Cisco 1941 on gi0/0 - connected but no internet

Question:

I am new in cisco, please WS-C3750X-48PF-S Price anyone can you help me how to solve this problem.

Inside the router I can ping www.google.com but the laptop is connected on interface gi0/1 is not getting internet. I don't know what I'm missing.. below is the running-config.

Current configuration : 6094 bytes

!

version 15.1

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname RYD-TYPSA-KINGFAHAD

!

boot-start-marker

boot-end-marker

!

!

logging buffered 51200 warnings

!

no aaa new-model

!

no ipv6 cef

ip source-route

no ip cef

!

!

!

ip dhcp excluded-address 192.168.2.1 192.168.2.10

!

ip dhcp pool TYPSA-KINGFAHD

network 192.168.2.0 255.255.255.0

domain-name TYPSA-KINGFAHD

dns-server 86.51.34.17 86.51.35.18

default-router 192.168.2.1

!

!

ip domain name yourdomain.com

ip name-server 86.51.34.17

ip name-server 86.51.35.18

multilink bundle-name authenticated

!

!

!

!

!

!

!

interface Embedded-Service-Engine0/0

no ip address

shutdown

!

interface GigabitEthernet0/0

description < TO | MOBILY | MPLS >$ETH-WAN$

ip address 85.194.108.202 255.255.255.252

ip access-group 199 out

ip nat outside

ip virtual-reassembly in

duplex auto

speed auto

!

interface GigabitEthernet0/1

description $ETH-LAN$

ip address 192.168.2.1 255.255.255.0

ip nat inside

ip virtual-reassembly in

ip tcp adjust-mss 1452

duplex auto

speed auto

!

router bgp 65000

bgp router-id 192.168.104.202

bgp log-neighbor-changes

network 192.168.2.0

neighbor 192.168.104.201 remote-as 35819

neighbor 192.168.104.201 description < TO | MOBILY | MPLS >

!

ip default-gateway 85.194.108.201

ip forward-protocol nd

!

ip http server

ip http authentication local

ip http secure-server

ip http timeout-policy idle 60 life 86400 requests 10000

ip http path flash

!

ip nat inside source list LAN_SUBNET interface GigabitEthernet0/0 overload

ip route 0.0.0.0 0.0.0.0 85.194.108.201

ip route 192.168.2.0 255.255.255.0 85.194.108.201

!

ip access-list standard LAN_SUBNET

remark CCP_ACL Category=2

permit 192.168.2.0 0.0.0.255

!

access-list 100 permit tcp any any eq 443

access-list 199 remark CCP_ACL Category=1

access-list 199 permit tcp any any

!

!

!

control-plane

!

!

!

line con 0

login local

line aux 0

line 2

no activation-character

no exec

transport preferred none

transport input all

transport output pad telnet rlogin lapb-ta mop udptn v120 ssh

stopbits 1

line vty 0 4

access-class 199 in

access-class 199 out

no login

transport input ssh

transport output ssh

line vty 5 15

login local

transport input all

!

scheduler allocate 20000 1000

end

Answer:

On G0/0 you have an outbound access list 199 which only permits TCP. If you were on a PC on the LAN side you would not be able to resolve DNS names to IP addresses (DNS uses udp). Can you ping 8.8.8.8 from your PC on the LAN?

Can you also provide a "show ip WS-C3750X-48PF-L route" please?