Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

CCNA 4 NAT problem

Options
  • 09-01-2011 3:30am
    #1
    Cork24
    Closed Accounts Posts: 2,663 ✭✭✭


    Am working on a Lab for CCNA 4

    i cant get Task 8
    Step 1: Configure NAT to allow PC3 to ping PC1
    working

    here is my PT file


Comments

  • Options
    #2
    accensi0n
    Registered Users Posts: 2,787 ✭✭✭accensi0n


    Post up the task and your configurations.


  • Options
    #3
    Cork24
    Closed Accounts Posts: 2,663 ✭✭✭Cork24


    Task :
    Configure NAT to allow PC3 to ping PC1

    my Packet Tracer file is in the zip file


  • Options
    #4
    rmacm
    Closed Accounts Posts: 2,039 ✭✭✭rmacm


    Not everyone has Packet Tracer installed, is there anyway for you to dump the output of a show run and then post that up. You'll get a quicker response that way.


  • Options
    #5
    Cork24
    Closed Accounts Posts: 2,663 ✭✭✭Cork24


    R1. 
    Building configuration...

Current configuration : 1898 bytes
!
version 12.4
service timestamps log datetime msec
service timestamps debug datetime msec
service password-encryption
!
hostname R1
!
login block-for 300 attempts 2 within 120
!
!
enable secret 5 $1$mERr$NY2X7xBCS5tAN/W1NAs2c1
enable password 7 0822455D0A16
!
!
!
!
!
aaa new-model
!
aaa authentication login local_auth local 
!
!
!
!
!
!
!
username R1 password 7 0822455D0A16
username R2 password 7 0822455D0A16
username ccnacisco password 7 08224F40081A0C041104
username cnna password 7 08225F470A1606141C0A
!
!
!
!
!
no ip domain-lookup
!
!
ip inspect audit-trail
ip inspect udp idle-time 1800
ip inspect dns-timeout 7
ip inspect tcp idle-time 14400
ip inspect name autosec_inspect http
ip inspect name autosec_inspect udp
ip inspect name autosec_inspect tcp
!
!
!
!
interface FastEthernet0/0
 no ip address
 duplex auto
 speed auto
 shutdown
!
interface FastEthernet0/1
 ip address 10.0.0.1 255.255.255.128
 duplex auto
 speed auto
!
interface Serial0/0/0
 ip address 172.16.0.1 255.255.255.252
 encapsulation ppp
 ppp authentication chap
 clock rate 64000
!
interface Serial0/0/1
 ip address 172.16.0.9 255.255.255.252
 encapsulation frame-relay
 clock rate 64000
!
interface Vlan1
 no ip address
 shutdown
!
router rip
 version 2
 network 10.0.0.0
 no auto-summary
!
ip classless
!
!
ip access-list extended sl_def_acl
 deny tcp any any eq telnet
 deny tcp any any eq www
 deny tcp any any eq 22
 permit tcp any any eq 22
access-list 100 permit udp any any eq bootpc
ip access-list extended autosec_firewall_acl
 permit udp any any eq bootpc
 deny ip any any
!
no cdp run
!
banner motd ^C only people with key can login ^C
!
!
!
!
logging trap debugging
line con 0
 transport output telnet
 exec-timeout 5 0
 password 7 0822455D0A16
 logging synchronous
 login authentication local_auth
line vty 0 4
 password 7 0822455D0A16
 login authentication local_auth
 transport input telnet
!
!
!
end

    R2 
    Current configuration : 1423 bytes
!
version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname R2
!
login block-for 300 attempts 2 within 120
!
!
enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1
!
!
!
!
!
aaa new-model
!
aaa authentication login LOCAL_AUTH local 
!
!
!
!
!
!
!
username R1 password 0 cisco
username R2 password 0 cisco
username ccna password 0 ciscoccna
!
!
!
!
!
no ip domain-lookup
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 duplex auto
 speed auto
 shutdown
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
 shutdown
!
interface Serial0/0/0
 ip address 172.16.0.2 255.255.255.252
 encapsulation ppp
 ppp authentication chap
!
interface Serial0/0/1
 ip address 172.16.0.5 255.255.255.252
 clock rate 64000
!
interface Serial0/1/0
 no ip address
 shutdown
!
interface Vlan1
 no ip address
 shutdown
!
router rip
 version 2
 passive-interface default
 no passive-interface Serial0/0/0
 no passive-interface Serial0/0/1
 network 10.0.0.0
 no auto-summary
!
ip classless
!
!
ip access-list extended sl_def_acl
 deny tcp any any eq telnet
 deny tcp any any eq www
 deny tcp any any eq 22
 permit tcp any any eq 22
!
banner motd ^CAccess strictly prohibited^C
!
!
!
!
line con 0
 exec-timeout 0 0
 password cisco
 logging synchronous
 login authentication LOCAL_AUTH
line vty 0 4
 password cisco
 login authentication LOCAL_AUTH
!
!
!
end
    R3 
    Current configuration : 932 bytes
!
version 12.4
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname R3
!
!
!
enable secret 5 $1$mERr$9cTjUIEqNGurQiFU.ZeCi1
!
!
!
!
!
!
!
!
!
!
no ip domain-lookup
!
!
!
!
!
!
interface FastEthernet0/0
 no ip address
 duplex auto
 speed auto
 shutdown
!
interface FastEthernet0/1
 ip address 10.0.0.129 255.255.255.128
 duplex auto
 speed auto
!
interface Serial0/0/0
 ip address 172.16.0.10 255.255.255.252
 encapsulation frame-relay
 frame-relay map ip 172.16.0.10 201 broadcast cisco
 clock rate 64000
!
interface Serial0/0/1
 ip address 172.16.0.6 255.255.255.252
!
interface Vlan1
 no ip address
 shutdown
!
router rip
 version 2
 network 10.0.0.0
 no auto-summary
!
ip classless
!
!
!
banner motd ^C access strictly prohibited^C
!
!
!
!
line con 0
 exec-timeout 0 0
 password cisco
 logging synchronous
 login
line vty 0 4
 password cisco
 login
!
!
!
end


  • Options
    #6
    rmacm
    Closed Accounts Posts: 2,039 ✭✭✭rmacm


    You don't have NAT configured on any of those routers. What did you try before you posted up here?


  • Advertisement
  • Options
    #7
    Cork24
    Closed Accounts Posts: 2,663 ✭✭✭Cork24


    I tried static nat but that didnt work but then again im not 100% sure on how to config Nat


  • Options
    #8
    rmacm
    Closed Accounts Posts: 2,039 ✭✭✭rmacm


    Have you read the study material on it? Post up a network diagram and I'll have a look. Plenty of docs on the web that go through configuring NAT. Try it in a simple situation first, then move on to something more complex.


  • Options
    #9
    NullZer0
    Registered Users Posts: 1,629 ✭✭✭NullZer0


    From the horses mouth -


    http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094e77.shtml

    If you are studying CCNA you should have covered this / saw it in a book.


  • Options
    #10
    Cork24
    Closed Accounts Posts: 2,663 ✭✭✭Cork24


    no didnt see that, all were getting is the Class Manual, and hand outs. and what ever is on the Cisco Network Academy


  • Options
    #11
    NullZer0
    Registered Users Posts: 1,629 ✭✭✭NullZer0


    Everything you need for EVERY subject can be found by going to cisco.com here:

    http://www.cisco.com/en/US/products/ps6350/products_installation_and_configuration_guides_list.html

    Also, to the best of my knowledge (and based on my experience), the exams are compiled based on the information in those docs.

    Also - if you dont receive material about this / have it explained to you make sure you ask why not.


  • Advertisement
Advertisement