[Script Info]
Title: 
[Events]
Format: Layer, Start, End, Style, Name, MarginL, MarginR, MarginV, Effect, Text
Dialogue: 0,0:00:01.04,0:00:03.20,Default,,0000,0000,0000,,hello guys welcome back my name is david
Dialogue: 0,0:00:03.20,0:00:04.80,Default,,0000,0000,0000,,and today we are going to troubleshoot
Dialogue: 0,0:00:04.80,0:00:07.84,Default,,0000,0000,0000,,simple cisco network so what i mean is i
Dialogue: 0,0:00:07.84,0:00:10.48,Default,,0000,0000,0000,,have one com one computer and one router
Dialogue: 0,0:00:10.48,0:00:12.56,Default,,0000,0000,0000,,this router was configured to pass the
Dialogue: 0,0:00:12.56,0:00:14.88,Default,,0000,0000,0000,,traffic to translate this traffic into a
Dialogue: 0,0:00:14.88,0:00:17.76,Default,,0000,0000,0000,,public ip so the computer can surf the
Dialogue: 0,0:00:17.76,0:00:19.76,Default,,0000,0000,0000,,internet now what i did i broke the
Dialogue: 0,0:00:19.76,0:00:21.84,Default,,0000,0000,0000,,configuration in several places and we
Dialogue: 0,0:00:21.84,0:00:24.48,Default,,0000,0000,0000,,are going to start from beginning to the
Dialogue: 0,0:00:24.48,0:00:26.80,Default,,0000,0000,0000,,end we'll find all the problems and try
Dialogue: 0,0:00:26.80,0:00:31.24,Default,,0000,0000,0000,,to fix that stay with me
Dialogue: 0,0:00:32.40,0:00:35.52,Default,,0000,0000,0000,,okay let's start this is my computer
Dialogue: 0,0:00:35.52,0:00:37.12,Default,,0000,0000,0000,,this comes supposed to have the ip
Dialogue: 0,0:00:37.12,0:00:39.84,Default,,0000,0000,0000,,address and dns iprs right and the
Dialogue: 0,0:00:39.84,0:00:41.76,Default,,0000,0000,0000,,gateway of course then traffic comes
Dialogue: 0,0:00:41.76,0:00:44.08,Default,,0000,0000,0000,,here on the cisco router and then from
Dialogue: 0,0:00:44.08,0:00:46.08,Default,,0000,0000,0000,,the router it goes to the internet
Dialogue: 0,0:00:46.08,0:00:47.52,Default,,0000,0000,0000,,but here
Dialogue: 0,0:00:47.52,0:00:49.60,Default,,0000,0000,0000,,we need to do net right network address
Dialogue: 0,0:00:49.60,0:00:52.96,Default,,0000,0000,0000,,translations so let's start and find all
Dialogue: 0,0:00:52.96,0:00:54.56,Default,,0000,0000,0000,,the problems i caused in the
Dialogue: 0,0:00:54.56,0:00:56.16,Default,,0000,0000,0000,,configuration
Dialogue: 0,0:00:56.16,0:00:58.72,Default,,0000,0000,0000,,so in order for the traffic to leave the
Dialogue: 0,0:00:58.72,0:01:00.72,Default,,0000,0000,0000,,computer computer is supposed to have
Dialogue: 0,0:01:00.72,0:01:02.64,Default,,0000,0000,0000,,the ipad so let's make sure the computer
Dialogue: 0,0:01:02.64,0:01:05.60,Default,,0000,0000,0000,,has the ip address
Dialogue: 0,0:01:06.40,0:01:08.96,Default,,0000,0000,0000,,and when we say let's make sure computer
Dialogue: 0,0:01:08.96,0:01:11.52,Default,,0000,0000,0000,,has the ip address
Dialogue: 0,0:01:11.52,0:01:14.80,Default,,0000,0000,0000,,let's test the actual status of the ip
Dialogue: 0,0:01:14.80,0:01:16.80,Default,,0000,0000,0000,,address not the configuration and what i
Dialogue: 0,0:01:16.80,0:01:18.56,Default,,0000,0000,0000,,mean by that is
Dialogue: 0,0:01:18.56,0:01:20.96,Default,,0000,0000,0000,,you can go into a configuration and make
Dialogue: 0,0:01:20.96,0:01:22.80,Default,,0000,0000,0000,,sure the configuration is there by
Dialogue: 0,0:01:22.80,0:01:24.40,Default,,0000,0000,0000,,clicking this button
Dialogue: 0,0:01:24.40,0:01:26.72,Default,,0000,0000,0000,,but that's not the way i want you to
Dialogue: 0,0:01:26.72,0:01:28.56,Default,,0000,0000,0000,,test it i want to test it
Dialogue: 0,0:01:28.56,0:01:30.64,Default,,0000,0000,0000,,the actual status of the configuration
Dialogue: 0,0:01:30.64,0:01:32.80,Default,,0000,0000,0000,,that means you can either click here
Dialogue: 0,0:01:32.80,0:01:33.84,Default,,0000,0000,0000,,details
Dialogue: 0,0:01:33.84,0:01:36.08,Default,,0000,0000,0000,,or in the cli
Dialogue: 0,0:01:36.08,0:01:37.76,Default,,0000,0000,0000,,now what's the difference you must say
Dialogue: 0,0:01:37.76,0:01:39.76,Default,,0000,0000,0000,,the difference is that sometimes when
Dialogue: 0,0:01:39.76,0:01:41.68,Default,,0000,0000,0000,,you configure the ip address windows is
Dialogue: 0,0:01:41.68,0:01:43.60,Default,,0000,0000,0000,,not taking this ip address for some
Dialogue: 0,0:01:43.60,0:01:44.80,Default,,0000,0000,0000,,reason
Dialogue: 0,0:01:44.80,0:01:47.04,Default,,0000,0000,0000,,there can be many many reasons but the
Dialogue: 0,0:01:47.04,0:01:49.60,Default,,0000,0000,0000,,configuration doesn't always work so
Dialogue: 0,0:01:49.60,0:01:51.12,Default,,0000,0000,0000,,when you check the configuration on the
Dialogue: 0,0:01:51.12,0:01:53.12,Default,,0000,0000,0000,,ip address it's not necessary the
Dialogue: 0,0:01:53.12,0:01:55.12,Default,,0000,0000,0000,,computer is using that ipr so what we
Dialogue: 0,0:01:55.12,0:01:56.96,Default,,0000,0000,0000,,want to do we want to check the actual
Dialogue: 0,0:01:56.96,0:01:59.92,Default,,0000,0000,0000,,status of this configuration okay so
Dialogue: 0,0:01:59.92,0:02:02.08,Default,,0000,0000,0000,,let's see what we have we have the ip
Dialogue: 0,0:02:02.08,0:02:04.16,Default,,0000,0000,0000,,address here as you can see
Dialogue: 0,0:02:04.16,0:02:06.16,Default,,0000,0000,0000,,and we have the gateway so we know the
Dialogue: 0,0:02:06.16,0:02:08.40,Default,,0000,0000,0000,,ip address is there and probably the
Dialogue: 0,0:02:08.40,0:02:10.56,Default,,0000,0000,0000,,ipaddress works we can ping the ip
Dialogue: 0,0:02:10.56,0:02:12.08,Default,,0000,0000,0000,,address itself
Dialogue: 0,0:02:12.08,0:02:14.32,Default,,0000,0000,0000,,and
Dialogue: 0,0:02:14.32,0:02:17.20,Default,,0000,0000,0000,,yes well ipstac tcp stack works on the
Dialogue: 0,0:02:17.20,0:02:19.28,Default,,0000,0000,0000,,computer that's good so now let's test
Dialogue: 0,0:02:19.28,0:02:21.28,Default,,0000,0000,0000,,the gateway make sure the gateway works
Dialogue: 0,0:02:21.28,0:02:22.88,Default,,0000,0000,0000,,here's the gateway
Dialogue: 0,0:02:22.88,0:02:25.20,Default,,0000,0000,0000,,and we want to ping that gateway to make
Dialogue: 0,0:02:25.20,0:02:28.40,Default,,0000,0000,0000,,sure the gateway is on the network
Dialogue: 0,0:02:28.40,0:02:30.48,Default,,0000,0000,0000,,now you might already see that gateway
Dialogue: 0,0:02:30.48,0:02:32.72,Default,,0000,0000,0000,,is that one on the topology so the
Dialogue: 0,0:02:32.72,0:02:34.48,Default,,0000,0000,0000,,gateway is wrong but let's try and ping
Dialogue: 0,0:02:34.48,0:02:35.44,Default,,0000,0000,0000,,it
Dialogue: 0,0:02:35.44,0:02:39.52,Default,,0000,0000,0000,,ping 192 168.1.254
Dialogue: 0,0:02:39.52,0:02:42.00,Default,,0000,0000,0000,,and the gateway is not pingable and how
Dialogue: 0,0:02:42.00,0:02:43.84,Default,,0000,0000,0000,,do let's say we don't know the if the
Dialogue: 0,0:02:43.84,0:02:45.68,Default,,0000,0000,0000,,gateway is correct or not
Dialogue: 0,0:02:45.68,0:02:47.84,Default,,0000,0000,0000,,or we know the gateway is correct but we
Dialogue: 0,0:02:47.84,0:02:50.56,Default,,0000,0000,0000,,are not sure why we don't ping it ping
Dialogue: 0,0:02:50.56,0:02:53.20,Default,,0000,0000,0000,,could could be closed nobody close icmp
Dialogue: 0,0:02:53.20,0:02:55.28,Default,,0000,0000,0000,,on the gateway but let's say it's closed
Dialogue: 0,0:02:55.28,0:02:57.52,Default,,0000,0000,0000,,you want to make sure the gateway is on
Dialogue: 0,0:02:57.52,0:02:59.28,Default,,0000,0000,0000,,the network and for that we can check
Dialogue: 0,0:02:59.28,0:03:01.68,Default,,0000,0000,0000,,the r and let's go ahead on the windows
Dialogue: 0,0:03:01.68,0:03:03.52,Default,,0000,0000,0000,,machine type r
Dialogue: 0,0:03:03.52,0:03:05.04,Default,,0000,0000,0000,,iphone a
Dialogue: 0,0:03:05.04,0:03:06.80,Default,,0000,0000,0000,,and this will show you arp cache and you
Dialogue: 0,0:03:06.80,0:03:08.64,Default,,0000,0000,0000,,know the ip address mapped to the macro
Dialogue: 0,0:03:08.64,0:03:11.60,Default,,0000,0000,0000,,so let's see if we have 254 here in the
Dialogue: 0,0:03:11.60,0:03:14.08,Default,,0000,0000,0000,,arc cache and we don't have it
Dialogue: 0,0:03:14.08,0:03:16.64,Default,,0000,0000,0000,,but we have that one
Dialogue: 0,0:03:16.64,0:03:20.72,Default,,0000,0000,0000,,and let's try and think it dot one
Dialogue: 0,0:03:21.68,0:03:24.96,Default,,0000,0000,0000,,it's not pingable that's weird but well
Dialogue: 0,0:03:24.96,0:03:26.80,Default,,0000,0000,0000,,at least we know it's that one but let's
Dialogue: 0,0:03:26.80,0:03:29.60,Default,,0000,0000,0000,,go ahead and change that one
Dialogue: 0,0:03:29.60,0:03:31.68,Default,,0000,0000,0000,,you know what we have the cisco router
Dialogue: 0,0:03:31.68,0:03:34.56,Default,,0000,0000,0000,,and we have the interface g3 w3 and
Dialogue: 0,0:03:34.56,0:03:36.16,Default,,0000,0000,0000,,let's see what's the ipad address on the
Dialogue: 0,0:03:36.16,0:03:37.20,Default,,0000,0000,0000,,interface
Dialogue: 0,0:03:37.20,0:03:38.32,Default,,0000,0000,0000,,show
Dialogue: 0,0:03:38.32,0:03:42.24,Default,,0000,0000,0000,,run not sure our show interface
Dialogue: 0,0:03:42.80,0:03:45.12,Default,,0000,0000,0000,,address
Dialogue: 0,0:03:45.12,0:03:47.84,Default,,0000,0000,0000,,and as you can see this is the ip
Dialogue: 0,0:03:47.84,0:03:49.04,Default,,0000,0000,0000,,address
Dialogue: 0,0:03:49.04,0:03:52.24,Default,,0000,0000,0000,,of the cisco router so yes the computer
Dialogue: 0,0:03:52.24,0:03:54.00,Default,,0000,0000,0000,,is supposed to have that one as a
Dialogue: 0,0:03:54.00,0:03:56.64,Default,,0000,0000,0000,,gateway not 254
Dialogue: 0,0:03:56.64,0:03:58.64,Default,,0000,0000,0000,,so let's go ahead and fix that on the
Dialogue: 0,0:03:58.64,0:04:03.12,Default,,0000,0000,0000,,computer we are just one step
Dialogue: 0,0:04:03.52,0:04:06.24,Default,,0000,0000,0000,,closer to the fixing the problem
Dialogue: 0,0:04:06.24,0:04:08.48,Default,,0000,0000,0000,,and let's do one
Dialogue: 0,0:04:08.48,0:04:10.32,Default,,0000,0000,0000,,now
Dialogue: 0,0:04:10.32,0:04:13.44,Default,,0000,0000,0000,,remember that one wasn't pingable from
Dialogue: 0,0:04:13.44,0:04:15.04,Default,,0000,0000,0000,,the computer
Dialogue: 0,0:04:15.04,0:04:17.04,Default,,0000,0000,0000,,and we want to find out why we cannot
Dialogue: 0,0:04:17.04,0:04:19.60,Default,,0000,0000,0000,,ping it should we pingable should it not
Dialogue: 0,0:04:19.60,0:04:22.00,Default,,0000,0000,0000,,and let's go ahead and check if there is
Dialogue: 0,0:04:22.00,0:04:25.28,Default,,0000,0000,0000,,any access list on the cisco router
Dialogue: 0,0:04:25.28,0:04:29.84,Default,,0000,0000,0000,,on the inside interface show run
Dialogue: 0,0:04:30.48,0:04:34.96,Default,,0000,0000,0000,,inside interface gear v3 and pipe in for
Dialogue: 0,0:04:34.96,0:04:37.36,Default,,0000,0000,0000,,the inboard and sure there is an access
Dialogue: 0,0:04:37.36,0:04:42.04,Default,,0000,0000,0000,,list and let's check what's inside
Dialogue: 0,0:04:42.08,0:04:46.44,Default,,0000,0000,0000,,okay we have permit ip192.168.3
Dialogue: 0,0:04:47.04,0:04:48.00,Default,,0000,0000,0000,,okay
Dialogue: 0,0:04:48.00,0:04:50.08,Default,,0000,0000,0000,,and slash24
Dialogue: 0,0:04:50.08,0:04:53.52,Default,,0000,0000,0000,,so the access list is not permitting our
Dialogue: 0,0:04:53.52,0:04:55.44,Default,,0000,0000,0000,,traffic coming from the computer because
Dialogue: 0,0:04:55.44,0:04:58.16,Default,,0000,0000,0000,,remember our ip address our subnet on
Dialogue: 0,0:04:58.16,0:04:59.60,Default,,0000,0000,0000,,the computer is
Dialogue: 0,0:04:59.60,0:05:02.60,Default,,0000,0000,0000,,192.168.1
Dialogue: 0,0:05:02.64,0:05:05.76,Default,,0000,0000,0000,,not three but one on the third octa and
Dialogue: 0,0:05:05.76,0:05:07.84,Default,,0000,0000,0000,,access list on the cisco hour is not
Dialogue: 0,0:05:07.84,0:05:09.52,Default,,0000,0000,0000,,having this dot
Dialogue: 0,0:05:09.52,0:05:13.68,Default,,0000,0000,0000,,one so let's go ahead and fix that
Dialogue: 0,0:05:14.16,0:05:16.64,Default,,0000,0000,0000,,we need to go into access list
Dialogue: 0,0:05:16.64,0:05:18.00,Default,,0000,0000,0000,,extend it
Dialogue: 0,0:05:18.00,0:05:21.12,Default,,0000,0000,0000,,inside by inbound and you know we know
Dialogue: 0,0:05:21.12,0:05:23.20,Default,,0000,0000,0000,,for sure that they're not there's not
Dialogue: 0,0:05:23.20,0:05:25.20,Default,,0000,0000,0000,,supposed to be the three
Dialogue: 0,0:05:25.20,0:05:27.68,Default,,0000,0000,0000,,network on this lan right so it's okay
Dialogue: 0,0:05:27.68,0:05:31.68,Default,,0000,0000,0000,,to remove this ip address and fix that
