Solved: WAN routing issues---need some help please! - Page 4

dstriplin1 · ‎03-26-2019

Hi,

I'm trying to connect a basic comcast modem only (not modem/router combo) to my 2921 router and have it give internet access to my lab. Any help is greatly appreciated!

Here is my current setup and topology

Internet- assigned via dhcp from Comast

Network LAN 10.0.1.0/24

PC address - 10.0.1.22

GW- 10.0.1.1

Here are the outputs from sh run and show ip int

Lab2921#show run
Building configuration...

Current configuration : 2452 bytes
!
! Last configuration change at 15:06:44 UTC Tue Mar 26 2019
!
version 15.7
no parser cache
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Lab2921
!
boot-start-marker
boot-end-marker
!
!
logging userinfo
enable secret 5 $1$aP02$GoblxTJ6F3.kaw7Soxvr50
!
no aaa new-model
!
!
!
!
!
!
!
!
!
ip dhcp excluded-address 10.0.1.1
ip dhcp excluded-address 10.0.1.2
ip dhcp excluded-address 10.0.1.177
ip dhcp excluded-address 10.0.1.169
ip dhcp excluded-address 10.0.1.100 10.0.1.254
ip dhcp excluded-address 10.0.1.1 10.0.1.5
!
ip dhcp pool InsideDHCP
import all
network 10.0.1.0 255.255.255.0
default-router 10.0.1.1
dns-server 8.8.8.8 8.8.4.4
class any
!
!
ip dhcp class any
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
vty-async
!
!
!
license udi pid CISCO2921/K9 sn FTX1728AHR1
!
!
!
redundancy
!
!
!
!
no cdp run
!
!
!
!
!
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
description Facing the ISP (the WAN)
ip address dhcp
ip nat inside
ip virtual-reassembly in
no ip route-cache
duplex auto
speed auto
no cdp enable
bridge-group 59
bridge-group 59 spanning-disabled
!
interface GigabitEthernet0/1
description Facing my LAN (the LAN)
ip address 10.0.1.1 255.255.255.0
ip nat outside
ip virtual-reassembly in
no ip route-cache cef
duplex auto
speed auto
no cdp enable
!
interface GigabitEthernet0/2
no ip address
shutdown
duplex auto
speed auto
!
ip default-gateway 10.0.1.1
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source list 1 interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 dhcp
!
!
!
access-list 1 permit 10.0.1.0 0.0.0.255
access-list 102 permit ip 10.0.1.0 0.0.0.255 any
!
control-plane
!
!
vstack
banner motd ^C
***********************************************************
AUTHORIZED ACCESS ONLY
***********************************************************
^C
!
line con 0
exec-timeout 0 0
password AlphaBravo9
login
stopbits 1
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
exec-timeout 120 0
login local
length 0
transport input none
!
scheduler max-task-time 5000
scheduler allocate 20000 1000
!
end

SHow IP int

Lab2921#show ip int
Embedded-Service-Engine0/0 is administratively down, line protocol is down
Internet protocol processing disabled
GigabitEthernet0/0 is down, line protocol is down
Internet protocol processing disabled
GigabitEthernet0/1 is up, line protocol is up
Internet address is 10.0.1.1/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is disabled
IP Null turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, No CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain outside
BGP Policy Mapping is disabled
Input features: Common Flow Table, Stateful Inspection, Virtual Fragment Reassembly, Virtual Fragment Reassembly After IPSec Decryption, NAT Outside, MCI Check
Output features: Post-routing NAT Outside, Common Flow Table, Stateful Inspection, NAT ALG proxy
IPv4 WCCP Redirect outbound is disabled
IPv4 WCCP Redirect inbound is disabled
IPv4 WCCP Redirect exclude is disabled
GigabitEthernet0/2 is administratively down, line protocol is down
Internet protocol processing disabled
NVI0 is up, line protocol is up
Internet address will be negotiated using IPCP
Broadcast address is 255.255.255.255
MTU is 1514 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is disabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is disabled
IP Null turbo vector
IP Null turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
Input features: MCI Check
Output features: Post-routing NAT NVI Output
IPv4 WCCP Redirect outbound is disabled
IPv4 WCCP Redirect inbound is disabled
IPv4 WCCP Redirect exclude is disabled

Deepak Kumar · ‎03-27-2019

Hi,

Again what is this?

ip dhcp pool InsideDHCP
import all
network 10.0.0.0 255.0.0.0
default-router 10.0.1.1
dns-server 8.8.8.8 8.8.4.4
class any
!
ip dhcp pool Inside DHCP
network 10.0.1.0 255.255.255.0

Please make it correct:

no ip dhcp pool InsideDHCP

ip dhcp pool Inside DHCP

network 10.0.1.0 255.255.255.0

default-router 10.0.1.1

dns-server 8.8.8.8 8.8.4.4

!

no ip route 0.0.0.0 0.0.0.0 dhcp

!

Interface GigabitEthernet0/0
description Facing The ISP (WAN)
ip route-cache

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

Deepak Kumar · ‎03-28-2019

Hi,

Let's start the troubleshooting from the beginning:

1. Your System IP address: 10.0.1.3, Mask: 255.255.255.0, Gateway: 10.0.1.1 and DNS: 8.8.8.8

2. Make sure WIFI is disabled on your system.

3. Ping 10.0.1.1 from the system. Are you getting a reply?

4. Try to ping your WAN IP from the system. Are you getting a reply?

5. Run "Show IP route" on the router and are you getting default route?

S * 0.0.0.0/0 via X.X.X.X/gig0/0

6. run a command on the router: "Show ip access-list" and check any packet is hitting on ACL 1 as

access-list 1 permit ip 10.0.1 0.0.0.255  (29 matches)

8. Start ping 8.8.8.8 from the system and run a command on the Router "Show ip nat translate"

Please share the above outputs.

Regards,
Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

paul driver · ‎03-26-2019

Hello

@dstriplin1 wrote:

Hi,

Thanks for your help. What is odd is everytime I change the nat type by doing the following commands, it doesn't seem to change.

Remove the nat off the interfaces before re adding it’

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul