subject:"NAT timeout"

NAT timeout

2000-10-30 Thread Minh Vu




Hello all,
 
I get 99% "Can not find server" error when browse 
any website in Win2k and 20% when using Win95, 98, or ME.  In 
Win2k I have to refresh many time to get the page to load.   Also, I 
got timeout while download using FTP program in Win9x and Win2k.  

 
I'm not sure that my NAT configure in router have 
problem.  I already remove my ACL and just run basic NAT.  Still got 
problem browsing w/ Win2k and using FTP.  
 
What else should I put in my NAT 
config?
 
Here is my config:
 
ip nat translation tcp-timeout 360ip nat 
translation udp-timeout 360ip nat translation finrst-timeout neverip nat 
translation dns-timeout 61ip nat pool net-10 10.0.0.1 10.0.0.254 netmask 
255.0.0.0ip nat inside source list 2 interface Ethernet1 overloadno ip 
fingerno ip domain-lookupip domain-name .COMip name-server 
207.211.58.XXip inspect dns-timeout 30ip inspect tcp finwait-time 
20  
process-max-time 200!interface 
Ethernet0 description Connected to Local Network (LAN) ip 
address 10.0.0.1 255.0.0.0 ip nat inside arp timeout 
360!interface Ethernet1 description Connected to Internet 
- 
 ip address 64.22.13x.xxx 
255.255.XXX.XXX ip nat outside arp timeout 360!ip 
default-gateway 64.22.13X.XXXip classlessip route 0.0.0.0 0.0.0.0 
Ethernet1!access-list 2 permit 10.0.0.0 0.0.0.255!line con 
0 transport input noneline aux 0line vty 0 
4

RE: NAT timeout

2000-10-30 Thread Brant Stevens




Your 
NAT pool is using RFC 1918 addressing, private networks.  Packets sourced 
from any of the networks 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16 will not 
be routed across the Internet...
 
This 
is one of the suspect lines...
ip nat 
pool net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0
The 
NAT'ed address pool range would have to come from the 64.22.13x.xxx 
network.

  -Original Message-From: [EMAIL PROTECTED] 
  [mailto:[EMAIL PROTECTED]]On Behalf Of Minh VuSent: 
  Monday, October 30, 2000 2:26 PMTo: 
  [EMAIL PROTECTED]Subject: NAT timeout
  Hello all,
   
  I get 99% "Can not find server" error when browse 
  any website in Win2k and 20% when using Win95, 98, or ME.  In 
  Win2k I have to refresh many time to get the page to load.   Also, I 
  got timeout while download using FTP program in Win9x 
  and Win2k.  
   
  I'm not sure that my NAT configure in router have 
  problem.  I already remove my ACL and just run basic NAT.  Still got 
  problem browsing w/ Win2k and using FTP.  
   
  What else should I put in my NAT 
  config?
   
  Here is my config:
   
  ip nat translation tcp-timeout 360ip nat 
  translation udp-timeout 360ip nat translation finrst-timeout neverip 
  nat translation dns-timeout 61ip nat pool net-10 10.0.0.1 10.0.0.254 
  netmask 255.0.0.0ip nat inside source list 2 interface Ethernet1 
  overloadno ip fingerno ip domain-lookupip domain-name 
  .COMip name-server 207.211.58.XXip inspect dns-timeout 30ip 
  inspect tcp finwait-time 20  
  process-max-time 200!interface 
  Ethernet0 description Connected to Local Network (LAN) ip 
  address 10.0.0.1 255.0.0.0 ip nat inside arp timeout 
  360!interface Ethernet1 description Connected to Internet 
  - 
   ip address 64.22.13x.xxx 
  255.255.XXX.XXX ip nat outside arp timeout 360!ip 
  default-gateway 64.22.13X.XXXip classlessip route 0.0.0.0 0.0.0.0 
  Ethernet1!access-list 2 permit 10.0.0.0 0.0.0.255!line con 
  0 transport input noneline aux 0line vty 0 
4

Re: NAT timeout

2000-10-30 Thread Minh Vu


I don't think "no ip domain-lookup" is a problem with the NAT (it does
something else with IOS)
I put those in so I can figure what wrong w/ my NAT (it didn't have before,
and I still get same problem)

> no ip domain-lookup
> ip domain-name .COM
> ip name-server 207.211.58.XX
> ip inspect dns-timeout 30
> ip inspect tcp finwait-time 20
> process-max-time 200
and ARP Timeout XXX on each interface

- Original Message -
From: "Jason Baker" <[EMAIL PROTECTED]>
To: "'Minh Vu'" <[EMAIL PROTECTED]>
Sent: Monday, October 30, 2000 2:20 PM
Subject: RE: NAT timeout


> what about removing the "no ip-domain lookup"
> for starters.
>
> -Original Message-
> From: Minh Vu [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, October 31, 2000 6:26 AM
> To: [EMAIL PROTECTED]
> Subject: NAT timeout
>
>
>
> Hello all,
>
> I get 99% "Can not find server" error when browse any website in Win2k and
> 20% when using Win95, 98, or ME.  In Win2k I have to refresh many time to
> get the page to load.   Also, I got timeout while download using FTP
program
> in Win9x and Win2k.
>
> I'm not sure that my NAT configure in router have problem.  I already
remove
> my ACL and just run basic NAT.  Still got problem browsing w/ Win2k and
> using FTP.
>
> What else should I put in my NAT config?
>
> Here is my config:
>
> ip nat translation tcp-timeout 360
> ip nat translation udp-timeout 360
> ip nat translation finrst-timeout never
> ip nat translation dns-timeout 61
> ip nat pool net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0
> ip nat inside source list 2 interface Ethernet1 overload
> no ip finger
> no ip domain-lookup
> ip domain-name .COM
> ip name-server 207.211.58.XX
> ip inspect dns-timeout 30
> ip inspect tcp finwait-time 20
> process-max-time 200
> !
> interface Ethernet0
>  description Connected to Local Network (LAN)
>  ip address 10.0.0.1 255.0.0.0
>  ip nat inside
>  arp timeout 360
> !
> interface Ethernet1
>  description Connected to Internet -
>  ip address 64.22.13x.xxx 255.255.XXX.XXX
>  ip nat outside
>  arp timeout 360
> !
> ip default-gateway 64.22.13X.XXX
> ip classless
> ip route 0.0.0.0 0.0.0.0 Ethernet1
> !
> access-list 2 permit 10.0.0.0 0.0.0.255
> !
> line con 0
>  transport input none
> line aux 0
> line vty 0 4

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: NAT timeout

2000-10-30 Thread Minh Vu


I changed to your config, but still get same problem.
I'm using IOS 11.3 (c2500-io-l.113-11a.T1.bin).
The DNS server is my ISP DNS.


Anymore hint ?

It doesn't have problem back while I using Pacbell, then it happen after I
moved to different location with different ISP. 


Also read another message I send to group might help you guy figure out.

Got Ether-88-6F Protocol broadcast (alot) out from Win2k Advance Server.
(Yes, Etherpeek display "Ether-88-6F" Protocol under Protocol Statistic
window)

EtherPeek 4.0.1 and Sniffer Pro 3.5 said MAC address is: 02:01:00:00:00:00,
but that wasn't my NIC MAC address (win2k Adv. Server NIC)

Anyhint with this?


-Original Message-
From: Jason Baker
To: 'Minh Vu'
Sent: 10/30/00 3:57 PM
Subject: RE: NAT timeout

eth 0
ip addre xx
ip nat inside

eth 1
ip nat outside
ip addres x

ip nat inside source 101 interface eth 1 overload

access-list 101 permit ip 10.0.0.0 255.255.255.0 any


Changing your mask on eth 0 to 255.255.255.0

apart from that check your DNS server etc

and also removing the ip inspect commands at this stage.
Take your router back to a basic state..

What IOS are you using ?


-Original Message-
From: Minh Vu [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 31, 2000 9:29 AM
To: Jason Baker; [EMAIL PROTECTED]
Subject: Re: NAT timeout


I don't think "no ip domain-lookup" is a problem with the NAT (it does
something else with IOS)
I put those in so I can figure what wrong w/ my NAT (it didn't have
before,
and I still get same problem)

> no ip domain-lookup
> ip domain-name .COM
> ip name-server 207.211.58.XX
> ip inspect dns-timeout 30
> ip inspect tcp finwait-time 20
> process-max-time 200
and ARP Timeout XXX on each interface

- Original Message -
From: "Jason Baker" <[EMAIL PROTECTED]>
To: "'Minh Vu'" <[EMAIL PROTECTED]>
Sent: Monday, October 30, 2000 2:20 PM
Subject: RE: NAT timeout


> what about removing the "no ip-domain lookup"
> for starters.
>
> -Original Message-
> From: Minh Vu [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, October 31, 2000 6:26 AM
> To: [EMAIL PROTECTED]
> Subject: NAT timeout
>
>
>
> Hello all,
>
> I get 99% "Can not find server" error when browse any website in Win2k
and
> 20% when using Win95, 98, or ME.  In Win2k I have to refresh many time
to
> get the page to load.   Also, I got timeout while download using FTP
program
> in Win9x and Win2k.
>
> I'm not sure that my NAT configure in router have problem.  I already
remove
> my ACL and just run basic NAT.  Still got problem browsing w/ Win2k
and
> using FTP.
>
> What else should I put in my NAT config?
>
> Here is my config:
>
> ip nat translation tcp-timeout 360
> ip nat translation udp-timeout 360
> ip nat translation finrst-timeout never
> ip nat translation dns-timeout 61
> ip nat pool net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0
> ip nat inside source list 2 interface Ethernet1 overload
> no ip finger
> no ip domain-lookup
> ip domain-name .COM
> ip name-server 207.211.58.XX
> ip inspect dns-timeout 30
> ip inspect tcp finwait-time 20
> process-max-time 200
> !
> interface Ethernet0
>  description Connected to Local Network (LAN)
>  ip address 10.0.0.1 255.0.0.0
>  ip nat inside
>  arp timeout 360
> !
> interface Ethernet1
>  description Connected to Internet -
>  ip address 64.22.13x.xxx 255.255.XXX.XXX
>  ip nat outside
>  arp timeout 360
> !
> ip default-gateway 64.22.13X.XXX
> ip classless
> ip route 0.0.0.0 0.0.0.0 Ethernet1
> !
> access-list 2 permit 10.0.0.0 0.0.0.255
> !
> line con 0
>  transport input none
> line aux 0
> line vty 0 4

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: NAT timeout

2000-10-31 Thread Chuck Church


Have you done a 'sh ip nat tra' on the router?  What does the output look
like?  Can you ping either DNS names or addresses from the workstations?


Chuck Church
CCNP, CCDP, MCNE, MCSE
Sr. Network Engineer
Magnacom Technologies
140 N. Rt. 303
Valley Cottage, NY 10989
845-267-4000 x218

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: NAT timeout

2000-10-31 Thread Minh Vu


When I enter the www.msn.com in browser, here is the output of "debug ip nat
detail"

**note** - IP address: 10.0.0.6 is my Win2k Profession
- IP address: 64.22.13X.ABC is my public IP, (Ethernet 1)
- IP address: 207.211.58.10 is my ISP DNS server.
- beside above IP(s), I don't know where those came from.

FWGW#
FWGW#
FWGW#
2w0d: NAT: i: udp (10.0.0.6, 1138) -> (207.211.58.10, 53) [1536]
2w0d: NAT: ipnat_allocate_port: wanted 1138 got 1138
2w0d: NAT: i: udp (10.0.0.6, 1138) -> (207.211.58.10, 53) [1537]
2w0d: NAT: o: udp (207.211.58.10, 53) -> (64.22.13X.ABC, 1138) [18281]
2w0d: NAT: i: tcp (10.0.0.6, 1139) -> (207.46.176.121, 80) [1538]
2w0d: NAT: ipnat_allocate_port: wanted 1139 got 1139
2w0d: NAT: i: tcp (10.0.0.6, 1140) -> (207.46.179.134, 80) [1540]
2w0d: NAT: ipnat_allocate_port: wanted 1140 got 1140
2w0d: NAT: i: tcp (10.0.0.6, 1141) -> (207.46.179.143, 80) [1542]
2w0d: NAT: ipnat_allocate_port: wanted 1141 got 1141
2w0d: NAT: i: tcp (10.0.0.6, 1142) -> (207.46.185.138, 80) [1544]
2w0d: NAT: ipnat_allocate_port: wanted 1142 got 1142
2w0d: NAT: i: tcp (10.0.0.6, 1143) -> (207.46.185.140, 80) [1546]
2w0d: NAT: ipnat_allocate_port: wanted 1143 got 1143
2w0d: NAT: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1548]
2w0d: NAT: ipnat_allocate_port: wanted 1144 got 1144
2w0d: NAT: o: tcp (207.46.185.99, 80) -> (64.22.13X.ABC, 1144) [42286]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1550]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1551]
2w0d: NAT*: o: tcp (207.46.185.99, 80) -> (64.22.13X.ABC, 1144) [42300]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1553]
When browser display Cannot find server it stop here.

Then I type:

FWGW#sh ip nat trans
Pro Inside global  Inside local   Outside local  Outside global
udp 64.22.13X.ABC:1138 10.0.0.6:1138  207.211.58.10:53
207.211.58.10:53
tcp 64.22.13X.ABC:1140 10.0.0.6:1140  207.46.179.134:80
207.46.179.134:80
tcp 64.22.13X.ABC:1141 10.0.0.6:1141  207.46.179.143:80
207.46.179.143:80
tcp 64.22.13X.ABC:1139 10.0.0.6:1139  207.46.176.121:80
207.46.176.121:80
tcp 64.22.13X.ABC:1144 10.0.0.6:1144  207.46.185.99:80
207.46.185.99:80
tcp 64.22.13X.ABC:1142 10.0.0.6:1142  207.46.185.138:80
207.46.185.138:80
tcp 64.22.13X.ABC:1143 10.0.0.6:1143  207.46.185.140:80
207.46.185.140:80

FWGW#sh ip nat stat
Total active translations: 7 (0 static, 7 dynamic; 7 extended)
Outside interfaces:
  Ethernet1
Inside interfaces: 
  Ethernet0
Hits: 7  Misses: 7
Expired translations: 0
Dynamic mappings:
-- Inside Source
access-list 2 interface Ethernet1 refcount 7
FWGW#





Here is ping from inside router with Yahoo IP

FWGW#ping
Protocol [ip]:
Target IP address: 204.71.200.74
Repeat count [5]: 100
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]:
Sweep range of sizes [n]:
Type escape sequence to abort.
Sending 100, 100-byte ICMP Echos to 204.71.200.74, timeout is 2 seconds:
.!..!..!!!...!!!.!!!.!.!.!.!.!!!..
.!.!!.!.!.!.!!
Success rate is 78 percent (78/100), round-trip min/avg/max = 20/33/164 ms
FWGW#




I don't know why it drop too many packet. Here is basic current config:

Current configuration:
!
version 11.3
!
hostname FWGW
!
boot system flash
enable secret 5 
!
ip subnet-zero
ip nat translation tcp-timeout 360
ip nat translation udp-timeout 360
ip nat translation finrst-timeout never
ip nat translation dns-timeout 61
ip nat inside source list 2 interface Ethernet1 overload
no ip finger
no ip domain-lookup
ip domain-name DOMAIN.COM
ip name-server 207.211.58.10
!
!
process-max-time 200
!
interface Ethernet0
 description Connected to Local Network (LAN)
 ip address 10.0.0.1 255.0.0.0
 ip nat inside
 arp timeout 360
!
interface Ethernet1
 description Connected to Internet
 ip address 64.22.13X.ABC 255.255.255.128
 ip nat outside
 arp timeout 360

!
ip default-gateway 64.22.13X.BCD <--- My ISP GW
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet1
!
access-list 2 permit 10.0.0.0 0.0.0.255
!
line con 0
 transport input none
line aux 0



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: NAT timeout

2000-10-31 Thread Minh Vu


When I enter the www.msn.com in browser, here is the output of "debug ip nat
detail"

**note** - IP address: 10.0.0.6 is my Win2k Profession
- IP address: 64.22.13X.ABC is my public IP, (Ethernet 1)
- IP address: 207.211.58.10 is my ISP DNS server.
- beside above IP(s), I don't know where those came from.

FWGW#
FWGW#
FWGW#
2w0d: NAT: i: udp (10.0.0.6, 1138) -> (207.211.58.10, 53) [1536]
2w0d: NAT: ipnat_allocate_port: wanted 1138 got 1138
2w0d: NAT: i: udp (10.0.0.6, 1138) -> (207.211.58.10, 53) [1537]
2w0d: NAT: o: udp (207.211.58.10, 53) -> (64.22.13X.ABC, 1138) [18281]
2w0d: NAT: i: tcp (10.0.0.6, 1139) -> (207.46.176.121, 80) [1538]
2w0d: NAT: ipnat_allocate_port: wanted 1139 got 1139
2w0d: NAT: i: tcp (10.0.0.6, 1140) -> (207.46.179.134, 80) [1540]
2w0d: NAT: ipnat_allocate_port: wanted 1140 got 1140
2w0d: NAT: i: tcp (10.0.0.6, 1141) -> (207.46.179.143, 80) [1542]
2w0d: NAT: ipnat_allocate_port: wanted 1141 got 1141
2w0d: NAT: i: tcp (10.0.0.6, 1142) -> (207.46.185.138, 80) [1544]
2w0d: NAT: ipnat_allocate_port: wanted 1142 got 1142
2w0d: NAT: i: tcp (10.0.0.6, 1143) -> (207.46.185.140, 80) [1546]
2w0d: NAT: ipnat_allocate_port: wanted 1143 got 1143
2w0d: NAT: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1548]
2w0d: NAT: ipnat_allocate_port: wanted 1144 got 1144
2w0d: NAT: o: tcp (207.46.185.99, 80) -> (64.22.13X.ABC, 1144) [42286]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1550]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1551]
2w0d: NAT*: o: tcp (207.46.185.99, 80) -> (64.22.13X.ABC, 1144) [42300]
2w0d: NAT*: i: tcp (10.0.0.6, 1144) -> (207.46.185.99, 80) [1553]
When browser display Cannot find server it stop here.

Then I type:

FWGW#sh ip nat trans
Pro Inside global  Inside local   Outside local  Outside global
udp 64.22.13X.ABC:1138 10.0.0.6:1138  207.211.58.10:53
207.211.58.10:53
tcp 64.22.13X.ABC:1140 10.0.0.6:1140  207.46.179.134:80
207.46.179.134:80
tcp 64.22.13X.ABC:1141 10.0.0.6:1141  207.46.179.143:80
207.46.179.143:80
tcp 64.22.13X.ABC:1139 10.0.0.6:1139  207.46.176.121:80
207.46.176.121:80
tcp 64.22.13X.ABC:1144 10.0.0.6:1144  207.46.185.99:80
207.46.185.99:80
tcp 64.22.13X.ABC:1142 10.0.0.6:1142  207.46.185.138:80
207.46.185.138:80
tcp 64.22.13X.ABC:1143 10.0.0.6:1143  207.46.185.140:80
207.46.185.140:80

FWGW#sh ip nat stat
Total active translations: 7 (0 static, 7 dynamic; 7 extended)
Outside interfaces:
  Ethernet1
Inside interfaces: 
  Ethernet0
Hits: 7  Misses: 7
Expired translations: 0
Dynamic mappings:
-- Inside Source
access-list 2 interface Ethernet1 refcount 7
FWGW#





Here is ping from inside router with Yahoo IP

FWGW#ping
Protocol [ip]:
Target IP address: 204.71.200.74
Repeat count [5]: 100
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]:
Sweep range of sizes [n]:
Type escape sequence to abort.
Sending 100, 100-byte ICMP Echos to 204.71.200.74, timeout is 2 seconds:
.!..!..!!!...!!!.!!!.!.!.!.!.!!!..
.!.!!.!.!.!.!!
Success rate is 78 percent (78/100), round-trip min/avg/max = 20/33/164 ms
FWGW#




I don't know why it drop too many packet. Here is basic current config:

Current configuration:
!
version 11.3
!
hostname FWGW
!
boot system flash
enable secret 5 
!
ip subnet-zero
ip nat translation tcp-timeout 360
ip nat translation udp-timeout 360
ip nat translation finrst-timeout never
ip nat translation dns-timeout 61
ip nat inside source list 2 interface Ethernet1 overload
no ip finger
no ip domain-lookup
ip domain-name DOMAIN.COM
ip name-server 207.211.58.10
!
!
process-max-time 200
!
interface Ethernet0
 description Connected to Local Network (LAN)
 ip address 10.0.0.1 255.0.0.0
 ip nat inside
 arp timeout 360
!
interface Ethernet1
 description Connected to Internet
 ip address 64.22.13X.ABC 255.255.255.128
 ip nat outside
 arp timeout 360

!
ip default-gateway 64.22.13X.BCD <--- My ISP GW
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet1
!
access-list 2 permit 10.0.0.0 0.0.0.255
!
line con 0
 transport input none
line aux 0



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: NAT timeout

2000-11-14 Thread Apoorva S.Malavia




Here is the problem :
ip nat pool net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0
it should be a public block, i.e. 64.22.xx
Minh Vu wrote:

Hello
all, I get 99% "Can
not find server" error when browse any website in Win2k and 20% when using
Win95, 98, or ME.  In Win2k I have to refresh many time to get the
page to load.   Also, I got timeout while download using FTP
program in Win9x and Win2k. I'm
not sure that my NAT configure in router have problem.  I already
remove my ACL and just run basic NAT.  Still got problem browsing
w/ Win2k and using FTP. What
else should I put in my NAT config? Here
is my config: ip nat
translation tcp-timeout 360
ip nat translation udp-timeout 360
ip nat translation finrst-timeout
never
ip nat translation dns-timeout 61
ip nat pool net-10 10.0.0.1 10.0.0.254
netmask 255.0.0.0
ip nat inside source list 2 interface
Ethernet1 overload
no ip finger
no ip domain-lookup
ip domain-name .COM
ip name-server 207.211.58.XX
ip inspect dns-timeout 30
ip inspect tcp finwait-time 20process-max-time
200
!
interface Ethernet0
 description Connected to Local
Network (LAN)
 ip address 10.0.0.1 255.0.0.0
 ip nat inside
 arp timeout 360
!
interface Ethernet1
 description Connected to Internet
- ip address 64.22.13x.xxx
255.255.XXX.XXX
 ip nat outside
 arp timeout 360
!
ip default-gateway 64.22.13X.XXX
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet1
!
access-list 2 permit 10.0.0.0 0.0.0.255
!
line con 0
 transport input none
line aux 0
line vty 0 4

--
==
    Apoorva S.Malavia
    Site Engineer
    CCNA
    SiteSmith Inc. - www.sitesmith.com
    Office - 212.675.9300 x243
    ICCC   - 888.898.7667
==

Re: NAT timeout

2000-11-14 Thread Minh Vu




I only have one public IPs. I also removed the line 
"ip nat pool net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0" because it never been 
use.
 

Anything else ?
 

  - Original Message - 
  From: 
  Apoorva 
  S.Malavia 
  Newsgroups: groupstudy.cisco
  To: [EMAIL PROTECTED] 
  Sent: Tuesday, November 14, 2000 9:13 
  AM
  Subject: Re: NAT timeout
  Here is the problem : ip nat pool net-10 10.0.0.1 
  10.0.0.254 netmask 255.0.0.0 it should be a public block, i.e. 64.22.xx 
  Minh Vu wrote: 
  

Hello all, I get 99% "Can not find server" error when browse 
any website in Win2k and 20% when using Win95, 98, or ME.  In Win2k I 
have to refresh many time to get the page to load.   Also, I got 
timeout while download using FTP program in Win9x and 
Win2k. I'm not sure that 
my NAT configure in router have problem.  I already remove my ACL and 
just run basic NAT.  Still got problem browsing w/ Win2k and using 
FTP. What else should I 
put in my NAT config? Here 
is my config: ip nat 
translation tcp-timeout 360 ip nat translation udp-timeout 360 ip nat translation finrst-timeout 
never ip nat translation 
dns-timeout 61 ip nat pool 
net-10 10.0.0.1 10.0.0.254 netmask 255.0.0.0 ip nat inside source list 2 interface Ethernet1 
overload no ip 
finger no ip 
domain-lookup ip 
domain-name .COM ip 
name-server 207.211.58.XX ip inspect dns-timeout 30 ip inspect tcp finwait-time 20process-max-time 200 ! interface 
Ethernet0  description 
Connected to Local Network (LAN)  ip address 10.0.0.1 255.0.0.0  ip nat inside  arp timeout 360 ! interface Ethernet1  description Connected to Internet - ip address 64.22.13x.xxx 
255.255.XXX.XXX  ip 
nat outside  arp 
timeout 360 ! 
ip default-gateway 
64.22.13X.XXX ip 
classless ip route 0.0.0.0 
0.0.0.0 Ethernet1 ! access-list 2 
permit 10.0.0.0 0.0.0.255 ! line con 
0  transport input 
none line aux 
0 line vty 0 
  4
  -- == 
      Apoorva S.Malavia 
      Site Engineer 
      CCNA 
      SiteSmith Inc. - 
  www.sitesmith.com     Office - 
  212.675.9300 x243     
  ICCC   - 888.898.7667 
  ==

NAT timeout

RE: NAT timeout

Re: NAT timeout

RE: NAT timeout

Re: NAT timeout

Re: NAT timeout

Re: NAT timeout

Re: NAT timeout

Re: NAT timeout

9 matches

Site Navigation

Mail list logo

Footer information