Dialogue: 0,0:05:31.84,0:05:36.76,Default,,0000,0000,0000,,node 20 and then permit ip192.168.1.0
Dialogue: 0,0:05:38.56,0:05:41.04,Default,,0000,0000,0000,,and
Dialogue: 0,0:05:41.68,0:05:43.68,Default,,0000,0000,0000,,any okay
Dialogue: 0,0:05:43.68,0:05:45.60,Default,,0000,0000,0000,,now it looks great
Dialogue: 0,0:05:45.60,0:05:49.80,Default,,0000,0000,0000,,let's see if we can ping the router
Dialogue: 0,0:05:55.60,0:05:57.76,Default,,0000,0000,0000,,okay we can ping the router
Dialogue: 0,0:05:57.76,0:05:59.44,Default,,0000,0000,0000,,great now let's check do we have the
Dialogue: 0,0:05:59.44,0:06:01.92,Default,,0000,0000,0000,,internet
Dialogue: 0,0:06:03.36,0:06:07.04,Default,,0000,0000,0000,,and no we don't okay
Dialogue: 0,0:06:07.04,0:06:08.32,Default,,0000,0000,0000,,let's see
Dialogue: 0,0:06:08.32,0:06:10.80,Default,,0000,0000,0000,,what else we are missing here do we have
Dialogue: 0,0:06:10.80,0:06:13.36,Default,,0000,0000,0000,,the route
Dialogue: 0,0:06:13.36,0:06:16.24,Default,,0000,0000,0000,,now actually let's make sure the cisco
Dialogue: 0,0:06:16.24,0:06:18.64,Default,,0000,0000,0000,,hour has the internet ping
Dialogue: 0,0:06:18.64,0:06:21.12,Default,,0000,0000,0000,,made updated
Dialogue: 0,0:06:21.12,0:06:23.84,Default,,0000,0000,0000,,doesn't have the internet let's fix that
Dialogue: 0,0:06:23.84,0:06:25.92,Default,,0000,0000,0000,,so what do you need on the router to
Dialogue: 0,0:06:25.92,0:06:27.68,Default,,0000,0000,0000,,have the internet you need the ip
Dialogue: 0,0:06:27.68,0:06:29.44,Default,,0000,0000,0000,,address you need the next hope which is
Dialogue: 0,0:06:29.44,0:06:31.60,Default,,0000,0000,0000,,that one and you need connection between
Dialogue: 0,0:06:31.60,0:06:33.52,Default,,0000,0000,0000,,isp and the router
Dialogue: 0,0:06:33.52,0:06:35.76,Default,,0000,0000,0000,,let's check what is the interface on the
Dialogue: 0,0:06:35.76,0:06:37.60,Default,,0000,0000,0000,,gear with one
Dialogue: 0,0:06:37.60,0:06:41.04,Default,,0000,0000,0000,,and what is the ip address here
Dialogue: 0,0:06:46.08,0:06:47.04,Default,,0000,0000,0000,,okay
Dialogue: 0,0:06:47.04,0:06:49.12,Default,,0000,0000,0000,,that's great now what's the gateway show
Dialogue: 0,0:06:49.12,0:06:51.20,Default,,0000,0000,0000,,ip route
Dialogue: 0,0:06:51.20,0:06:53.84,Default,,0000,0000,0000,,and our gateway is that three but
Dialogue: 0,0:06:53.84,0:06:54.96,Default,,0000,0000,0000,,remember
Dialogue: 0,0:06:54.96,0:06:57.36,Default,,0000,0000,0000,,our isp has that one not that three so
Dialogue: 0,0:06:57.36,0:06:59.84,Default,,0000,0000,0000,,let's go ahead and fix that too
Dialogue: 0,0:06:59.84,0:07:02.48,Default,,0000,0000,0000,,here's my route which i need to remove
Dialogue: 0,0:07:02.48,0:07:05.44,Default,,0000,0000,0000,,and add the new one
Dialogue: 0,0:07:05.44,0:07:07.68,Default,,0000,0000,0000,,now remember if you just add the route
Dialogue: 0,0:07:07.68,0:07:09.60,Default,,0000,0000,0000,,you'll have two routes it's not gonna
Dialogue: 0,0:07:09.60,0:07:11.20,Default,,0000,0000,0000,,replace even though it has the same
Dialogue: 0,0:07:11.20,0:07:13.60,Default,,0000,0000,0000,,destination it's not going to replace so
Dialogue: 0,0:07:13.60,0:07:16.24,Default,,0000,0000,0000,,you want to remove the old route and add
Dialogue: 0,0:07:16.24,0:07:18.88,Default,,0000,0000,0000,,the new one
Dialogue: 0,0:07:20.32,0:07:23.20,Default,,0000,0000,0000,,okay now we have the route and the
Dialogue: 0,0:07:23.20,0:07:25.28,Default,,0000,0000,0000,,routing table proper now let's see if we
Dialogue: 0,0:07:25.28,0:07:27.04,Default,,0000,0000,0000,,can ping the google
Dialogue: 0,0:07:27.04,0:07:28.32,Default,,0000,0000,0000,,ping
Dialogue: 0,0:07:28.32,0:07:30.00,Default,,0000,0000,0000,,from the cisco hour
Dialogue: 0,0:07:30.00,0:07:31.04,Default,,0000,0000,0000,,okay
Dialogue: 0,0:07:31.04,0:07:33.04,Default,,0000,0000,0000,,cisco router has the internet now let's
Dialogue: 0,0:07:33.04,0:07:35.04,Default,,0000,0000,0000,,come back on the computer and just see
Dialogue: 0,0:07:35.04,0:07:38.48,Default,,0000,0000,0000,,if computers also has the internet
Dialogue: 0,0:07:38.48,0:07:40.00,Default,,0000,0000,0000,,well no computer doesn't have the
Dialogue: 0,0:07:40.00,0:07:42.32,Default,,0000,0000,0000,,internet okay
Dialogue: 0,0:07:42.32,0:07:45.28,Default,,0000,0000,0000,,let's think what do we need to do what
Dialogue: 0,0:07:45.28,0:07:47.68,Default,,0000,0000,0000,,do we need to have on the cisco router
Dialogue: 0,0:07:47.68,0:07:50.24,Default,,0000,0000,0000,,to allow the internet to access uh from
Dialogue: 0,0:07:50.24,0:07:52.16,Default,,0000,0000,0000,,the computer
Dialogue: 0,0:07:52.16,0:07:53.84,Default,,0000,0000,0000,,so the computer can serve the internet
Dialogue: 0,0:07:53.84,0:07:56.72,Default,,0000,0000,0000,,sites websites okay so first
Dialogue: 0,0:07:56.72,0:07:58.96,Default,,0000,0000,0000,,the computer has the private ipads you
Dialogue: 0,0:07:58.96,0:08:01.76,Default,,0000,0000,0000,,see and the cisco router external
Dialogue: 0,0:08:01.76,0:08:04.56,Default,,0000,0000,0000,,interface is the public ip address so we
Dialogue: 0,0:08:04.56,0:08:07.36,Default,,0000,0000,0000,,want to translate our private ips subnet
Dialogue: 0,0:08:07.36,0:08:10.40,Default,,0000,0000,0000,,into a public iprs of the router and for
Dialogue: 0,0:08:10.40,0:08:12.72,Default,,0000,0000,0000,,that we need to do the net
Dialogue: 0,0:08:12.72,0:08:14.88,Default,,0000,0000,0000,,and let's make sure we have the nut
Dialogue: 0,0:08:14.88,0:08:17.60,Default,,0000,0000,0000,,translations on the cisco router so
Dialogue: 0,0:08:17.60,0:08:20.00,Default,,0000,0000,0000,,let's go ahead and try ping
Dialogue: 0,0:08:20.00,0:08:22.80,Default,,0000,0000,0000,,actually that's not
Dialogue: 0,0:08:22.80,0:08:26.16,Default,,0000,0000,0000,,let's ping and come back here and see
Dialogue: 0,0:08:26.16,0:08:30.24,Default,,0000,0000,0000,,if we have no translations
Dialogue: 0,0:08:32.72,0:08:36.96,Default,,0000,0000,0000,,and we have some not translations
Dialogue: 0,0:08:38.96,0:08:41.84,Default,,0000,0000,0000,,which is not our google ip addresses so
Dialogue: 0,0:08:41.84,0:08:43.20,Default,,0000,0000,0000,,let's clear up
Dialogue: 0,0:08:43.20,0:08:45.84,Default,,0000,0000,0000,,our ip not translations
Dialogue: 0,0:08:45.84,0:08:47.84,Default,,0000,0000,0000,,dynamic i believe here
Dialogue: 0,0:08:47.84,0:08:50.72,Default,,0000,0000,0000,,no just just everything
Dialogue: 0,0:08:50.72,0:08:53.60,Default,,0000,0000,0000,,okay show ipmap translations
Dialogue: 0,0:08:53.60,0:08:55.60,Default,,0000,0000,0000,,we don't have new translations that
Dialogue: 0,0:08:55.60,0:08:58.08,Default,,0000,0000,0000,,means cisco router is not translating
Dialogue: 0,0:08:58.08,0:09:00.88,Default,,0000,0000,0000,,our traffic from private subnet into
Dialogue: 0,0:09:00.88,0:09:02.16,Default,,0000,0000,0000,,public ip
Dialogue: 0,0:09:02.16,0:09:04.32,Default,,0000,0000,0000,,and let's troubleshoot that we need to
Dialogue: 0,0:09:04.32,0:09:06.48,Default,,0000,0000,0000,,have the configuration for that right so
Dialogue: 0,0:09:06.48,0:09:08.24,Default,,0000,0000,0000,,let's let's go ahead and do this show
Dialogue: 0,0:09:08.24,0:09:10.96,Default,,0000,0000,0000,,run defensive gear three and does it
Dialogue: 0,0:09:10.96,0:09:14.08,Default,,0000,0000,0000,,have the net configuration on the gearb3
Dialogue: 0,0:09:14.08,0:09:17.20,Default,,0000,0000,0000,,it does and it has not ip not inside
Dialogue: 0,0:09:17.20,0:09:18.72,Default,,0000,0000,0000,,that's great now
Dialogue: 0,0:09:18.72,0:09:20.72,Default,,0000,0000,0000,,inside interface is supposed to have ip
Dialogue: 0,0:09:20.72,0:09:23.52,Default,,0000,0000,0000,,not inside the outside default though
Dialogue: 0,0:09:23.52,0:09:26.00,Default,,0000,0000,0000,,supposed to have ip nut outside let's
Dialogue: 0,0:09:26.00,0:09:28.48,Default,,0000,0000,0000,,check that
Dialogue: 0,0:09:31.28,0:09:33.36,Default,,0000,0000,0000,,oh outside the face doesn't have ip not
Dialogue: 0,0:09:33.36,0:09:35.84,Default,,0000,0000,0000,,outside at all so let's go ahead and
Dialogue: 0,0:09:35.84,0:09:37.28,Default,,0000,0000,0000,,configure that
Dialogue: 0,0:09:37.28,0:09:39.36,Default,,0000,0000,0000,,ipnot outside
Dialogue: 0,0:09:39.36,0:09:40.96,Default,,0000,0000,0000,,and now
Dialogue: 0,0:09:40.96,0:09:44.56,Default,,0000,0000,0000,,we fixed not well at least partially on
Dialogue: 0,0:09:44.56,0:09:46.88,Default,,0000,0000,0000,,the cisco router now we know that the
Dialogue: 0,0:09:46.88,0:09:48.64,Default,,0000,0000,0000,,inside the face and outside the face
Dialogue: 0,0:09:48.64,0:09:51.44,Default,,0000,0000,0000,,they both have not configuration on them
Dialogue: 0,0:09:51.44,0:09:53.20,Default,,0000,0000,0000,,let's go ahead and check ipnot
Dialogue: 0,0:09:53.20,0:09:56.16,Default,,0000,0000,0000,,translation again
Dialogue: 0,0:09:56.56,0:09:59.52,Default,,0000,0000,0000,,all right we have some traffic here
Dialogue: 0,0:09:59.52,0:10:02.88,Default,,0000,0000,0000,,this is our ip address
Dialogue: 0,0:10:02.88,0:10:04.56,Default,,0000,0000,0000,,right right
Dialogue: 0,0:10:04.56,0:10:05.44,Default,,0000,0000,0000,,and
Dialogue: 0,0:10:05.44,0:10:07.68,Default,,0000,0000,0000,,this is what we are trying to ping
Dialogue: 0,0:10:07.68,0:10:09.60,Default,,0000,0000,0000,,and this is the icmp protocol and this
Dialogue: 0,0:10:09.60,0:10:13.04,Default,,0000,0000,0000,,is the ip address we are translated into
Dialogue: 0,0:10:13.04,0:10:15.36,Default,,0000,0000,0000,,so if we check this ip address on
Dialogue: 0,0:10:15.36,0:10:18.56,Default,,0000,0000,0000,,interface that's our ip address we know
Dialogue: 0,0:10:18.56,0:10:21.68,Default,,0000,0000,0000,,that cisco router translates the packet
Dialogue: 0,0:10:21.68,0:10:23.44,Default,,0000,0000,0000,,into public ip
Dialogue: 0,0:10:23.44,0:10:25.92,Default,,0000,0000,0000,,now what we need to do is we know
Dialogue: 0,0:10:25.92,0:10:28.08,Default,,0000,0000,0000,,traffic comes here on the router is
Dialogue: 0,0:10:28.08,0:10:30.00,Default,,0000,0000,0000,,translated and we need to make sure
Dialogue: 0,0:10:30.00,0:10:32.40,Default,,0000,0000,0000,,traffic can leave the interface now how
Dialogue: 0,0:10:32.40,0:10:33.76,Default,,0000,0000,0000,,do we check that
Dialogue: 0,0:10:33.76,0:10:34.64,Default,,0000,0000,0000,,well
Dialogue: 0,0:10:34.64,0:10:36.56,Default,,0000,0000,0000,,usually if you have the route and there
Dialogue: 0,0:10:36.56,0:10:38.40,Default,,0000,0000,0000,,is no restriction on the interface
Dialogue: 0,0:10:38.40,0:10:41.12,Default,,0000,0000,0000,,traffic leaves the interface so let's go
Dialogue: 0,0:10:41.12,0:10:43.68,Default,,0000,0000,0000,,ahead and check that do we have any
Dialogue: 0,0:10:43.68,0:10:45.36,Default,,0000,0000,0000,,access list
Dialogue: 0,0:10:45.36,0:10:46.56,Default,,0000,0000,0000,,we don't
Dialogue: 0,0:10:46.56,0:10:49.04,Default,,0000,0000,0000,,but do we want to put the access list to
Dialogue: 0,0:10:49.04,0:10:50.72,Default,,0000,0000,0000,,make sure traffic leaves the interface
Dialogue: 0,0:10:50.72,0:10:53.12,Default,,0000,0000,0000,,you know you can use probably packet
Dialogue: 0,0:10:53.12,0:10:54.96,Default,,0000,0000,0000,,capture if you know how to do that but
Dialogue: 0,0:10:54.96,0:10:57.76,Default,,0000,0000,0000,,if not what you can do is do a quick
Dialogue: 0,0:10:57.76,0:10:59.92,Default,,0000,0000,0000,,configuration show ip access list
Dialogue: 0,0:10:59.92,0:11:01.60,Default,,0000,0000,0000,,extended for example
Dialogue: 0,0:11:01.60,0:11:04.32,Default,,0000,0000,0000,,and match our traffic in our case
Dialogue: 0,0:11:04.32,0:11:07.84,Default,,0000,0000,0000,,let's say outside
Dialogue: 0,0:11:07.84,0:11:11.36,Default,,0000,0000,0000,,isp is going to be no i thought
Dialogue: 0,0:11:11.36,0:11:14.36,Default,,0000,0000,0000,,outside
Dialogue: 0,0:11:15.12,0:11:17.12,Default,,0000,0000,0000,,that's the access list name and permit
Dialogue: 0,0:11:17.12,0:11:20.08,Default,,0000,0000,0000,,our traffic what is our traffic ip host
Dialogue: 0,0:11:20.08,0:11:23.68,Default,,0000,0000,0000,,192 168.1.10
Dialogue: 0,0:11:23.68,0:11:24.96,Default,,0000,0000,0000,,into
Dialogue: 0,0:11:24.96,0:11:27.12,Default,,0000,0000,0000,,google dns
Dialogue: 0,0:11:27.12,0:11:30.56,Default,,0000,0000,0000,,and we want it to be icmp but ip will
Dialogue: 0,0:11:30.56,0:11:34.08,Default,,0000,0000,0000,,work for as well but let's do icmp only
Dialogue: 0,0:11:34.08,0:11:35.36,Default,,0000,0000,0000,,and
