G-2

[iyselee07]

これもaccess-list絡みの問題っぽい 1941自体からはpingが通る192.168.9.1（デフォルトゲート）に、 端末からは到達出来ない

[bgpat]

2960b -> 1941b -> 1941a (nat) -> 2960b -> backbone

[bgpat]

natできてないっぽい

[iyselee07]

1941a

Gateway of last resort is 192.168.9.1 to network 0.0.0.0

S* 0.0.0.0/0 [1/0] via 192.168.9.1 192.168.6.0/24 is variably subnetted, 3 subnets, 2 masks C 192.168.6.0/25 is directly connected, GigabitEthernet0/1 L 192.168.6.1/32 is directly connected, GigabitEthernet0/1 O 192.168.6.128/25 [110/2] via 192.168.6.2, 23:13:41, GigabitEthernet0/1 192.168.9.0/24 is variably subnetted, 2 subnets, 2 masks C 192.168.9.0/24 is directly connected, GigabitEthernet0/0 L 192.168.9.2/32 is directly connected, GigabitEthernet0/0

[bgpat]

1941b

KAT#show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area 
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       + - replicated route, % - next hop override

Gateway of last resort is 192.168.6.1 to network 0.0.0.0

S*    0.0.0.0/0 [254/0] via 192.168.6.1
      192.168.6.0/24 is variably subnetted, 4 subnets, 2 masks
C        192.168.6.0/25 is directly connected, GigabitEthernet0/1
L        192.168.6.2/32 is directly connected, GigabitEthernet0/1
C        192.168.6.128/25 is directly connected, GigabitEthernet0/0
L        192.168.6.129/32 is directly connected, GigabitEthernet0/0
O     192.168.9.0/24 [110/2] via 192.168.6.1, 23:13:41, GigabitEthernet0/1

[iyselee07]

解答

NATの設定において、PATの設定の欠如と、PAT元access-listの不必要な登録が認められた。 これの解決に当たって、access-listの不必要な登録の削除し、以下のコマンドを入力する事で、 PATの設定を満足した。

ip nat inside source list 10 pool nat overload
access-list 10 permit 192.168.6.0 0.0.0.0.255