cisco 2801 cannot navigate internet

[eaperezh]

Hi there, i have a cisco 2801 advanced ip services that i managed to configure using cisco documentation. i am no cisco expert and i have 2 small problems to finish my configuration.
1- my network 192.168.100.0 cannot browse internet
2- incoming phone calls from pstn make cisco phones ring but inmediately drop the call.

things that work:
1- the rule for my mail server
2-internal phones work perfectly
3-calls to the outside work prefectly.

the configuration file is included. the router was working fine a week ago but someone messed with the config 2 days ago and did not have a backup.

link to config file:

http://www.4shared.com/file/133665819/7cea97ff/SDMConfig18sept_1328h.html

thanks for your assistance

 

[eaperezh]

phone errors were solved. it was a framing error on the E1 line.

still have no idea why the 192.168.100.0 does not navigate to internet.

 

[AgentK]

When you show access-list 100, you see any hits? this access may block hosts from 192.168.100.0 to the net.

access-list 100 deny ip 192.168.100.0 0.0.0.255 any

if not, show xlate to see if clients are nat'ed.

hope this help.

 

[burtsbees]

Post a sh run

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!

 

[eaperezh]

Thanks Agentk and burtsbees for your prompt answer.

Agentk, i will remove and try. I cant recall why that rule is there.

burtsbees, the file attached is a sh run, after i did a wr mem.

thanks,

 

[eaperezh]

I have deleted the access list line as suggested.
and if i do a show log (show xlate does not seem to work on my cisco 2801) and filter the log by the ip address i am using to test, i have:

RTE1EBR200-01#sho log | include 192.168.100.17
006500: *Sep 19 17:04:25.414: %IPNAT-6-NAT_CREATED: Created tcp 192.168.100.17:5
3819 201.227.243.135:53819 74.125.157.17:80 74.125.157.17:80
006585: *Sep 19 17:04:28.562: %IPNAT-6-NAT_DELETED: Deleted tcp 192.168.100.17:5
3803 201.227.243.135:53803 74.125.157.18:80 74.125.157.18:80
006637: *Sep 19 17:04:31.450: %IPNAT-6-NAT_CREATED: Created tcp 192.168.100.17:5
3821 201.227.243.135:53821 74.125.157.18:80 74.125.157.18:80
006652: *Sep 19 17:04:33.170: %IPNAT-6-NAT_DELETED: Deleted tcp 192.168.100.17:5
3804 201.227.243.135:53804 74.125.157.19:80 74.125.157.19:80
006660: *Sep 19 17:04:34.194: %IPNAT-6-NAT_DELETED: Deleted tcp 192.168.100.17:5
3806 201.227.243.135:53806 74.125.157.19:80 74.125.157.19:80
006666: *Sep 19 17:04:34.538: %IPNAT-6-NAT_CREATED: Created tcp 192.168.100.173:
1479 201.227.243.135:1094 65.55.184.26:80 65.55.184.26:80
006719: *Sep 19 17:04:39.826: %IPNAT-6-NAT_DELETED: Deleted tcp 192.168.100.173:
1476 201.227.243.135:1123 190.35.221.234:80 190.35.221.234:80
006762: *Sep 19 17:04:41.982: %IPNAT-6-NAT_CREATED: Created tcp 192.168.100.17:5
3822 201.227.243.135:53822 74.125.157.18:80 74.125.157.18:80
006833: *Sep 19 17:04:46.422: %IPNAT-6-NAT_CREATED: Created tcp 192.168.100.17:5
3826 201.227.243.135:53826 74.125.157.18:80 74.125.157.18:80
006863: *Sep 19 17:04:49.554: %IPNAT-6-NAT_DELETED: Deleted tcp 192.168.100.17:5
3807 201.227.243.135:53807 74.125.157.19:80 74.125.157.19:80

however this .17 machine cannot browse the internet.

can it be that the returning traffic is being blocked by another rule on my 2801?

 

[burtsbees]

sh ip nat trans

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!

 

[AgentK]

eaperezh,

Did you remove all four of them?

access-list 100 deny ip 192.168.100.0 0.0.0.255 any
access-list 101 permit ip 192.168.100.0 0.0.0.255 any
access-list 102 permit ip 192.168.100.0 0.0.0.255 any
access-list 103 permit ip 192.168.100.0 0.0.0.255 any
access-list 104 permit ip 192.168.100.0 0.0.0.255 any

Also, check your static route statement please.

K.