Tell me if you understood or you need a sample configuration for your topology!
Cheers,
Calin
09-16-2008 02:27 AM
Tnks for your Valuble Support,
Pls Give Sample Configuration as today only
I am going to testing and have to confirm the result also.
FYI, From CDSL Router to One more router (i.e also Client Place)has connected,there only the Servers are located.,in that router ,they allowed 10.155.132.X network only.That is the reason we are Patting with 10.155.132.10 Ip .Actually 5 PC'c(172.16.25.X) have to access that CDSL other end servers.
Pls Provide Solution accordingly as above.If any thing else pls let me know.
Tnks
Ramu
Netsupport Gr
09-16-2008 03:32 AM
Hello!
Ramu, we are starting from one problem and reach another one :).
Please check the attach. It this your network?
I believe it is. You said that you are having problem reaching 10.155.132.1 from 172.16.25.0/24.
Simplest solution with static routing:
on Hyderabad:
ip route 10.155.132.0 255.255.255.0 192.168.2.x
where x is the interface of Mumbai router
on CDSL
ip route 172.16.25.0 255.255.255.0 10.155.132.2
Now you will be able to access the router CDSL with ping, telnet, whatever from your subnet 172.16.25.0/24
Now you are telling me about another router connected to CDSL router (the one with interrupted line in drawing) that is accepting connection only from 10.155.132.0/24.In this case you have to ask them to accept the connection from your subnet 172.16.25.0/24 or you depending on the traffic (telnet, ssh, ping) you can access this router from your CDSL router. The NAT/PAT that you have done will never work in such way.
Please tell me if you understood and rate this posts if you find something useful.
Cheers,
Calin
09-16-2008 06:37 AM
Sir,
Exactly Same scenario in the attachment,we dont have CDSL other end ,we already informed them,but they said only 10.155.132.X network only allowed.
Im getting slowly about this.Is there any worked solution to resolve ,our aim is to access CDSL other end servers with 172.16.25.x systems.
Tnks
Ramu
Netsupport Gr
09-16-2008 07:09 AM
Sir,
Pls give the needful things to resolve the issue as we dont have the access of other end router of the CDSL router.Upto CDSL router i have the access.After that i dont have.
My aim is to send traffic upto CDSl router.
Tnks
Ramu
Netsupport Gr
CMC lTd
09-16-2008 08:36 PM
Sir,
Pls do the needful.It will be helpful to resolve this issue.
Regards
Ramu
Netsupport Gr
09-16-2008 09:29 PM
Sir,
How can i get access through 10.155.132.X network through 172.16.25.X without patting
09-17-2008 12:56 AM
If the administrators of 10.155.132.x/24 allow you access from 172.16.25.x/24 there will be no problem accessing this subnet. Your problem is actually that 10.155.132.x/24 is blocking everything except their own subnet. In this case you cannot do anything else that access the subnet locally.
I repeat myself that you cannot NAT a 172.16.25.x IP to 10.155.132.x IP with your topology.
Cheers,
Calin
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide