Home > Archive > CCIE > April 2003 > Advanced NAT problem





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Advanced NAT problem
linkteo

2003-03-31, 11:32 am

I have a Cisco 1720 router with leased line to internet and ISDN backup to internet. The ISDN backup is using "Backup interface" method. My ISP assign different IP pool for my leased line and ISDN. So I use route-map so that the router will select appropiate pool when using leased line or ISDN.

For testing purposes, When I am connecting using leased line, I issue a continuous ping to my ISP primary DNS server, 165.21.83.88. When I remove the leased line connection, the ISDN kick in and runs fine, but my ping never recovered from "request timeout"! if I stop the ping and issue a new ping to my ISP secondary DNS server, 165.21.100.88, I got reply. when I cancel this ping and ping back 165.21.83.88, it still request timeout!

Now when I put back the leased line connection, the ISDN goes down. Now I can ping 165.21.83.88 but I cannot ping 165.21.100.88.

It seems like the NAT translation for 165.21.83.88 continuously stick to leased line although I am using ISDN backup. likewise the NAT translation for 165.21.100.88 stick to ISDN connection even though I am using leased line.

Why?? How to solve this problem??
linkteo

2003-04-01, 8:01 pm

My config is as follows:

abc#sh ru
Building configuration...

Current configuration : 1709 bytes
!
version 12.1
no service single-slot-reload-enable
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname abc
!
logging rate-limit console 10 except errors
enable secret 5 $1$C
!
memory-size iomem 25
ip subnet-zero
no ip source-route
no ip finger
no ip domain-lookup
!
isdn switch-type basic-net3
!
!
!
interface BRI0
ip address 165.21.12.250 255.255.255.252
ip nat outside
encapsulation ppp
dialer idle-timeout 60
dialer map ip 165.21.12.249 name abc 65375200
dialer-group 1
isdn switch-type basic-net3
ppp authentication pap callin
ppp pap sent-username abc password 7 1104
!
interface FastEthernet0
ip address 132.147.160.4 255.255.0.0
ip nat inside
speed auto
!
interface Serial0
backup delay 0 30
backup interface BRI0
ip address 165.21.46.250 255.255.255.252
no ip proxy-arp
ip nat outside
no cdp enable
!
ip nat pool MAYPOOL 203.127.56.194 203.127.56.198 netmask 255.255.255.248
ip nat pool Leased_Line_Pool 203.126.245.33 203.126.245.33 prefix-length 28
ip nat inside source route-map ISDN_Map pool MAYPOOL overload
ip nat inside source route-map Leased_Line_Map pool Leased_Line_Pool overload
ip classless
ip route 0.0.0.0 0.0.0.0 165.21.46.249
ip route 0.0.0.0 0.0.0.0 165.21.12.249 200
no ip http server
!
access-list 1 permit 132.147.0.0 0.0.255.255
dialer-list 1 protocol ip permit
route-map ISDN_Map permit 10
match ip address 1
match interface BRI0
!
route-map Leased_Line_Map permit 10
match ip address 1
match interface Serial0
!
!
line con 0
logging synchronous
transport input none
line aux 0
line vty 0 4
password 7 18989
login
!
no scheduler allocate
end
Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2008 examnotes.net