configurazione 1751 come router

[geniom]

Ciao a tutti, ho comperato un router 1751 con interfaccia fastethernet 0/0 on board e una aggiuntiva ethernet 0/0 per fastweb che è connesso ad un hug di fastweb!
deve fungere da gatewai tra la mia lan interna e fastweb.

la configurazione attuale è quella che adesso vi posto.
dal router pingo l'esterno e l'interno e mi risolve anche i nomi dns esterni, ma la mia lan non va in internet.
Cosa manca o cosa sbaglio???

Grazie

Current configuration : 1712 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Cisco1751
!
enable secret 5 xxxxxx
enable password xxxxx
!
username xxxxpassword 0 xxxxx
ip subnet-zero
no ip source-route
no ip routing
no ip gratuitous-arps
!
!
ip domain name dominio.com
!
!
!
voice call carrier capacity active
!
!
!
!
!
!
!
!
!
mta receive maximum-recipients 0
!
!
!
interface Ethernet0/0
ip address dhcp
ip nat outside
no ip route-cache
no ip mroute-cache
half-duplex
!
interface FastEthernet0/0
ip address 192.168.1.253 255.255.255.0
ip nat inside
no ip route-cache
no ip mroute-cache
speed auto
full-duplex
!
no ip nat service sip udp port 5060
ip nat inside source list 1 interface Ethernet0/0 overload
ip classless
ip route 0.0.0.0 0.0.0.0 Ethernet0/0
ip http server
!
!
access-list 1 permit 192.168.1.0 0.0.0.255
!
call rsvp-sync
!
!
mgcp profile default
!
dial-peer cor custom
!
!
!
banner motd ^CCC
****************************************************************
----------------------------------------------------------------
* *** ROUTER PERIMETRALE ---- *** *
----------------------------------------------------------------
* WARNING: System is RESTRICTED to authorized personnel ONLY! *
* Unauthorized use of this system will be logged and *
* prosecuted to the fullest extent of the law. *
* *
* If you are NOT authorized to use this system, LOG OFF NOW! *
* Cisco 1751 Fastweb *
* *
****************************************************************
^C
!
line con 0
line aux 0
line vty 0 4
exec-timeout 0 0
password xxxxx
login local
!
end

[alfnetx]

Geniom, per caso hai risolto?
Anch'io ho il tuo stesso problema.
bye

[geniom]

si questo lo ho risolto, ho invertito le interfaccie e abilitato il nat e messo sopratutto no aaa newmodel con rotta overload.
ora funziona correttamente!

Ora devo solo configurarlo come VPN client..... e non so farlo ancora

[alfnetx]

Allora espongo il mio problema sperando in un aiuto:

Ho un Cisco 1751 configurato come sotto e, se pingo un host internet (es. www.google.it) sia da router che dai pc connessi (tramite hub su fe0/0) questi rispondono correttamente; Tuttavia gli stessi pc non navigano sia che digiti (su browser IE) il nome host che l'IP.

Da cosa puo' dipendere?
Naturalmente i settaggi del browser sono corretti (si tratta di portatili che utilizzo anche in un'altro ambiente con routers diversi)

Codice: Seleziona tutto

hostname Davide
!
boot-start-marker
boot-end-marker
!
enable password xxxx
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
voice-card 1
!
ip subnet-zero
ip cef
!
!
ip telnet source-interface FastEthernet0/0
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.254
!
ip dhcp pool client
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1 
   dns-server 208.67.222.222 208.67.220.220 
   lease infinite
!
ip dhcp pool ShuttlePC
   host 192.168.1.50 255.255.255.0
   client-identifier 0100.xxxx.b154.11
   lease 0 0 50
!
ip dhcp pool pippo
   host 192.168.1.52 255.255.255.0
   client-identifier 0100.xxxx.52b7.42
   lease 0 0 50
!

!
ip domain name tele2.it
ip name-server 208.67.222.222
ip name-server 208.67.220.220
vpdn enable
!

!
!
interface ATM0/0
 no ip address
 no atm ilmi-keepalive
 dsl operating-mode auto 
 pvc 8/35 
  pppoe-client dial-pool-number 1
 !
!
interface FastEthernet0/0
 ip address 192.168.1.1 255.255.255.0
 ip nat inside
 no ip mroute-cache
 speed auto
 full-duplex
 no cdp enable
!
interface Dialer1
 ip address negotiated
 ip access-group 111 in
 ip nat outside
 encapsulation ppp
 ip tcp adjust-mss 1452
 dialer pool 1
 dialer-group 1
 ppp chap hostname xxxx
 ppp chap password 0 xxx
 ppp pap sent-username xxxxx password 0 xxxx
 hold-queue 224 in
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
!
!
no ip http server
no ip http secure-server
ip nat inside source list 1 interface Dialer1 overload
ip nat inside source static udp 192.168.1.52 4780 interface Dialer1 4780
ip nat inside source static tcp 192.168.1.52 4770 interface Dialer1 4770
ip nat inside source static udp 192.168.1.60 4692 interface Dialer1 4692
ip nat inside source static tcp 192.168.1.60 4682 interface Dialer1 4682
ip nat inside source static udp 192.168.1.50 4672 interface Dialer1 4672
ip nat inside source static tcp 192.168.1.50 4662 interface Dialer1 4662
!
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 111 permit tcp any any established
access-list 111 remark *** RISOLUZIONE NOMI DNS
access-list 111 permit udp host 208.67.222.222 eq domain any
access-list 111 permit udp host 208.67.220.220 eq domain any
access-list 111 permit ip any any
dialer-list 1 protocol ip permit
!
control-plane
!
!
!
voice-port 1/0
!
voice-port 1/1
!
!
!
!
!
!
!
line con 0
 exec-timeout 0 0
line aux 0
line vty 0 4
 password xxxx
 login
!
end

Grazie

[geniom]

ma se gli metti l'ip ai client nella barra indirizzi al posto del nome dns navigano?
Perchè potrebbe essere un problema di DNS.