07-17-2016 07:24 AM - edited 03-03-2019 08:17 AM
hello, im new to ccna .
please any expert help me in this scenario,
router 1721 with one wic-1adsl ,i have adsl connection with irb static ip.
the router connect with managed switch through a trunk port.
the switch has 2 vlans one for the static IPs and the other for private lan.
i need the private lan to be able to go to internet please any ideas.
the router configuration is as follows:
Building configuration...
Current configuration : 1272 bytes
!
! Last configuration change at 16:50:18 pc Fri May 10 2013 by admin
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname BELCO
!
boot system tftp c1700-k9o3sy7-mz.122-15.T17.bin 62.x.x.7x
logging queue-limit 100
!
username admin privilege 15 password 0 HES2010
clock timezone pc 0
ip subnet-zero
!
!
!
ip cef
!
!
bridge irb
!
!
interface ATM0
no ip address
no atm ilmi-keepalive
pvc 0/35
encapsulation aal5snap
!
dsl operating-mode auto
bridge-group 1
!
interface ATM1
no ip address
shutdown
no atm ilmi-keepalive
dsl operating-mode auto
!
interface FastEthernet0
no ip address
speed auto
!
interface FastEthernet0.1
description LAN
encapsulation dot1Q 1 native
ip address 192.168.1.10 255.255.255.0
!
interface FastEthernet0.2
description WAN
encapsulation dot1Q 2
ip address 62.x.x.7x 255.255.255.248
!
interface BVI1
mac-address 0000.0cc9.fa98
ip address 10.186.10.106 255.255.255.252
!
ip classless
ip route 0.0.0.0 0.0.0.0 BVI1
ip http server
ip http authentication local
!
!
bridge 1 protocol ieee
bridge 1 route ip
!
line con 0
speed 115200
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
!
no scheduler allocate
end
so vlan2 can go to internet because it has the same subnet with provider but vlan 1 canot go internet.
so how i can make all vlans go internet(the router has only 1 fastethernet port)
and i tried theses ......
interface fa0.1
ip nat inside
!
interface fa0.2
ip nat outside
!
ip access-list extended MY_NAT
permit ip 192.168.1.0 0.0.0.255 any
!
ip nat inside source list MY_NAT interface fa0.2 overload
!
ip route 0.0.0.0 0.0.0.0 [YOUR Default Gateway IP here]
no ip route 0.0.0.0 0.0.0.0 BVI1
but didnt work
someone told me i need loopback interface but dont know how
thanks in advanced for any help.
07-27-2016 12:34 PM
access-list 100 permit ip 192.168.1.0 255.255.255.0 any
interface BVI1
ip nat outside
!
interface FastEthernet0.1
ip nat inside
ip nat inside source list 100 interface bvi1 overload
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide