Hello guy,can you ping 4.2.2

jaerhee79 · ‎12-04-2014

Hi,

I work for a small/medium size company and trying to create a VPN tunnel between two of our Cisco 1841 routers.

First, I created a test environment for the routers but I have a trouble configuring one router to access internet.

The router is connected to Clear Modem and it's IP address is 192.168.15.1 and I would like to create my internal network with

172.16.1.0. So, this is how I configured:

hostname XXXXX
!
boot-start-marker
boot-end-marker
!
!
enable secret 5 $1$Meod$T.ns3U6kAzRVm2qGUtGvm0
enable password H0llyw00d
!
no aaa new-model
!
dot11 syslog
ip source-route
!
!
!
ip dhcp excluded-address 172.16.1.1
!
ip dhcp pool InternalN
network 172.16.0.0 255.255.0.0
default-router 172.16.1.1
!
ip dhcp pool LAN
default-router 172.16.1.1
dns-server 8.8.8.8 8.8.4.4
!
!
ip cef
no ip domain lookup
ip name-server 8.8.8.8
ip name-server 8.8.4.4
no ipv6 cef
!
multilink bundle-name authenticated
!
crypto pki token default removal timeout 0
!
!
!
!
license udi pid CISCO1841 sn FHK1012517D
!
redundancy
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address dhcp
ip nat inside
ip virtual-reassembly in
speed auto
half-duplex
no mop enabled
!
interface FastEthernet0/1
ip address 172.16.1.1 255.255.0.0
ip nat outside
ip virtual-reassembly in
speed auto
half-duplex
no mop enabled
!
ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip nat inside source list 1 interface FastEthernet0/1 overload
ip route 0.0.0.0 0.0.0.0 192.168.15.1
!
access-list 1 permit any
dialer-list 1 protocol ip permit
dialer-list 1 protocol ipx permit
!
!
!
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line vty 0 4
password XXXXXXXXX
login
transport input all
!
scheduler allocate 20000 1000
end

I looked into many videos and examples online, but I can't still get this router to connect to internet.

Can you please help me? Thank you in advance.

Jae

Salman Aghayev · ‎12-05-2014

Hi Jaerhee,

why you use ip nat inside command on your outside interface? I mean fa 0/0?

and best practice you can put modem in bridge mode and configure ISP configs on your 1841 router (DHCP, PPPoE or any connection type)

fogemarttt · ‎12-05-2014

Hello guy,

can you ping 4.2.2.2 on your router or 8.8.8.8 ?

you have this configuration

!
ip dhcp excluded-address 172.16.1.1
!
ip dhcp pool InternalN
network 172.16.0.0 255.255.0.0
default-router 172.16.1.1
!
ip dhcp pool LAN
default-router 172.16.1.1
dns-server 8.8.8.8 8.8.4.4
!

The users are supposed to get @IP from pool InternalN but there is no dns-server on this router.

so you can add dns-server on this dhcp pool (InternalN). LAN pool is not needed.

You have to note that, in NAT configuration inside refer to private network. and outside to interface directly connected to public network.

your 172.16.1.0 is your LAN network, so your inside interface in NAT.

you also have to create simple ACL like ip access-list 10

permit 172.16.1.0 0.0.0.255

R(config)#ip nat inside source list 10 interface fa0/0 overload

Resolve the NAT problem and add the dns-server to your dhcp scope and retry and let us know.

try different trace or ping.

from outside interface to internet (4.2.2.2 or 8.8.8.8)

from lan to outside.

and from lan to internet (4.2.2.2 or 8.8.8.8).

But in my understand, no NAT is needed. I Have not see your public ip address.

Regards,

rate if helpful and correct.

and you can marked as correct and solved if it solve your problem.

You can post your architecture as well.

Regards,

dilip.sharma2005 · ‎12-05-2014

As you mentioned 2 different IP networks here 1st 192.168.15.1 and 172.16.1.1 . But in above configuration none of the router interface is configured with 192.168.15.0 network. You had only created physical connections .

As per my understanding router must be member of both networks then only it could perform routing .

Dilip

Hi, there. I have a question about our Cisco router 1841 configuration.