Dialogue: 0,0:11:35.36,0:11:36.16,Default,,0000,0000,0000,,now
Dialogue: 0,0:11:36.16,0:11:38.16,Default,,0000,0000,0000,,we want to assign this access list on
Dialogue: 0,0:11:38.16,0:11:40.88,Default,,0000,0000,0000,,the public interface but remember
Dialogue: 0,0:11:40.88,0:11:42.40,Default,,0000,0000,0000,,right now the interface doesn't have the
Dialogue: 0,0:11:42.40,0:11:44.16,Default,,0000,0000,0000,,access which means once you assign this
Dialogue: 0,0:11:44.16,0:11:46.40,Default,,0000,0000,0000,,access list you'll permit only the
Dialogue: 0,0:11:46.40,0:11:48.32,Default,,0000,0000,0000,,things you have in the access list and
Dialogue: 0,0:11:48.32,0:11:51.04,Default,,0000,0000,0000,,in our case that's only icmp packet
Dialogue: 0,0:11:51.04,0:11:52.48,Default,,0000,0000,0000,,coming from our computer going to the
Dialogue: 0,0:11:52.48,0:11:55.12,Default,,0000,0000,0000,,google but for the rest of the users
Dialogue: 0,0:11:55.12,0:11:57.28,Default,,0000,0000,0000,,we're gonna break the internet well if
Dialogue: 0,0:11:57.28,0:11:59.84,Default,,0000,0000,0000,,they have already so what we want to do
Dialogue: 0,0:11:59.84,0:12:02.48,Default,,0000,0000,0000,,is to add permit any any at the end of
Dialogue: 0,0:12:02.48,0:12:05.28,Default,,0000,0000,0000,,the access list
Dialogue: 0,0:12:05.68,0:12:07.84,Default,,0000,0000,0000,,which means if we assign this access
Dialogue: 0,0:12:07.84,0:12:10.40,Default,,0000,0000,0000,,list on the outbound interface
Dialogue: 0,0:12:10.40,0:12:12.64,Default,,0000,0000,0000,,for the outbound traffic
Dialogue: 0,0:12:12.64,0:12:14.96,Default,,0000,0000,0000,,we'll get the match here
Dialogue: 0,0:12:14.96,0:12:17.04,Default,,0000,0000,0000,,and hit count will increase if the
Dialogue: 0,0:12:17.04,0:12:19.52,Default,,0000,0000,0000,,packet leaves the router and for the
Dialogue: 0,0:12:19.52,0:12:21.28,Default,,0000,0000,0000,,rest of the traffic to not block them
Dialogue: 0,0:12:21.28,0:12:23.44,Default,,0000,0000,0000,,here's the permit ip and then so let's
Dialogue: 0,0:12:23.44,0:12:26.48,Default,,0000,0000,0000,,go ahead and do in gigabit estimate
Dialogue: 0,0:12:26.48,0:12:27.52,Default,,0000,0000,0000,,one
Dialogue: 0,0:12:27.52,0:12:29.44,Default,,0000,0000,0000,,ip access group
Dialogue: 0,0:12:29.44,0:12:32.24,Default,,0000,0000,0000,,outside outbound and
Dialogue: 0,0:12:32.24,0:12:35.68,Default,,0000,0000,0000,,outbound packets so we want to do out
Dialogue: 0,0:12:35.68,0:12:36.64,Default,,0000,0000,0000,,and
Dialogue: 0,0:12:36.64,0:12:39.36,Default,,0000,0000,0000,,now now you see there is a match
Dialogue: 0,0:12:39.36,0:12:41.36,Default,,0000,0000,0000,,on ipm en
Dialogue: 0,0:12:41.36,0:12:43.60,Default,,0000,0000,0000,,probably some kind of you know uh
Dialogue: 0,0:12:43.60,0:12:44.88,Default,,0000,0000,0000,,different traffic coming from the
Dialogue: 0,0:12:44.88,0:12:46.40,Default,,0000,0000,0000,,computer checking the updates or
Dialogue: 0,0:12:46.40,0:12:47.92,Default,,0000,0000,0000,,something like that but our traffic
Dialogue: 0,0:12:47.92,0:12:49.76,Default,,0000,0000,0000,,doesn't have the match let's generate
Dialogue: 0,0:12:49.76,0:12:52.64,Default,,0000,0000,0000,,the traffic on the computer
Dialogue: 0,0:12:52.64,0:12:54.64,Default,,0000,0000,0000,,this is our traffic
Dialogue: 0,0:12:54.64,0:12:56.96,Default,,0000,0000,0000,,one
Dialogue: 0,0:12:57.12,0:12:59.44,Default,,0000,0000,0000,,two
Dialogue: 0,0:13:00.88,0:13:01.92,Default,,0000,0000,0000,,okay
Dialogue: 0,0:13:01.92,0:13:04.24,Default,,0000,0000,0000,,and now let's check if we have the match
Dialogue: 0,0:13:04.24,0:13:07.68,Default,,0000,0000,0000,,on the access list
Dialogue: 0,0:13:07.68,0:13:10.32,Default,,0000,0000,0000,,we don't
Dialogue: 0,0:13:10.80,0:13:12.56,Default,,0000,0000,0000,,but that's weird
Dialogue: 0,0:13:12.56,0:13:15.52,Default,,0000,0000,0000,,isn't our ap address
Dialogue: 0,0:13:15.52,0:13:19.28,Default,,0000,0000,0000,,oh oh i'm sorry guys
Dialogue: 0,0:13:19.28,0:13:22.40,Default,,0000,0000,0000,,this ridiculous remember we translated
Dialogue: 0,0:13:22.40,0:13:25.20,Default,,0000,0000,0000,,traffic into public ip so there's no way
Dialogue: 0,0:13:25.20,0:13:28.48,Default,,0000,0000,0000,,to match the 192.168.1.10
Dialogue: 0,0:13:28.48,0:13:30.48,Default,,0000,0000,0000,,on the aggress interface so if we want
Dialogue: 0,0:13:30.48,0:13:32.64,Default,,0000,0000,0000,,to do something else
Dialogue: 0,0:13:32.64,0:13:37.44,Default,,0000,0000,0000,,let's go ahead and you know fix that
Dialogue: 0,0:13:38.88,0:13:40.40,Default,,0000,0000,0000,,we want to remove
Dialogue: 0,0:13:40.40,0:13:44.64,Default,,0000,0000,0000,,line 10 and add the new new line ip
Dialogue: 0,0:13:44.64,0:13:46.24,Default,,0000,0000,0000,,icmp
Dialogue: 0,0:13:46.24,0:13:47.28,Default,,0000,0000,0000,,host
Dialogue: 0,0:13:47.28,0:13:49.36,Default,,0000,0000,0000,,what's the our public ip address of the
Dialogue: 0,0:13:49.36,0:13:53.04,Default,,0000,0000,0000,,router it is 100
Dialogue: 0,0:13:53.04,0:13:55.52,Default,,0000,0000,0000,,that 100 i believe this is the ip
Dialogue: 0,0:13:55.52,0:13:56.80,Default,,0000,0000,0000,,address
Dialogue: 0,0:13:56.80,0:14:01.72,Default,,0000,0000,0000,,and then we are going to ping google dns
Dialogue: 0,0:14:02.00,0:14:05.76,Default,,0000,0000,0000,,here's the axle list now
Dialogue: 0,0:14:06.80,0:14:10.00,Default,,0000,0000,0000,,now we need to
Dialogue: 0,0:14:10.48,0:14:13.44,Default,,0000,0000,0000,,renumber this because it's incorrectly
Dialogue: 0,0:14:13.44,0:14:15.60,Default,,0000,0000,0000,,we want to have permit any at the end so
Dialogue: 0,0:14:15.60,0:14:20.40,Default,,0000,0000,0000,,remove 20 permit any any
Dialogue: 0,0:14:20.96,0:14:23.84,Default,,0000,0000,0000,,and now it's correct okay now let's ping
Dialogue: 0,0:14:23.84,0:14:25.20,Default,,0000,0000,0000,,and let's see
Dialogue: 0,0:14:25.20,0:14:27.04,Default,,0000,0000,0000,,if packet leaves the
Dialogue: 0,0:14:27.04,0:14:30.04,Default,,0000,0000,0000,,router
Dialogue: 0,0:14:36.56,0:14:39.84,Default,,0000,0000,0000,,we still don't have the match
Dialogue: 0,0:14:39.84,0:14:42.40,Default,,0000,0000,0000,,on the interface okay here's the match i
Dialogue: 0,0:14:42.40,0:14:44.72,Default,,0000,0000,0000,,was like what's going on
Dialogue: 0,0:14:44.72,0:14:46.56,Default,,0000,0000,0000,,so we have match
Dialogue: 0,0:14:46.56,0:14:49.20,Default,,0000,0000,0000,,and that confirms two things
Dialogue: 0,0:14:49.20,0:14:51.28,Default,,0000,0000,0000,,not two actually several
Dialogue: 0,0:14:51.28,0:14:53.20,Default,,0000,0000,0000,,we have the working gateway for the
Dialogue: 0,0:14:53.20,0:14:55.68,Default,,0000,0000,0000,,cisco router so traffic can leave the
Dialogue: 0,0:14:55.68,0:14:56.80,Default,,0000,0000,0000,,interface
Dialogue: 0,0:14:56.80,0:14:59.28,Default,,0000,0000,0000,,now because the match is for the public
Dialogue: 0,0:14:59.28,0:15:01.60,Default,,0000,0000,0000,,ip address we also know that the traffic
Dialogue: 0,0:15:01.60,0:15:03.60,Default,,0000,0000,0000,,is being translated so even if you
Dialogue: 0,0:15:03.60,0:15:05.60,Default,,0000,0000,0000,,didn't check the iphone translation this
Dialogue: 0,0:15:05.60,0:15:07.60,Default,,0000,0000,0000,,confirms that there was a translation
Dialogue: 0,0:15:07.60,0:15:09.76,Default,,0000,0000,0000,,and the private ipad is translated into
Dialogue: 0,0:15:09.76,0:15:13.20,Default,,0000,0000,0000,,public ipads and the third
Dialogue: 0,0:15:13.20,0:15:15.12,Default,,0000,0000,0000,,packet leaves the router
Dialogue: 0,0:15:15.12,0:15:16.08,Default,,0000,0000,0000,,okay
Dialogue: 0,0:15:16.08,0:15:16.88,Default,,0000,0000,0000,,now
Dialogue: 0,0:15:16.88,0:15:19.20,Default,,0000,0000,0000,,that's good it leaves the router is it
Dialogue: 0,0:15:19.20,0:15:20.64,Default,,0000,0000,0000,,coming back
Dialogue: 0,0:15:20.64,0:15:21.68,Default,,0000,0000,0000,,no
Dialogue: 0,0:15:21.68,0:15:24.88,Default,,0000,0000,0000,,it might be coming back or it it's my
Dialogue: 0,0:15:24.88,0:15:27.68,Default,,0000,0000,0000,,not coming back depends on the problems
Dialogue: 0,0:15:27.68,0:15:29.04,Default,,0000,0000,0000,,on the internet
Dialogue: 0,0:15:29.04,0:15:30.72,Default,,0000,0000,0000,,so since this video about the
Dialogue: 0,0:15:30.72,0:15:32.40,Default,,0000,0000,0000,,troubleshooting let's make sure the
Dialogue: 0,0:15:32.40,0:15:34.40,Default,,0000,0000,0000,,traffic is coming back
Dialogue: 0,0:15:34.40,0:15:36.88,Default,,0000,0000,0000,,and for that we again can capture the
Dialogue: 0,0:15:36.88,0:15:38.96,Default,,0000,0000,0000,,traffic or we can assign the similar
Dialogue: 0,0:15:38.96,0:15:43.12,Default,,0000,0000,0000,,access list on the inbound traffic
Dialogue: 0,0:15:44.96,0:15:48.48,Default,,0000,0000,0000,,extend it and that would be outside
Dialogue: 0,0:15:48.48,0:15:50.24,Default,,0000,0000,0000,,inbound
Dialogue: 0,0:15:50.24,0:15:53.12,Default,,0000,0000,0000,,and now what do we want to match here
Dialogue: 0,0:15:53.12,0:15:55.60,Default,,0000,0000,0000,,we won't match google dns as a source
Dialogue: 0,0:15:55.60,0:15:57.20,Default,,0000,0000,0000,,because remember
Dialogue: 0,0:15:57.20,0:15:59.68,Default,,0000,0000,0000,,answer is coming from google now
Dialogue: 0,0:15:59.68,0:16:01.92,Default,,0000,0000,0000,,and we want to do
Dialogue: 0,0:16:01.92,0:16:04.64,Default,,0000,0000,0000,,destination is going to be our ip
Dialogue: 0,0:16:04.64,0:16:07.12,Default,,0000,0000,0000,,address on the public interface on the
Dialogue: 0,0:16:07.12,0:16:08.96,Default,,0000,0000,0000,,outside interface
Dialogue: 0,0:16:08.96,0:16:10.88,Default,,0000,0000,0000,,and the protocol is icmp
Dialogue: 0,0:16:10.88,0:16:12.32,Default,,0000,0000,0000,,also you can use
Dialogue: 0,0:16:12.32,0:16:14.80,Default,,0000,0000,0000,,echo reply if you want
Dialogue: 0,0:16:14.80,0:16:17.12,Default,,0000,0000,0000,,not necessary for this purpose but you
Dialogue: 0,0:16:17.12,0:16:19.28,Default,,0000,0000,0000,,can because
Dialogue: 0,0:16:19.28,0:16:22.40,Default,,0000,0000,0000,,like if you are troubleshooting with
Dialogue: 0,0:16:22.40,0:16:24.80,Default,,0000,0000,0000,,someone else on the other side and they
Dialogue: 0,0:16:24.80,0:16:26.96,Default,,0000,0000,0000,,are pinging your ip address as well you
Dialogue: 0,0:16:26.96,0:16:28.88,Default,,0000,0000,0000,,might want to add echo reply to make
Dialogue: 0,0:16:28.88,0:16:31.36,Default,,0000,0000,0000,,sure this is your reply not their ping
Dialogue: 0,0:16:31.36,0:16:33.76,Default,,0000,0000,0000,,but google is not going to ping us so
Dialogue: 0,0:16:33.76,0:16:35.52,Default,,0000,0000,0000,,it's okay to not
Dialogue: 0,0:16:35.52,0:16:38.72,Default,,0000,0000,0000,,put the echo reply any any icmp we match
Dialogue: 0,0:16:38.72,0:16:40.96,Default,,0000,0000,0000,,here we know it's our reply from google
Dialogue: 0,0:16:40.96,0:16:42.16,Default,,0000,0000,0000,,dns
Dialogue: 0,0:16:42.16,0:16:44.64,Default,,0000,0000,0000,,and now let's permit any any because we
Dialogue: 0,0:16:44.64,0:16:46.56,Default,,0000,0000,0000,,don't want to block any other traffic on
Dialogue: 0,0:16:46.56,0:16:48.56,Default,,0000,0000,0000,,the interface because right now there is
Dialogue: 0,0:16:48.56,0:16:50.48,Default,,0000,0000,0000,,no access to the game there is no access
Dialogue: 0,0:16:50.48,0:16:52.72,Default,,0000,0000,0000,,list and if we assign the axle list
Dialogue: 0,0:16:52.72,0:16:55.04,Default,,0000,0000,0000,,we'll block everything that is not
Dialogue: 0,0:16:55.04,0:16:57.28,Default,,0000,0000,0000,,permitted on the access list
Dialogue: 0,0:16:57.28,0:16:59.92,Default,,0000,0000,0000,,so let's go ahead and configure the
Dialogue: 0,0:16:59.92,0:17:02.24,Default,,0000,0000,0000,,internet gigabyte
Dialogue: 0,0:17:02.24,0:17:04.48,Default,,0000,0000,0000,,gigabit ethernet one
Dialogue: 0,0:17:04.48,0:17:08.80,Default,,0000,0000,0000,,ip access list not access access group
Dialogue: 0,0:17:08.80,0:17:09.92,Default,,0000,0000,0000,,and
Dialogue: 0,0:17:09.92,0:17:12.00,Default,,0000,0000,0000,,here we use inbound
Dialogue: 0,0:17:12.00,0:17:13.60,Default,,0000,0000,0000,,okay in
Dialogue: 0,0:17:13.60,0:17:15.36,Default,,0000,0000,0000,,now
Dialogue: 0,0:17:15.36,0:17:18.00,Default,,0000,0000,0000,,let's check what match do we have on the
Dialogue: 0,0:17:18.00,0:17:21.60,Default,,0000,0000,0000,,interface for inbound traffic
Dialogue: 0,0:17:21.60,0:17:25.52,Default,,0000,0000,0000,,is there any reply from google
Dialogue: 0,0:17:30.72,0:17:32.96,Default,,0000,0000,0000,,and there is reply
