Hey All,
I may be barking up the wrong tree but since I am by no means an expert on Cisco i'm gonna see if this is the culprit. I have an DNS Server (WinNT 4) that is doing all of my DNS for my company. Our Internal IP address Scheme is a 192.168.1.XXX setup. The DNS Servers IP is 19.168.1.1 and the Inside router IP is 192.168.1.254 . The Problem I am having is that DNS is working beautifully internaly and I have no issues, but if someone on the outside world tries to nslookup using my server or just used my server in general they get a DNS timeout. Now i have the NAT set up for UDP port 53 and TCP port 53. On my 1605 I had prior this worked fine but since I installed and configured from scratch our new 1721 this hasnt worked. If you see any reason why this isnt working or you see some other huge mistake please by all means let me know. Thank you all in advance for any help or thoughts on this one.
Here is the Running-Config:
Building configuration...
Current configuration : 1404 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Cisco1721
!
enable secret 5 [Hidden For Security Purposes]
enable password [Hidden For Security Purposes]
!
ip subnet-zero
!
!
!
!
interface FastEthernet0
ip address 192.168.1.254 255.255.255.0
ip nat inside
speed auto
full-duplex
no cdp enable
!
interface Serial0
ip address 216.29.229.218 255.255.255.252
ip access-group 1 in
ip access-group 1 out
ip nat outside
service-module t1 timeslots 1-24
!
ip nat pool net-2 216.29.229.218 216.29.229.218 netmask 255.255.255.252
ip nat inside source list 1 pool net-2 overload
ip nat inside source static udp 192.168.1.1 53 216.29.229.218 53 extendable
ip nat inside source static tcp 192.168.1.10 80 216.29.229.218 80 extendable
ip nat inside source static tcp 192.168.1.130 3389 216.29.229.218 69 extendable
ip nat inside source static tcp 192.168.1.2 1494 216.29.229.218 1494 extendable
ip nat inside source static tcp 192.168.1.2 3389 216.29.229.218 3389 extendable
ip nat inside source static tcp 192.168.1.130 21 216.29.229.218 21 extendable
ip nat inside source static tcp 192.168.1.1 53 216.29.229.218 53 extendable
ip classless
no ip forward-protocol udp domain
ip route 0.0.0.0 0.0.0.0 216.29.229.217
no ip http server
!
!
access-list 1 permit any
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password [Hidden For Security Purposes]
login
!
end
I may be barking up the wrong tree but since I am by no means an expert on Cisco i'm gonna see if this is the culprit. I have an DNS Server (WinNT 4) that is doing all of my DNS for my company. Our Internal IP address Scheme is a 192.168.1.XXX setup. The DNS Servers IP is 19.168.1.1 and the Inside router IP is 192.168.1.254 . The Problem I am having is that DNS is working beautifully internaly and I have no issues, but if someone on the outside world tries to nslookup using my server or just used my server in general they get a DNS timeout. Now i have the NAT set up for UDP port 53 and TCP port 53. On my 1605 I had prior this worked fine but since I installed and configured from scratch our new 1721 this hasnt worked. If you see any reason why this isnt working or you see some other huge mistake please by all means let me know. Thank you all in advance for any help or thoughts on this one.
Here is the Running-Config:
Building configuration...
Current configuration : 1404 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Cisco1721
!
enable secret 5 [Hidden For Security Purposes]
enable password [Hidden For Security Purposes]
!
ip subnet-zero
!
!
!
!
interface FastEthernet0
ip address 192.168.1.254 255.255.255.0
ip nat inside
speed auto
full-duplex
no cdp enable
!
interface Serial0
ip address 216.29.229.218 255.255.255.252
ip access-group 1 in
ip access-group 1 out
ip nat outside
service-module t1 timeslots 1-24
!
ip nat pool net-2 216.29.229.218 216.29.229.218 netmask 255.255.255.252
ip nat inside source list 1 pool net-2 overload
ip nat inside source static udp 192.168.1.1 53 216.29.229.218 53 extendable
ip nat inside source static tcp 192.168.1.10 80 216.29.229.218 80 extendable
ip nat inside source static tcp 192.168.1.130 3389 216.29.229.218 69 extendable
ip nat inside source static tcp 192.168.1.2 1494 216.29.229.218 1494 extendable
ip nat inside source static tcp 192.168.1.2 3389 216.29.229.218 3389 extendable
ip nat inside source static tcp 192.168.1.130 21 216.29.229.218 21 extendable
ip nat inside source static tcp 192.168.1.1 53 216.29.229.218 53 extendable
ip classless
no ip forward-protocol udp domain
ip route 0.0.0.0 0.0.0.0 216.29.229.217
no ip http server
!
!
access-list 1 permit any
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password [Hidden For Security Purposes]
login
!
end