Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

NAT config ?

Status
Not open for further replies.

mtoto

MIS
Oct 15, 1999
34
SN
Here is my network architecture:

LAN1---R1--tunnel---R2---Public LAN--R3----ISP
|
R4
|
|
LAN2

PCs on Lan2 go to Internet via ISP.
Servers on Public LAN are accessible from Internet.
R2 use the secondary address of R3 as gateway.
PCs on LAN1 can ping addresses on Internet but they cannot browse corresponding websites.
Other websites can be browsed.
R2 and R4 perform NAT.
What is the problem?
Thanks

 
Do you have any access-lists on R1? It sounds like you might be blocking port 80 since you can't get http traffic. Post any access-list you have from R1....

burke
 
No access-list on R1.
Certain websites are accessible, other (the same) are not when using PCs on LAN1.
PCs on LAN2 are not concerned.
 
Post you config for R1 and R2, that way we can take a look at it and see if there is anything that jumps out.

burke
 
R1------------------------------------------------
hostname
!
enable secret
!
memory-size iomem 25
ip subnet-zero
!
interface Loopback0
bandwidth 8000000
ip address 10.1.2.99 255.255.255.255
ip mtu 1500
hold-queue 1024 in
hold-queue 1024 out
!
interface Tunnel0
bandwidth 2000
ip unnumbered Loopback0
ip mtu 1032
tunnel source Loopback0
tunnel destination 10.1.2.96
hold-queue 1024 in
hold-queue 1024 out
!
!
interface Serial0
bandwidth 128
ip address 192.168.102.154 255.255.255.252
no fair-queue
no cdp enable
hold-queue 2048 in
hold-queue 2048 out
!
interface FastEthernet0
ip address 10.10.10.190 255.255.255.0
speed auto
!
ip classless
ip route 0.0.0.0 0.0.0.0 Tunnel0
ip route 10.1.2.96 255.255.255.255 Serial0
no ip http server
!
!
line con 0
password
login
line aux 0
line vty 0 4
password
login
!
end




R2----------------------------------------------

hostname
!
enable secret
!
ip subnet-zero
!
!
!
interface Loopback0
bandwidth 8000000
ip address 10.1.2.96 255.255.255.255
no ip directed-broadcast
ip mtu 1032
!
interface Tunnel0
bandwidth 8000
ip unnumbered Loopback0
no ip directed-broadcast
ip nat inside
tunnel source Loopback0
tunnel destination 10.1.2.99
hold-queue 1024 in
hold-queue 1024 out
!
interface Ethernet0
ip address X.X.X.182 255.255.255.248
no ip directed-broadcast
ip nat outside
!
interface Ethernet1
no ip address
no ip directed-broadcast
shutdown
!
interface Serial0
bandwidth 128
ip address 192.168.102.146 255.255.255.252
no ip directed-broadcast
ip nat inside
hold-queue 1024 in
hold-queue 1024 out
!
!
ip nat translation timeout 180
ip nat inside source list 1 interface Ethernet0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 X.X.X.178
ip route 10.1.2.99 255.255.255.255 Serial0
ip route 10.10.10.0 255.255.255.0 Tunnel0
!
access-list 1 permit 10.10.10.0 0.0.0.255
!
line con 0
transport input none
line aux 0
transport input all
line vty 0 4
password 7
login
!
end
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top