Dialogue: 0,0:17:32.96,0:17:35.60,Default,,0000,0000,0000,,so we know now that the traffic not only
Dialogue: 0,0:17:35.60,0:17:37.76,Default,,0000,0000,0000,,leaves the router but it's also coming
Dialogue: 0,0:17:37.76,0:17:40.16,Default,,0000,0000,0000,,back from google so internet in between
Dialogue: 0,0:17:40.16,0:17:43.44,Default,,0000,0000,0000,,google dns and our isp is okay we
Dialogue: 0,0:17:43.44,0:17:45.44,Default,,0000,0000,0000,,receive the traffic but
Dialogue: 0,0:17:45.44,0:17:47.76,Default,,0000,0000,0000,,computers still cannot ping that
Dialogue: 0,0:17:47.76,0:17:49.20,Default,,0000,0000,0000,,how come
Dialogue: 0,0:17:49.20,0:17:51.92,Default,,0000,0000,0000,,we need the ping on the computer
Dialogue: 0,0:17:51.92,0:17:54.16,Default,,0000,0000,0000,,so what else are left
Dialogue: 0,0:17:54.16,0:17:56.72,Default,,0000,0000,0000,,when traffic comes back
Dialogue: 0,0:17:56.72,0:17:58.00,Default,,0000,0000,0000,,to the router
Dialogue: 0,0:17:58.00,0:18:01.84,Default,,0000,0000,0000,,let me try to draw it here
Dialogue: 0,0:18:07.68,0:18:09.04,Default,,0000,0000,0000,,where traffic
Dialogue: 0,0:18:09.04,0:18:11.92,Default,,0000,0000,0000,,lives okay we we have this traffic it
Dialogue: 0,0:18:11.92,0:18:14.48,Default,,0000,0000,0000,,left the router
Dialogue: 0,0:18:14.48,0:18:17.84,Default,,0000,0000,0000,,went to dsp not sp google dns
Dialogue: 0,0:18:17.84,0:18:20.00,Default,,0000,0000,0000,,and coming back and it comes here we
Dialogue: 0,0:18:20.00,0:18:23.36,Default,,0000,0000,0000,,have this match on this interface now
Dialogue: 0,0:18:23.36,0:18:25.68,Default,,0000,0000,0000,,what's supposed to happen well nat will
Dialogue: 0,0:18:25.68,0:18:28.08,Default,,0000,0000,0000,,catch the traffic will check the port
Dialogue: 0,0:18:28.08,0:18:30.16,Default,,0000,0000,0000,,translations and we'll figure out okay
Dialogue: 0,0:18:30.16,0:18:32.32,Default,,0000,0000,0000,,that's the returning traffic for this
Dialogue: 0,0:18:32.32,0:18:33.76,Default,,0000,0000,0000,,ping this guy is pinging from the
Dialogue: 0,0:18:33.76,0:18:37.12,Default,,0000,0000,0000,,windows 7 machine and now this packet
Dialogue: 0,0:18:37.12,0:18:38.40,Default,,0000,0000,0000,,sorry
Dialogue: 0,0:18:38.40,0:18:40.32,Default,,0000,0000,0000,,now this package supposed to leave this
Dialogue: 0,0:18:40.32,0:18:42.40,Default,,0000,0000,0000,,interface
Dialogue: 0,0:18:42.40,0:18:44.00,Default,,0000,0000,0000,,okay to
Dialogue: 0,0:18:44.00,0:18:45.76,Default,,0000,0000,0000,,to be delivered to the
Dialogue: 0,0:18:45.76,0:18:48.08,Default,,0000,0000,0000,,computer and let's make sure that is
Dialogue: 0,0:18:48.08,0:18:49.68,Default,,0000,0000,0000,,happening
Dialogue: 0,0:18:49.68,0:18:51.20,Default,,0000,0000,0000,,for that
Dialogue: 0,0:18:51.20,0:18:54.32,Default,,0000,0000,0000,,what we are going to do is
Dialogue: 0,0:18:54.32,0:18:57.56,Default,,0000,0000,0000,,we are
Dialogue: 0,0:18:58.56,0:19:00.40,Default,,0000,0000,0000,,for that we are going to check if the
Dialogue: 0,0:19:00.40,0:19:03.20,Default,,0000,0000,0000,,traffic leaves the cisco router
Dialogue: 0,0:19:03.20,0:19:05.60,Default,,0000,0000,0000,,again this is the same as we did on the
Dialogue: 0,0:19:05.60,0:19:07.20,Default,,0000,0000,0000,,outside interface you can capture
Dialogue: 0,0:19:07.20,0:19:08.88,Default,,0000,0000,0000,,traffic if you know how to capture if
Dialogue: 0,0:19:08.88,0:19:11.36,Default,,0000,0000,0000,,not you can assign the interface on the
Dialogue: 0,0:19:11.36,0:19:13.44,Default,,0000,0000,0000,,address let's first make sure there is
Dialogue: 0,0:19:13.44,0:19:17.20,Default,,0000,0000,0000,,no access list on the router
Dialogue: 0,0:19:19.04,0:19:22.40,Default,,0000,0000,0000,,and let's do out
Dialogue: 0,0:19:22.40,0:19:25.36,Default,,0000,0000,0000,,there is an access list okay
Dialogue: 0,0:19:25.36,0:19:27.52,Default,,0000,0000,0000,,now let's check what this access list
Dialogue: 0,0:19:27.52,0:19:30.08,Default,,0000,0000,0000,,has in it
Dialogue: 0,0:19:30.80,0:19:33.52,Default,,0000,0000,0000,,does it have any match
Dialogue: 0,0:19:33.52,0:19:36.80,Default,,0000,0000,0000,,and it doesn't but look at this
Dialogue: 0,0:19:36.80,0:19:39.28,Default,,0000,0000,0000,,this subnet is not what we are expecting
Dialogue: 0,0:19:39.28,0:19:43.28,Default,,0000,0000,0000,,to have because remember our subnet is
Dialogue: 0,0:19:43.28,0:19:44.52,Default,,0000,0000,0000,,192
Dialogue: 0,0:19:44.52,0:19:46.08,Default,,0000,0000,0000,,161.10
Dialogue: 0,0:19:46.08,0:19:49.20,Default,,0000,0000,0000,,and here we see two so again the subnet
Dialogue: 0,0:19:49.20,0:19:51.12,Default,,0000,0000,0000,,on the axle is wrong
Dialogue: 0,0:19:51.12,0:19:55.16,Default,,0000,0000,0000,,let's try and fix that
Dialogue: 0,0:20:06.56,0:20:08.64,Default,,0000,0000,0000,,now it's correct
Dialogue: 0,0:20:08.64,0:20:09.52,Default,,0000,0000,0000,,so
Dialogue: 0,0:20:09.52,0:20:12.08,Default,,0000,0000,0000,,remember the traffic leaves the router
Dialogue: 0,0:20:12.08,0:20:15.52,Default,,0000,0000,0000,,so the source here is going to be any in
Dialogue: 0,0:20:15.52,0:20:17.60,Default,,0000,0000,0000,,our case it's google dns and destination
Dialogue: 0,0:20:17.60,0:20:20.40,Default,,0000,0000,0000,,is our computer so the access list order
Dialogue: 0,0:20:20.40,0:20:23.36,Default,,0000,0000,0000,,like from any tool subnet is correct
Dialogue: 0,0:20:23.36,0:20:28.08,Default,,0000,0000,0000,,and let's see if we can finally ping it
Dialogue: 0,0:20:29.20,0:20:31.28,Default,,0000,0000,0000,,we still cannot bring it
Dialogue: 0,0:20:31.28,0:20:32.32,Default,,0000,0000,0000,,wow
Dialogue: 0,0:20:32.32,0:20:34.40,Default,,0000,0000,0000,,let's see what's going on
Dialogue: 0,0:20:34.40,0:20:37.68,Default,,0000,0000,0000,,is it leaving the interface
Dialogue: 0,0:20:41.44,0:20:42.96,Default,,0000,0000,0000,,it is actually
Dialogue: 0,0:20:42.96,0:20:44.16,Default,,0000,0000,0000,,it's my bad
Dialogue: 0,0:20:44.16,0:20:45.20,Default,,0000,0000,0000,,i did
Dialogue: 0,0:20:45.20,0:20:46.80,Default,,0000,0000,0000,,two again
Dialogue: 0,0:20:46.80,0:20:49.92,Default,,0000,0000,0000,,okay this is wrong
Dialogue: 0,0:20:49.92,0:20:52.16,Default,,0000,0000,0000,,ah
Dialogue: 0,0:20:52.80,0:20:56.32,Default,,0000,0000,0000,,this is what happened when you rush
