NAT not working for me - CiscoHQ

cf- kevin · 09-05-2008, 12:19 PM

So I know this config is going to look completely botched but ill post it anyway, i have tried everything i could think of and am just stuck and want someone else to take a look at it.

Here is what I need and what i have.

Cable connection coming into ethernet0/0 giving it a dhcp connection. ethernet0/1 if for my lan, which assigns out dhcp ip's. I have a web server on 192.168.1.126, so i need all web traffic forwarded to that.

Someone please help me out on this one!

Code:

version 12.3
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname 3620
!
boot-start-marker
boot-end-marker
!
no logging buffered
!
username ********************
no aaa new-model
ip subnet-zero
!
!
ip cef
ip name-server 4.2.2.2
ip name-server 4.2.2.3
ip dhcp excluded-address 192.168.1.1 192.168.1.9
ip dhcp excluded-address 192.168.1.254
ip dhcp excluded-address 192.168.1.1 192.168.1.19
ip dhcp excluded-address 192.168.1.125 192.168.1.254
!
ip dhcp pool lan
   import all
   network 192.168.1.0 255.255.255.0
   domain-name home.local
   default-router 192.168.1.1
   dns-server 4.2.2.2 4.2.2.3
   lease 3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Ethernet0/0
 description $ETH-LAN$
 ip address 192.168.1.1 255.255.255.0
 ip access-group 101 out
 ip nat inside
 full-duplex
!
interface Ethernet0/1
 description $ETH-WAN$
 ip address dhcp
 ip access-group 101 in
 ip nat outside
 half-duplex
!
ip nat pool lan 192.168.1.20 192.168.1.100 netmask 255.255.255.0
ip nat inside source list 1 interface Ethernet0/1 overload
ip nat inside source list 101 interface Ethernet0/1 overload
ip nat inside source static tcp 192.168.1.22 80 interface Ethernet0/1 80
ip nat inside source static tcp 192.168.1.5 8001 interface Ethernet0/1 8001
ip nat inside source static tcp 192.168.1.5 8000 interface Ethernet0/1 8000
ip nat inside source static tcp 192.168.1.5 3389 interface Ethernet0/1 3389
ip nat inside source static tcp 192.168.1.5 21 interface Ethernet0/1 21
ip nat inside source static tcp 192.168.1.126 88 interface Ethernet0/1 88
no ip http server
ip http authentication local
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet0/1
!
!
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 101 permit ip any any
!
!
!
dial-peer cor custom
!
!
!
!
line con 0
line aux 0
line vty 0 4
 login local
!
!
end
3620#

djspike · 10-08-2008, 02:46 AM

When DHCP Used it doesn't know

ip route 0.0.0.0 0.0.0.0 Ethernet0/1

issue show ip route ... it will show 0.0.0.0 0.0.0.0

change to this:

ip route 0.0.0.0 0.0.0.0 Ethernet0/1 dhcp

it should solve your issue. please let me know

cf- kevin · 10-09-2008, 11:18 PM

The default has nothing to do with it. That is for outgoing traffic, I was working with my incoming traffic.

Turns out I was trying to test from INSIDE my network and completely forgot that the testing would fail. I "borrowed" a neighbors wireless network and it worked fine the way I had the config setup... Go figure