Cisco Routers :: 527W-U Routed Subnet / Is One-to-one NAT Supported
Jan 15, 2013
we are trying to configure one to one NAT translations on a Cisco 527W-U, but are having some problems. We are running firmware version 1.2.4 (003) on the 527.
The DSL line is assigned with a /29 address range x.x.x.64 /29?
The DSL WAN interface picks up x.x.x.65 /32 from the Radius server. We are using the default private IP address range 192.168.15.0 /24 on the LAN (VLAN1), and can get to the internet ok with a PC connected to the LAN.
However when we try to set up a public IP address in the same range (eg x.x.x.66 /29) on VLAN1 (with x.x.x.67 on the PC) it will not connect. (won't allow us to configure an address from the same range as the WAN on a new VLAN interface).
we would want to be able to do one to one NAT translations eg x.x.x.66 on the outside to 192.168.15.2 inside, x.x.x.67 outside to 192.168.15.3 inside etc, but this will not either. We have tried this on a normal IOS router (887) and it worked ok. We have also tried the same on a small DSL router / modem product similar to the 527 from another manufacturer and it worked ok on that, but we wanted it to be able to work on the 527.
We have tried the NAT bypass feature without any success, reading several other discussion forums on this website leads me to believe that one to one NAT is not supported on this equipment at the moment, or at least not at the current firmware release.
One work around would be to just assign a /32 to the WAN interface on the DSL and route statically to a different routed subnet configured on the LAN, however we were wanting to avoid having to do that if possible.
View 1 Replies
ADVERTISEMENT
Dec 12, 2012
I'm trying to configure a SPAN session on a Cisco 3725 router, but it won't let me complete the command. The router has two Fast Ethernet interfaces: 0/0 and 0/1. I'm trying to configure a SPAN session with Fa0/0 as the source interface and Fa0/1 as the destination interface. [code] But when I try to configure the session, it seems like it's giving me the option to configure the SPAN session, but in the end the router won't let me: [code] When I type "?", why would it give me the option of using the Fast Ethernet interface as source port, then when I try to execute the command, it doesn't like it?
View 7 Replies
View Related
Feb 14, 2013
This question is in the context of servers sitting in a colocation environment behind an ASA5510 with security plus license.Our colo provider is going to be statically routing a /28 public subnet to our ASA5510 (say 1.1.1.0/28). We will also be getting a single IP (say 2.2.2.2/30) on a small router-to-router subnet (2.2.2.0/30) to which the 1.1.1.0/28 subnet will be statically routed to our ASA5510 from our colo provider.I will obviously set the outside interface of the ASA to be 2.2.2.2/30 so that the colo provider can route the 1.1.1.0/28 subnet to it. I will also set a default route to 2.2.2.1 which is the IP of our colo providers gateway (and the router that will be statically routing the 1.1.1.0/28 subnet to us).
We have various servers in the same rack as the ASA (connected via a 3750G switch). Some of these servers need to be exposed to the internet (web, email, etc servers) and some do not (database servers).I'm considering 2 different ways of designing the network but I have questions about both and not sure which way to go:
1) Scenario #1: Using NAT and private IP's for all servers.In this scenario where/how do I assign the internal network (say 10.1.1.0/24) and the public routed subnet (1.1.1.0/28)? I assume the internal 10.1.1.0/24 is an inside network assigned to the interface connected to the 3750G (to which all the servers connect). However, where do I assign the public routed subnet (1.1.1.0/28) since it is somewhat "nebulous" in that it has to reside somewhere on the ASA so that it can then NAT to the internal (10.1.1.0/24) IP's. Also, is it considered an outside or inside network - and on which interface? My confusion is that If its added to the outside interface then won't that conflict with the 2.2.2.2 IP to which the colo provider is routing our 1.1.1.0/28 subnet to? And if its on the inside interface connected to the 3750G then wont that conflict with the 10.1.1.0/24 private IP range of the servers?
2) Scenario #2: Using public IP's for all servers:This scenario seems more straightforward to me: I would want to assign IP's from the statically routed subnet (1.1.1.0/28) to my servers so that range would be configured as an inside network on the interface connected to the 3750G (to which all the servers connect). This would be configured on a specific VLAN (say vlan 50). I would then have another VLAN (say VLAN 100) on the 3750G that has a private IP range (say 10.1.1.0/24) so that non-public servers (database, etc) would reside on there. All public servers that need access to private servers would have a NIC on both VLANS (50 + 100). My question is is this the correct way of approaching this? I also like this because I dont have to worry about NAT and the ASA can act as a router/firewall and things are clear in terms of whats happening.
Ultimately I'm not sure which is the best way to go in terms of having all servers on a private IP range and just NAT to them (as per scenario 1), or implement scenario 2 where servers have two interfaces.The main thing thats bugging me from scenario 1 is I'm not sure where/how to assign the statically routed subnet (1.1.1.0/28) on the ASA? (inside? outside? which interface?).
