So I am fairly new to Cisco routers (deal with Allied and Sonicwall products). Have an issue with getting an 1811 router to talk with the outside world.
Outside IP: 209.218.110.68
Inside IP: 192.168.1.254
Router can talk fine to the net, but internal workstations are not. They can ping and see up until the WAN port (FastE0). Just want a basic NAT config, everyone falls under the same WAN ip. All workstations can see each other....
!This is the running config of the router: 192.168.1.254
!----------------------------------------------------------------------------
!version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Gateway
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$qGdH$5RIMmdE5SpSUxFlNabjTd1
enable password kkicisco
!
no aaa new-model
!
resource policy
!
!
!
ip cef
!
!
!
!
crypto pki trustpoint TP-self-signed-672153739
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-672153739
revocation-check none
rsakeypair TP-self-signed-672153739
!
!
crypto pki certificate chain TP-self-signed-672153739
certificate self-signed 01
3082023D 308201A6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 36373231 35333733 39301E17 0D303831 31313332 30303734
395A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3637 32313533
37333930 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
F67E7C5C 5AD42F2D BDFE1CD7 1E6D0708 7BDD975F 843EAE2C 85A871E6 0B2085E4
411D1B6C 4FFFD686 F957A916 921231BA BA2FA6C1 3E10410A 8A1E4373 08B63AC2
6DA262FA 5D245F1B C2F370F1 896D804D D9A68D0E F42E7187 12BFAAEF 4340B5A9
8D3BEFF1 894165D5 8F4C701D 1B92183E EAA39000 71B23FBC 8F67BB43 25596ABB
02030100 01A36730 65300F06 03551D13 0101FF04 05300301 01FF3012 0603551D
11040B30 09820747 61746577 6179301F 0603551D 23041830 168014C5 899DC60F
47BA1364 FCB36B36 C3E09DEA 3FC90830 1D060355 1D0E0416 0414C589 9DC60F47
BA1364FC B36B36C3 E09DEA3F C908300D 06092A86 4886F70D 01010405 00038181
0030953D C2A20451 61264E7E 21EF1081 0F15522E 0B4F4B37 242710A5 693BB60A
C00180E8 23A9E985 0058347E 6D8206BE 9456B772 C989EA57 8B191373 8E15B02A
3D218E0A C085C473 722C5228 3B326CE6 AD45C7B7 E7B61ED7 EE0CA0B0 EE7A933C
840DFBD8 9A1147AE A814704B 8D6AE7F6 BB2F9603 5C5C7481 B574BA8D A7B71248 87
quit
username kki privilege 15 secret 5 $1$zBYB$RkrNe30h3khvlQZAPCG/5.
!
!
!
!
!
!
interface Loopback0
ip address 209.218.110.68 255.255.255.248
ip nat outside
ip virtual-reassembly
!
interface FastEthernet0
ip address 209.218.110.68 255.255.255.248
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet1
description $ES_LAN$
ip address 192.168.1.254 255.255.255.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet2
shutdown
!
interface FastEthernet3
shutdown
!
interface FastEthernet4
shutdown
!
interface FastEthernet5
shutdown
!
interface FastEthernet6
shutdown
!
interface FastEthernet7
shutdown
!
interface FastEthernet8
shutdown
!
interface FastEthernet9
shutdown
!
interface Virtual-Template1
ip unnumbered Loopback0
ip nat outside
ip virtual-reassembly
!
interface Async1
no ip address
encapsulation slip
!
router eigrp 103
auto-summary
!
router rip
version 2
network 192.168.1.0
network 209.218.110.0
no auto-summary
!
ip default-gateway 209.218.110.65
ip route 0.0.0.0 0.0.0.0 209.218.110.65
!
!
ip http server
ip http secure-server
ip nat pool Tes 209.218.11.68 209.218.11.68 netmask 255.255.255.255
!
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
!
!
!
!
!
!
control-plane
!
!
line con 0
line 1
line aux 0
line vty 0 4
password kkicisco
login
!
!
webvpn context Default_context
ssl authenticate verify all
!
no inservice
!
end
________________________________________
Gateway#sho ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is 209.218.110.65 to network 0.0.0.0
209.218.110.0/29 is subnetted, 1 subnets
C 209.218.110.64 is directly connected, FastEthernet0
is directly connected, Loopback0
172.16.0.0/22 is subnetted, 4 subnets
S 172.16.16.0 [1/0] via 192.168.1.91
S 172.16.12.0 [1/0] via 192.168.1.91
S 172.16.8.0 [1/0] via 192.168.1.90
S 172.16.4.0 [1/0] via 192.168.1.90
C 192.168.1.0/24 is directly connected, FastEthernet1
S* 0.0.0.0/0 [1/0] via 209.218.110.65
Gateway#
Thanks everyone
Outside IP: 209.218.110.68
Inside IP: 192.168.1.254
Router can talk fine to the net, but internal workstations are not. They can ping and see up until the WAN port (FastE0). Just want a basic NAT config, everyone falls under the same WAN ip. All workstations can see each other....
