Solved: Problems with 3G backup and floating default route

Reedik Leitsar · ‎09-20-2011

Hello to all,

I have a Cisco router 1941 and i need to configure 3g backup. I have got all most every thing to work,WAN link fails 3G comes up, everything seems to be okay, i can ping from router but when i try to ping from PC, it fails. So i think there is someting wrong with my floating default route. I tryed searching from manuals how to configure it, but every manual that i found from cisco, did it with ATM or Dialer0 interface, but i do not have ATM line nor Dialer0, because i do not want persistant 3g connection, so i´m stuck.

Can please anyone help me to get this working ?

My basic configuration :

version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname FW1
!
boot-start-marker
boot-end-marker
!
!
enable secret *******
enable password ******
!
no aaa new-model
!
!
no ipv6 cef
ip source-route
ip cef
!
!
!
!
!
!
multilink bundle-name authenticated
!
chat-script gsm "" "ATDT*98*1#" TIMEOUT 30 CONNECT
crypto pki token default removal timeout 0
!
!
license udi pid CISCO1941/K9 sn FHK*******
!
!
!
redundancy
!
!
!
!
controller Cellular 0/0
!
no ip ftp passive
!
track 1 ip sla 1 reachability
!
!
!
!
!
!
!
interface GigabitEthernet0/0
ip address 195.222.19.93 255.255.255.248
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
ip address 192.168.2.254 255.255.255.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
no mop enabled
!
interface Cellular0/0/0
ip address negotiated
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer in-band
dialer string gsm
dialer-group 1
async mode interactive
ppp chap hostname Dummy
ppp chap password 0 Dummy
ppp ipcp dns request
!
interface Cellular0/0/1
no ip address
encapsulation ppp
!
ip local policy route-map track-primary-if
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source list 1 interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0 track 1
ip route 0.0.0.0 0.0.0.0 195.222.19.94
ip route 0.0.0.0 0.0.0.0 Cellular0/0/0 253
!
ip sla 1
icmp-echo 217.146.66.65 source-interface GigabitEthernet0/0
ip sla schedule 1 life forever start-time now

access-list 1 permit 192.168.2.0 0.0.0.255
access-list 100 permit icmp any host 217.146.66.65
dialer-list 1 protocol ip permit
!
!
!
!
route-map track-primary-if permit 1
match ip address 100
set interface GigabitEthernet0/0 Null0
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line 0/0/0
exec-timeout 0 0
script dialer gsm
login
modem InOut
no exec
transport input all
rxspeed 7200000
txspeed 2000000
line 0/0/1
no exec
rxspeed 7200000
txspeed 2000000
line vty 0 4
password ********

login
transport input all
!
scheduler allocate 20000 1000
end

cadet alain · ‎09-20-2011

Hi,

this is not working because you still have the traffic natted to G0/0/0 but it should be natted to cellular instead.

So you must change your NAT overload command and use 2 statements with a route-map.

eg:

route-map GIGABIT

match ip address 1

match interface g0/0

route-map CELLULAR

match ip address 1

match interface cellular0

ip nat inside source route-map GIGABIT interface g0/0 overload

ip nat inside source route-map CELLULAR interface cellular0 overload

Regards.

Alain.

Don't forget to rate helpful posts.

View solution in original post

cadet alain · ‎09-20-2011

Hi,

this is not working because you still have the traffic natted to G0/0/0 but it should be natted to cellular instead.

So you must change your NAT overload command and use 2 statements with a route-map.

eg:

route-map GIGABIT

match ip address 1

match interface g0/0

route-map CELLULAR

match ip address 1

match interface cellular0

ip nat inside source route-map GIGABIT interface g0/0 overload

ip nat inside source route-map CELLULAR interface cellular0 overload

Regards.

Alain.

Don't forget to rate helpful posts.

Reedik Leitsar · ‎09-20-2011

Thank you saved the day