View 12 Replies
View Related
Feb 13, 2013
I have some questions about how to configure my Cisco 1941 with a routed subnet from my ISP to forward them to 1 or more servers in my LAN.1 Routed subnet /29 from my ISP (over a fiber connection).In my LAN I have (at the moment) 3 servers, and about 15 clients.I would like to use the first ip address from the routed subnet for internet traffic from all the clients in the LAN.I would like to use the second ip address from the routed subnet for server1 so that server1 accept some allowed connections and that server1 connects to the internet with the second ip address from the routed subnet
I would like to use the thirth ip address from the routed subnet for server2 so that server2 accept some allowed connections and that server2 connects to the internet with the thirth ip address from the routed subnet.I would like to use the fourth ip address from the routed subnet for server3 so that server3 accept some allowed connections and that server3 connects to the internet with the fourth ip address from the routed subnet.[code]
View 13 Replies
View Related
Sep 23, 2012
A SRP 527W is responsible for the data network in my office. But I am not able to access it. I use traceroute to confirm its IP address is “10.0.0.138”. I am not able to access / open 10.0.0.138 with my web browser. I even can not access the same address with telnet. So is there any solution to access the SRP 527W?
View 10 Replies
View Related
Jul 28, 2010
I recently ( three days ago ) purchased a SRP 527w and have been using it in a mixed Mac/Windows network. The setup is currently primarily using defaults apart from enabling logging. While I was still able to access the internet with some applications, accessing web content appears to have blocked after approximately 48 hours uptime.
No web pages using port 80 were available and that included the router web interface. The router would respond to ping only.
On a different note. I have to say that I find it very strange that the supplied documentation doesn't advise setting up the router using the admin login. It was only after reading one of the comments on this site that I was alerted to this security problem. I also find it rather annoying that I appear to have to purchase additional support merely to be able to download firmware updates which are designed to give the device improved functionality.
View 51 Replies
View Related
Nov 30, 2011
I spent three days trying to get the DMZ function in my newly purchased SRP 527w Small Business Router to work at no avail.All I want is for the router to place the 192.168.1.200 IP/Machine in the DMZ.I have configured the ports in the router as TRUSTED and there are no other conflicting rules but it doesn't work still.I tried upgrading to the latest firmware "SRP520W-1.1.24" and it didn't work either.
View 11 Replies
View Related
Mar 11, 2012
Just wanting to know if there is a way to disable unused LAN interfaces of these Cisco 527W routers. Looking through the configuration interface it doesnt seem to have an option for this. Also I am having trouble logging into the router via SSH or Telent . When I put the password in it says "access denied" . But password works for the web interface..
View 5 Replies
View Related
Aug 3, 2011
Our SRP527W is working - internet on and SIP phones on but I cannot access the Web interface anymore. When I try to login from any of the machines around I get a "not responding" message.
Before I get to the stage where I have to reset the whole thing and re-do the configuration completely ? I tried powering off and powering on as well as restarting all the switches etc... but I get the same result.
View 1 Replies
View Related
May 12, 2011
at our office we've recently upgrade from a old consumer-grade linksys wag200g modem/router/ap to the Cisco SRP527w. The Cisco is suffering from very frequent ADSL disconnections. These disconnections happens when there is some traffic to the internet and they seem to don't affect the LAN routing: on the weekends there are no disconnections at all while during the working hours there may be disconnections every FEW MINUTES making this router unusable. Often these disconnections force us to do a full reboot of the router.
Firmare version is SRP520W-1.1.19, the latest. ADSL line is a 6Mbps/640kbps. Noise margin is about 11dB for downstream and 20dB for upstream.
No voice line is used and therefore they are both disabled. 2 wireless network are active. The old linksys was (and is) working correctly, no adsl disconnections at all. Never.
View 40 Replies
View Related
Sep 12, 2012
I know how to disable the DHCP on the SRP527W but i was wondering how do i configure DHCP relay to point to a network DHCP server.
View 1 Replies
View Related
Jan 14, 2013
As a raw test it is handy for us to ping externally the WAN port of the SRP 527W. How we configure the SRP 527W to allow this? FYI we have the inbulit SRP firewall enabled.
View 2 Replies
View Related
Mar 19, 2012
I have a pair of SRP-527W routers running latest firmware V 1.01.26. Everthing works fine. Except.... Have purchased a ZTE MF112 usb dongle as backup to the ADSL but router refuses to recognise it. In mobile network status shows as "Unable to Detect USB Mobile Modem".
Have tried a second dongle of the same type, cold reboot of router etc... but nothing. It is supposed to be supported in this release of firmware...?
View 6 Replies
View Related
Aug 9, 2011
We have a Cisco SRP 527W router that was not showing up on the LAN. so we tried a Factory Default reset but it seems to be dead.
The power light is flashing constantly,the 4 LAN light are constantly on,the DSL Data light comes on for 1 sec when device is powered up.
i have tried connecting directly to a PC, the NIC reports as network cable unplugged.i have tried the (power on device, hold down reset button, power of after 30 sec, power on after 5 sec, release reset button after 5 sec) but still "network cable unplugged".
the firmware flash utility will not find the NIC the device is connected to.the router is less than a year old, is there a fix or is it a warranty replacement ?