!This is the running config of the router: 192.168.1.254
!----------------------------------------------------------------------------
!version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Gateway
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$qGdH$5RIMmdE5SpSUxFlNabjTd1
enable password kkicisco
!
no aaa new-model
!
resource policy
!
!
!
ip cef
!
!
!
!
crypto pki trustpoint TP-self-signed-672153739
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-672153739
revocation-check none
rsakeypair TP-self-signed-672153739
!
!
crypto pki certificate chain TP-self-signed-672153739
certificate self-signed 01
3082023D 308201A6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 36373231 35333733 39301E17 0D303831 31313332 30303734
395A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3637 32313533
37333930 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
F67E7C5C 5AD42F2D BDFE1CD7 1E6D0708 7BDD975F 843EAE2C 85A871E6 0B2085E4
411D1B6C 4FFFD686 F957A916 921231BA BA2FA6C1 3E10410A 8A1E4373 08B63AC2
6DA262FA 5D245F1B C2F370F1 896D804D D9A68D0E F42E7187 12BFAAEF 4340B5A9
8D3BEFF1 894165D5 8F4C701D 1B92183E EAA39000 71B23FBC 8F67BB43 25596ABB
02030100 01A36730 65300F06 03551D13 0101FF04 05300301 01FF3012 0603551D
11040B30 09820747 61746577 6179301F 0603551D 23041830 168014C5 899DC60F
47BA1364 FCB36B36 C3E09DEA 3FC90830 1D060355 1D0E0416 0414C589 9DC60F47
BA1364FC B36B36C3 E09DEA3F C908300D 06092A86 4886F70D 01010405 00038181
0030953D C2A20451 61264E7E 21EF1081 0F15522E 0B4F4B37 242710A5 693BB60A
C00180E8 23A9E985 0058347E 6D8206BE 9456B772 C989EA57 8B191373 8E15B02A
3D218E0A C085C473 722C5228 3B326CE6 AD45C7B7 E7B61ED7 EE0CA0B0 EE7A933C
840DFBD8 9A1147AE A814704B 8D6AE7F6 BB2F9603 5C5C7481 B574BA8D A7B71248 87
quit
username kki privilege 15 secret 5 $1$zBYB$RkrNe30h3khvlQZAPCG/5.
!
!
!
!
!
!
interface Loopback0
ip address 209.218.110.68 255.255.255.248
ip nat outside
ip virtual-reassembly
!
interface FastEthernet0
ip address 209.218.110.68 255.255.255.248
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet1
description $ES_LAN$
ip address 192.168.1.254 255.255.255.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet2
shutdown
!
interface FastEthernet3
shutdown
!
interface FastEthernet4
shutdown
!
interface FastEthernet5
shutdown
!
interface FastEthernet6
shutdown
!
interface FastEthernet7
shutdown
!
interface FastEthernet8
shutdown
!
interface FastEthernet9
shutdown
!
interface Virtual-Template1
ip unnumbered Loopback0
ip nat outside
ip virtual-reassembly
!
interface Async1
no ip address
encapsulation slip
!
router eigrp 103
auto-summary
!
router rip
version 2
network 192.168.1.0
network 209.218.110.0
no auto-summary
!
ip default-gateway 209.218.110.65
ip route 0.0.0.0 0.0.0.0 209.218.110.65
!
!
ip http server
ip http secure-server
ip nat pool Tes 209.218.11.68 209.218.11.68 netmask 255.255.255.255
!
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
!
!
!
!
!
!
control-plane
!
!
line con 0
line 1
line aux 0
line vty 0 4
password kkicisco
login
!
!
webvpn context Default_context
ssl authenticate verify all
!
no inservice
!
end
________________________________________
Gateway#sho ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route
Gateway of last resort is 209.218.110.65 to network 0.0.0.0
209.218.110.0/29 is subnetted, 1 subnets
C 209.218.110.64 is directly connected, FastEthernet0
is directly connected, Loopback0
172.16.0.0/22 is subnetted, 4 subnets
S 172.16.16.0 [1/0] via 192.168.1.91
S 172.16.12.0 [1/0] via 192.168.1.91
S 172.16.8.0 [1/0] via 192.168.1.90
S 172.16.4.0 [1/0] via 192.168.1.90
C 192.168.1.0/24 is directly connected, FastEthernet1
S* 0.0.0.0/0 [1/0] via 209.218.110.65
Gateway#
Thanks everyone