Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco 2621 Static NAT issue

Status
Not open for further replies.
Quark

Quark

Technical User
Jan 11, 2001
5
CA
Here's the problem -- Machine A and Machine B are behind the 2621 with static NAT entries. The outside world can reach both Machine A and Machine B on their PUBLIC IPs -- BUT Machine A cannot reach Machine A on its PUBLIC IP nor can it reach Machine B on its PUBLIC IP (and vice versa). I'm assuming this is some sort of a NAT loopback issue or a NAT wrap around issue. The 2621 is replacing a Netopia R9100 series router that did the same thing quickly and easily. I assume I'm just missing something config-wise to allow the internal machines to reach each other on their public/external IPs!

Help!

 
Sort by date Sort by votes
What are you using for a routing protocol? Jeter@LasVegas.com
Fisher CCNA
Sprint-Data
 
Upvote 0 Downvote
show a config for both routers! Jeter@LasVegas.com
Fisher CCNA
[americanflag]
 
Upvote 0 Downvote
Single router...these are the interfaces:

interface FastEthernet0/0
ip address xx.xx.xx.4 255.255.255.0
no ip directed-broadcast
ip nat outside
no ip route-cache
no ip mroute-cache

interface FastEthernet0/1
ip address 192.168.1.4 255.255.255.0
no ip directed-broadcast
ip nat inside
no ip route-cache
no ip mroute-cache

ip nat pool test xx.xx.xx.11 xx.xx.xx.15 netmask 255.255.255.0
ip nat inside source list 7 pool test
ip nat inside source static 192.168.1.113 xx.xx.xx.113
ip nat inside source static 192.168.1.130 xx.xx.xx.130
ip classless
ip route 0.0.0.0 0.0.0.0 xx.xx.xx.1

192.168.1.113 can reach 192.168.1.130 and vice versa. BUT they cannot reach each other or themselves with their real IP addresses xx.xx.xx.113 and xx.xx.xx.130

Ideas? :)

It seems like some sort of a NAT wrap around issue...

 
Upvote 0 Downvote
i didnt think you could contact your network from the inside by using your outside ip. i have nat set up as well and I can't either. I just put host files on the pc's on my network for dns resolution to the local ip address. i think it doesn't work because when you ping (for example) your outside ip, your local nic sends a ping to your router nic, the outside router nic sees it as coming from itself since NAT is translating it to that address and then gets confused and drops the packet. that at least sounds good right? :)

-matt
 
Upvote 0 Downvote
With a Netopia R910/R9100 NAT wrap around works flawlessly. It's come to be something we rely on. :) With the price increase to the Cisco 2621, I think this sort of a feature should be in IOS...if it's not I will be shocked and surprised...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
361
bdk76
bdk76
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
350
madwok
madwok
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
327
Jared R
Jared R
Hayden09
  • Locked
  • Question
Cisco Sg-300 Flapping?
Replies
0
Views
333
Hayden09
Hayden09
JMarine0811
  • Locked
  • Question
CISCO VG450 Factory reset
Replies
1
Views
432
whykap
whykap

Part and Inventory Search

Sponsor

Back
Top