Solved: Basic Routing. Trying to learn. Need help. - Page 2

Chris Mickle · ‎07-12-2015

I just bought a Cisco study lab in order to try to further teach myself about routing and switching on Cisco devices. I have been doing some reading and decided that I would design and build my own topology using the equipment I purchased. I have (2) 1721 routers, (2) 2610XM routers, (1) 2811 router and (3) 2960 switches. I decided that for my first project, I would try to use the routers to simulate two different LANs connected to their ISPs which were connected to the real internet. My topology is as follows...

Please forgive the crudeness of the above diagram. Hopefully it is clear what I'm trying to do. The two 1721s that are acting as the "internet gateways" are running DHCP on their Ethernet interfaces and NAT. All routers are running RIP V1. Everything seems to work as it's supposed to except that the 2811 is supposed to provide access to the real internet via my LAN and it does not. I can ping each computer from the other and I can ping all the interface IPs on each router from both PCs and from all the other routers. I can ping all the way to IP address 192.168.0.200 which is the IP of F0/0 on the 2811 that is connected to my LAN. From the 2811, I can ping 192.168.0.1 which is my LAN firewall's inside interface. I worked on it for several hours yesterday and I have just run out of ideas. I know that I am missing something, I'm just not sure what it is.

Any help would be much appreciated.

Chris Mickle · ‎07-17-2015

Could you please do me one last favor and review my router config? I want to make sure that what I have done is correct.

Thanks.

Current configuration : 1783 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
enable secret 5
!
no aaa new-model
!
resource policy
!
clock timezone EST -5
clock summer-time EDT recurring
ip subnet-zero
!
!
ip cef
!
!
ip domain name
!
username router privilege 15 secret 5
!
!
!
interface FastEthernet0/0
ip address XXX.XXX.XXX.5 255.255.255.248
ip nat outside
duplex auto
speed auto
standby timers 254 255
standby preempt
standby 1 ip XXX.XXX.XXX.1
standby 1 mac-address 0000.0000.0001
standby 2 ip XXX.XXX.XXX.2
standby 2 mac-address 0000.0000.0002
standby 3 ip XXX.XXX.XXX.3
standby 3 mac-address 0000.0000.0003
standby 4 ip XXX.XXX.XXX.4
standby 4 mac-address 0000.0000.0004
!
interface FastEthernet0/1
ip address 10.0.0.6 255.255.255.248
ip nat inside
duplex full
speed auto
no mop enabled
!
interface Serial0/0/0
ip address 172.16.10.1 255.255.255.252
ip nat inside
!
ip classless
ip route 0.0.0.0 0.0.0.0 XXX.XXX.XXX.6
!
ip http server
ip http authentication local
ip http timeout-policy idle 600 life 86400 requests 10000
ip nat inside source list acl-inet interface FastEthernet0/0 overload
ip nat inside source static 10.0.0.1 XXX.XXX.XXX.1
ip nat inside source static 10.0.0.2 XXX.XXX.XXX.2
ip nat inside source static 10.0.0.3 XXX.XXX.XXX.3
ip nat inside source static 172.16.10.2 XXX.XXX.XXX.4
ip nat inside source static 10.0.0.5 XXX.XXX.XXX.5
!
ip access-list standard acl-inet
permit 10.0.0.0 0.0.0.7
ip access-list standard lab-inet
permit 172.16.10.0 0.0.0.7
!
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
password
login
!
scheduler allocate 20000 1000
!
end

Richard Burts · ‎07-17-2015

Chris

There are so many possibilities for issues with router configuration (especially in things that perhaps should be in the config but are not) that it is quite difficult to say that a router config is 100% correct. But I will say that reviewing your config I do not see any particular issues in it.

HTH

Rick

HTH

Rick

Chris Mickle · ‎07-17-2015

Great! That's all I wanted to know. Thanks a lot!