Options
3 Private and 1 Public
jhnevelus
Member Posts: 5 ■□□□□□□□□□
in CCNA & CCENT
I have a lab setup and I was trying to connect my Internet (1 Public Address) and share internet between 2 of my networks.
Here is a breakdown.
Network 1.
I have a 2621 with 2 Faste's fa0/0 is connected to the internet with a Public and is setup with an nat outside statement.
Fa0/1 is provided a 192.168.1.1/24 (inside statement) and is connected to a 2950 switch. This 2621 also has a wic-2t card which is connected to another 2610xm with a 192.168.10.0/30 range on its serials only.
Network 2.
Is the Fa0/0 of the 2610XM with a 192.168.20.1/24 range connected to another 2950 (.2). I setup a dhcp on the router for the 192.168.20.0 pool. DNS is setup all is fine.
I have a laptop who picked up an IP of 192.168.20.3
Setup
NAT is setup on network 1 with an ACL that states to permit 192.168.0.0 0.0.255.255, which then gets a nat statement to allow the named access-list access through the internet.
I have RIPv2 setup and its routing between both routers, with all 3 networks, 192.168.1.0/192.168.10.0/192.168.20.0. I can ping and traceroute and telnet between all networks and interfaces and even to my public gateway ip, which is redistributed to both routers as the last resort gateway.
Unfortunately, I cannot access the internet on the 192.168.20.0 network. The 192.168.1.0/24 network works fine though.
I am wondering if I have to setup acl and nat also on the 2nd router??? It doesnt sound logical but where is this going wrong?
Here is a breakdown.
Network 1.
I have a 2621 with 2 Faste's fa0/0 is connected to the internet with a Public and is setup with an nat outside statement.
Fa0/1 is provided a 192.168.1.1/24 (inside statement) and is connected to a 2950 switch. This 2621 also has a wic-2t card which is connected to another 2610xm with a 192.168.10.0/30 range on its serials only.
Network 2.
Is the Fa0/0 of the 2610XM with a 192.168.20.1/24 range connected to another 2950 (.2). I setup a dhcp on the router for the 192.168.20.0 pool. DNS is setup all is fine.
I have a laptop who picked up an IP of 192.168.20.3
Setup
NAT is setup on network 1 with an ACL that states to permit 192.168.0.0 0.0.255.255, which then gets a nat statement to allow the named access-list access through the internet.
I have RIPv2 setup and its routing between both routers, with all 3 networks, 192.168.1.0/192.168.10.0/192.168.20.0. I can ping and traceroute and telnet between all networks and interfaces and even to my public gateway ip, which is redistributed to both routers as the last resort gateway.
Unfortunately, I cannot access the internet on the 192.168.20.0 network. The 192.168.1.0/24 network works fine though.
I am wondering if I have to setup acl and nat also on the 2nd router??? It doesnt sound logical but where is this going wrong?
Comments
-
Options
mapletune
Member Posts: 316
Did you set up [ip nat inside] on both fa0/1 and s0/0 on your nat translating 2621 router?Studying: vmware, CompTIA Linux+, Storage+ or EMCISA
Future: CCNP, CCIE -
Options
vishaw1986
Member Posts: 40 ■■□□□□□□□□
Hey jhn ,
Firstly if you are using the Source based nat , then check either u have the route in 2610xm towards the 2621 i.e default route . Default route is for the carrying the internet address , because if you use the source nat then only your source address will change for the external network but when reply comes back source address remain same (which is the external address )
Here an example :
Inside network Outside network
====>> SA : Inside Local DA: Outside Global After Nat SA:Inside Global DA : Outside Global
DA: Inside Local SA: Outside Local DA:Inside Global SA : Outside Local <<<======