Can’t ping beyond the gateway

[joopdog]

I have a 1600 Cisco Router that is connected to an ISP (171.198.252.32). I’ve newly configured the router through telnet (192.168.200.10). See below. When I’m in the router I can ping the DNS (4.2.2.1 or 68.238.112.12). However, from the PC’s, on the 200-subnet I can’t ping the DNS. I can’t ping beyond the gateway.

==--==
Cisco1605R#sh run
Building configuration...

Current configuration:
!
version 12.0
service config
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname Cisco1605R
!
enable secret 5 $1$XBAu$XrR4jWcvW30Jty8/PR.980
!
!
!
!
!
ip subnet-zero
ip name-server 68.238.112.12
ip name-server 68.238.96.12
ip dhcp excluded-address 192.168.200.1 192.168.200.20
!
ip dhcp pool mydhcppool200
network 192.168.200.0 255.255.255.0
netbios-name-server 192.168.1.14 192.168.1.108
default-router 192.168.200.10
dns-server 68.238.112.12 68.238.96.12
lease 0 1
!
!
!
process-max-time 200
!
interface Ethernet0
description 1605R Router Ethernet0 to 1900 Switch.
ip address 171.198.252.32 255.255.255.0
no ip directed-broadcast
no cdp enable
!
interface Ethernet1
ip address 192.168.200.10 255.255.255.0
no ip directed-broadcast
no cdp enable
!
router rip
version 2
network 192.168.0.0
!
ip default-gateway 171.198.252.1
ip classless
ip route 0.0.0.0 0.0.0.0 171.198.252.1
ip route 10.1.2.0 255.255.255.0 192.168.1.6
ip route 192.168.2.0 255.255.255.0 192.168.1.6
ip route 192.168.3.0 255.255.255.0 192.168.1.10
ip http server
!
no cdp run
banner motd ^C
This is Todd's 1605R Router with (2) Ethernet ports. Welcome!!!
^C
!
line con 0
exec-timeout 0 0
password cisco
logging synchronous
transport input none
line vty 0 4
exec-timeout 20 0
password cisco
login
!
end

Cisco1605R#
==--==
Can someone where I’m going wrong in my configuration?

Thanks
Any help would be appreciated.

 

[Minue]

Hello
I think you will need to do NAT,the below config may need some tweeking.


interface Ethernet0
description 1605R Router Ethernet0 to 1900 Switch.
ip address 171.198.252.32 255.255.255.0
no ip directed-broadcast
no cdp enable
ip nat outside
interface Ethernet1
ip address 192.168.200.10 255.255.255.0
no ip directed-broadcast
no cdp enable
ip nat inside

ip route 0.0.0.0 0.0.0.0 Ethernet0

!
ip nat inside source list 1 interface Ethernet0 overload
!
access-list 1 permit 192.168.200.0 0.0.0.255

Good luck

 

[joopdog]

IT WORKED!!! Thanks Minue

I’m able to get everyone out on the internet! I bought this 1605 Cisco router for 30 bucks. I thought I might use it for our new subnet. Meanwhile, learn some more Cisco commands.

===----====
Cisco1605R#sh run
Building configuration...

Current configuration:
!
! Last configuration change at 12:00:08 EST Thu Dec 13 2007
!
version 12.0
service config
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname Cisco1605R
!
enable secret 5 $1$XBAu$XrR4jWcvW30Jty8/PR.980
!
!
!
!
!
clock timezone EST -5
ip subnet-zero
ip name-server 68.238.112.12
ip name-server 68.238.96.12
ip dhcp excluded-address 192.168.200.1 192.168.200.20
!
ip dhcp pool mydhcppool200
network 192.168.200.0 255.255.255.0
default-router 192.168.200.10
dns-server 68.238.112.12 68.238.96.12
lease 0 1
!
!
!
process-max-time 200
!
interface Ethernet0
description 1605R Router Ethernet0 to 1900 Switch.
ip address 171.198.252.32 255.255.255.0
no ip directed-broadcast
ip nat outside
no cdp enable
!
interface Ethernet1
ip address 192.168.200.10 255.255.255.0
no ip directed-broadcast
ip nat inside
no cdp enable
!
router rip
version 2
network 192.168.0.0
!
ip nat inside source list 1 interface Ethernet0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 171.198.252.1
ip route 10.1.2.0 255.255.255.0 192.168.1.6
ip route 192.168.2.0 255.255.255.0 192.168.1.6
ip route 192.168.3.0 255.255.255.0 192.168.1.10
ip http server
!
access-list 1 permit 192.168.200.0 0.0.0.255
no cdp run
banner motd ^C
This is Todd's 1605R Router with (2) Ethernet ports. Welcome!!!
^C
!
line con 0
exec-timeout 0 0
password cisco
logging synchronous
transport input none
line vty 0 4
exec-timeout 20 0
password cisco
login
!
end

Cisco1605R#
====----====
I must have missed this in Cisco class. The use of NAT. I had to no idea I had to NAT it through.

Anyways, thanks again for all your help.

 

[burtsbees]

NAT allows the private IP addresses to be translated to the outgoing public IP address(es), since private IP addresses are not routeable on the internet.

Burt

 

[joopdog]

I found this site to be very useful.

http://www.trainsignaltraining.com/learn-about-scaling-ip-addresses-with-nat-and-pat/2007-09-13/

NAT Overloading Configuration
To configure NAT Overloading, the following need to be performed:
• Specify the inside interface:
o Router(config)#interface ethernet0
o Router(config-if)# ip nat inside
• Specify the outside interface:
o Router(config)# interface serial0
o Router(config-if)# ip nat outside
• Define an Access List to permit the inside local addresses to be translated:
o Router(config)# access-list 1 permit 10.0.0.0 0.0.0.255
• Enter dynamic translation entry 5:
o Router(config)# ip nat inside source list 1 interface serial0 overload

Again, thanks everyone.