accessing Internet and Intranet

[cpai]

I have implemented a NAT on a stick in our LAN. I have taken NAT inside IP as 192.168.X.X/26 and NAT Outside on loopback 1 with IP as 166.x.x.253/30 and Nat Pool as 166.X.X.254/30. I am able to access all the IP addresses in 166.X.X.X range except Internet an Intranet which will come from Corporate.


interface Loopback1
ip address 166.X.X.253 255.255.255.252
ip nat outside
end

interface FastEthernet4/0
description "NAT Segment"
ip address 192.168.200.193 255.255.255.192
ip nat inside
ip policy route-map Nat-loop
duplex full
end

ip nat pool external 166.X.X.254 166.X.X.254 prefix-length 30
ip nat inside source list 10 pool external overload

access-list 10 permit 192.168.200.192 0.0.0.63

access-list 102 permit ip any 166.X.X.0 0.0.0.255
access-list 102 permit ip 192.168.200.192 0.0.0.63 any


route-map Nat-loop permit 10
match ip address 102
set ip next-hop 166.x.x.254

please guide me how to access internet and Intranet.

 

[helpdeskdan]

ip nat pool external 166.X.X.254 166.X.X.254 prefix-length 30

Those are odd numbers for a 30 bit mask. I assume both numbers are the same? The prefix-length for that would be 32.

Do you have a routes in the routing table for those networks? It's hard to tell what's going on in routing without that information.

 

[cpai]

Thank you for your reply.
I have taken this IP from a subnet of 166.X.X.152/30, one assaigned to Loopback int and another to external loop. So, I should use the 30 bit subnet.

This subnet is distributed with in eigrp network.

I have used 3550 switch with Vlan1 IP address 192.168.200.194/26 connecteed to fast Ethernet(192.168.200.193/26) which is nat inside and connected laptop to the switch and reach the 166.x.x.0 network, but I am not able to reach the outside network. When 166 network reaches internet , I think NAT translation shouls also reach internet. Am I thinking right?

I hope this gives you som info. Excuse me if it is not clear.

Thanks

 

[helpdeskdan]

Post a sh ip int brief and a sh ip route