Dialogue: 0,0:20:57.36,0:20:59.52,Default,,0000,0000,0000,,and
Dialogue: 0,0:20:59.52,0:21:02.00,Default,,0000,0000,0000,,actually turn
Dialogue: 0,0:21:02.00,0:21:03.76,Default,,0000,0000,0000,,and
Dialogue: 0,0:21:03.76,0:21:05.76,Default,,0000,0000,0000,,then we need to do
Dialogue: 0,0:21:05.76,0:21:06.80,Default,,0000,0000,0000,,one
Dialogue: 0,0:21:06.80,0:21:09.52,Default,,0000,0000,0000,,yeah once you remove the all lines from
Dialogue: 0,0:21:09.52,0:21:11.12,Default,,0000,0000,0000,,the axles that actually doesn't work
Dialogue: 0,0:21:11.12,0:21:13.20,Default,,0000,0000,0000,,anymore so there's no denying any at the
Dialogue: 0,0:21:13.20,0:21:16.08,Default,,0000,0000,0000,,end if there's no any line in the axis
Dialogue: 0,0:21:16.08,0:21:16.96,Default,,0000,0000,0000,,so
Dialogue: 0,0:21:16.96,0:21:19.36,Default,,0000,0000,0000,,as soon as we removed 10 we start
Dialogue: 0,0:21:19.36,0:21:21.68,Default,,0000,0000,0000,,pinging it and now and then we added
Dialogue: 0,0:21:21.68,0:21:23.76,Default,,0000,0000,0000,,correct line here
Dialogue: 0,0:21:23.76,0:21:26.96,Default,,0000,0000,0000,,and we can still ping it
Dialogue: 0,0:21:26.96,0:21:29.12,Default,,0000,0000,0000,,and we have hit counts
Dialogue: 0,0:21:29.12,0:21:32.08,Default,,0000,0000,0000,,so this is how you troubleshoot simple
Dialogue: 0,0:21:32.08,0:21:33.84,Default,,0000,0000,0000,,basic cisco network
Dialogue: 0,0:21:33.84,0:21:35.68,Default,,0000,0000,0000,,not only cisco network pretty much any
Dialogue: 0,0:21:35.68,0:21:38.00,Default,,0000,0000,0000,,network you need to know what your
Dialogue: 0,0:21:38.00,0:21:39.52,Default,,0000,0000,0000,,troubleshooting you need to know how
Dialogue: 0,0:21:39.52,0:21:41.04,Default,,0000,0000,0000,,traffic goes
Dialogue: 0,0:21:41.04,0:21:42.56,Default,,0000,0000,0000,,what gateway are you supposed to have on
Dialogue: 0,0:21:42.56,0:21:44.40,Default,,0000,0000,0000,,the computer you need to know all the
Dialogue: 0,0:21:44.40,0:21:46.56,Default,,0000,0000,0000,,things to troubleshoot and
Dialogue: 0,0:21:46.56,0:21:49.04,Default,,0000,0000,0000,,after some several months or years you
Dialogue: 0,0:21:49.04,0:21:50.88,Default,,0000,0000,0000,,have the enough experience to skip some
Dialogue: 0,0:21:50.88,0:21:52.56,Default,,0000,0000,0000,,of the steps for example you might know
Dialogue: 0,0:21:52.56,0:21:54.40,Default,,0000,0000,0000,,the gateway
Dialogue: 0,0:21:54.40,0:21:56.88,Default,,0000,0000,0000,,on the router is correct because you
Dialogue: 0,0:21:56.88,0:21:58.88,Default,,0000,0000,0000,,connected to the router remotely and
Dialogue: 0,0:21:58.88,0:22:01.04,Default,,0000,0000,0000,,from the internet so the router most
Dialogue: 0,0:22:01.04,0:22:03.52,Default,,0000,0000,0000,,likely has the default gateway or you
Dialogue: 0,0:22:03.52,0:22:05.04,Default,,0000,0000,0000,,might know that the
Dialogue: 0,0:22:05.04,0:22:07.52,Default,,0000,0000,0000,,the access is not supposed to be checked
Dialogue: 0,0:22:07.52,0:22:09.28,Default,,0000,0000,0000,,on the inside device because user told
Dialogue: 0,0:22:09.28,0:22:11.76,Default,,0000,0000,0000,,you that they can ping the ip address of
Dialogue: 0,0:22:11.76,0:22:14.40,Default,,0000,0000,0000,,the gateway
Dialogue: 0,0:22:14.40,0:22:17.12,Default,,0000,0000,0000,,so many many things can be skipped based
Dialogue: 0,0:22:17.12,0:22:19.36,Default,,0000,0000,0000,,on your experience but this is from
Dialogue: 0,0:22:19.36,0:22:21.76,Default,,0000,0000,0000,,starting to the end you check from the
Dialogue: 0,0:22:21.76,0:22:24.16,Default,,0000,0000,0000,,beginning where you have the problem you
Dialogue: 0,0:22:24.16,0:22:26.56,Default,,0000,0000,0000,,don't check at the end if the cisco has
Dialogue: 0,0:22:26.56,0:22:28.40,Default,,0000,0000,0000,,the internet first you make sure you
Dialogue: 0,0:22:28.40,0:22:31.84,Default,,0000,0000,0000,,have everything you need to leave the uh
Dialogue: 0,0:22:31.84,0:22:34.64,Default,,0000,0000,0000,,area to leave the subnet now let's see
Dialogue: 0,0:22:34.64,0:22:37.60,Default,,0000,0000,0000,,if you can paint google the google
Dialogue: 0,0:22:37.60,0:22:38.88,Default,,0000,0000,0000,,website
Dialogue: 0,0:22:38.88,0:22:40.96,Default,,0000,0000,0000,,directly using dns
Dialogue: 0,0:22:40.96,0:22:43.36,Default,,0000,0000,0000,,and we can ping so if i go
Dialogue: 0,0:22:43.36,0:22:45.92,Default,,0000,0000,0000,,on the browser here i'll try to open the
Dialogue: 0,0:22:45.92,0:22:47.76,Default,,0000,0000,0000,,google website
Dialogue: 0,0:22:47.76,0:22:51.20,Default,,0000,0000,0000,,i should be able to open it
Dialogue: 0,0:22:52.00,0:22:53.44,Default,,0000,0000,0000,,and sure enough
Dialogue: 0,0:22:53.44,0:22:56.08,Default,,0000,0000,0000,,i can open it and it works
Dialogue: 0,0:22:56.08,0:22:57.84,Default,,0000,0000,0000,,perfect
Dialogue: 0,0:22:57.84,0:23:00.48,Default,,0000,0000,0000,,i hope this was useful for you guys and
Dialogue: 0,0:23:00.48,0:23:02.40,Default,,0000,0000,0000,,at some point you'll use it
Dialogue: 0,0:23:02.40,0:23:03.52,Default,,0000,0000,0000,,that's it
Dialogue: 0,0:23:03.52,0:23:05.60,Default,,0000,0000,0000,,so guys if you like this videos please
Dialogue: 0,0:23:05.60,0:23:07.76,Default,,0000,0000,0000,,like the video and hit the subscribe
Dialogue: 0,0:23:07.76,0:23:09.84,Default,,0000,0000,0000,,button if you want to see more videos
Dialogue: 0,0:23:09.84,0:23:12.32,Default,,0000,0000,0000,,like this also i'm looking for an ideas
Dialogue: 0,0:23:12.32,0:23:14.08,Default,,0000,0000,0000,,what kind of videos to create so if you
Dialogue: 0,0:23:14.08,0:23:16.00,Default,,0000,0000,0000,,have any idea and you're looking for
Dialogue: 0,0:23:16.00,0:23:18.56,Default,,0000,0000,0000,,some kind of configuration on the cisco
Dialogue: 0,0:23:18.56,0:23:19.52,Default,,0000,0000,0000,,or
Dialogue: 0,0:23:19.52,0:23:21.36,Default,,0000,0000,0000,,similar network you can put in the
Dialogue: 0,0:23:21.36,0:23:23.12,Default,,0000,0000,0000,,comments what do you want to see in the
Dialogue: 0,0:23:23.12,0:23:25.28,Default,,0000,0000,0000,,next video thanks for watching and have
Dialogue: 0,0:23:25.28,0:23:28.52,Default,,0000,0000,0000,,a good one
Dialogue: 0,0:23:36.24,0:23:38.32,Default,,0000,0000,0000,,you