View 2 Replies
View Related
Jul 18, 2011
I have recently acquired one of these routers. I thought, being a Cisco product, it would be the bee's knees. It is not. After finally getting the network set up - no mean feat, although I do not claim any expertise, but had to resort to some other network management software to finally get it all running - the router drops either the WAN connection or the wireless connection many times a day. The laptops often show as being connected to the network/router, but are unable to access either the internet, or the router via the browser. Re-booting the router is the fix, but, hey, I can achieve that sort of performance with any old $20 router - none of my old Net gear routers was this troublesome.
The permanent fix would seem to be a firmware upgrade, but guess what? The only options available under the "Administration" tab are time setting and switch settings - no firmware upgrade. The supplied firmware is 1.01.09(001) Apr 7 2010. Why these products are supplied, as new, without the latest firmware installed beats me, but there you go.
View 4 Replies
View Related
Jul 14, 2011
The router recognizes the Sierra 312U modem but does not connect to Telstra. The modem is on a monthly plan (not pre-paid) and I have tried APN settings such as internet.telstra and internet.bigpond. The configuration is set to manual and the correct user id and password have been entered. explain the "daemon.err rc: start -1 port.... fail (-8)" in the log? 312U sierra model supposed to be compatible with SRP500s. Any other settings I should try?
Jul 13 17:59:09 SRP527W daemon.notice rc: 3G WAN is unplug
Jul 13 17:59:09 SRP527W daemon.notice rc: killall -TERM igmprt
Jul 13 17:59:10 SRP527W daemon.notice rc: igmprt -f -i br4080 -w 0 -c 5
Jul 13 17:59:12 SRP527W daemon.info 3G[354]: init 3G card phase get card info
Jul 13 17:59:13 SRP527W daemon.info 3G[354]: init 3G card phase verify pincode
[code]....
View 7 Replies
View Related
Oct 9, 2012
I have a Cisco 527w which we are wanting to deploy to our remote sites however i've found a bug. We use ADSL with an IPsec tunnel as primary and 3G APN for failover . When the ADSL goes down the route via the IPSec tunnel remains and i am unable to route the traffic via the APN backup without disabling the VPN tunnel .
View 0 Replies
View Related
May 20, 2011
I want to know whether NAT loop back is possible with the RV220W router/firewall, or when can we expect a firmware update that addresses this?For terminology sake, what I mean is that I've got a rule that maps HTTP/S to 192.168.1.2. However, when accessing my external ip from an internal ip, I don't get routed to 192.168.1.2.
View 13 Replies
View Related
Apr 14, 2012
I've buy a SRP500 Series Router (ADSL 2+).My ISP need RFC1483 Routed with LCC encapsulation type but this router dont have this type of encapsulation available in WAN settings. What can i do to use this device with my ISP adsl connection ?
View 4 Replies
View Related
Jan 5, 2012
I would replace an old Levelone Router with a Linksys E2500.I have 3 different routed private networks (e.g. 192.168.1.0/24 , 192.168.101.0/24 and 10.0. 0.0/24)How can I forward different ports to this 3 different private networks with an E2500.In the "Games&Applications" Menu are the first 3 octets of the "to IP-address" are fix and corresponds with the LAN ip address.
View 3 Replies
View Related
Mar 13, 2012
How to set up a home network with 2 routers, where R1 acts as the DHCP server and R2 is basically a switch, connected LAN to LAN and everything is on the same subnet. Currently I have a different setup:Both routers have the DHCP server enabled and I connect R2's WAN port to R1 LAN. Therefore I have 2 subnets. Now my special requirement is that R2 is a DD-WRT router, which establishes a VPN connection to StrongVPN, so that all internet traffic via R2 is encrypted and goes through the StrongVPN server. Now my question:If I change my router setup to the same subnet, meaning R2 connects LAN to R1 LAN and I disable DHCP server on R2, will R2 still be able to establish the VPN connection?
View 5 Replies
View Related
May 9, 2013
I am curious of the max supported SIP sessionf of the SRP500 series.
View 1 Replies
View Related
Oct 18, 2011
how many SSL VPN Users are supported in Cisco1921-SEC/K9 routers? Or do i need to separately purchase SSL-VPN User license- FL-SSLVPN25-K9 (Cisco SSLVPN Feature License-25 Users) separately?
My client requires 25 Users SSL VPN.
View 4 Replies
View Related
Apr 30, 2012
I'm trying to set up 2 subnet with two RV042 routers. One router will act as a gateway and both WAN ports will be used by two different isp connection. The first router (gateway) LAN IP will be 192.168.0.1/24. I would also like to set up another router behind the gateway with with separate subnet 192.168.1.X/24. And I would like clients on the 192.168.1.x subnet to use the internet through the gateway router and clients on the 192.168.0.x subnet to access resources on the 192.168.1.x subnet. Am I able to do this with two RV042?
View 6 Replies
View Related
Mar 11, 2013
How many SDR (Secure Domain Routers) supported on ASR9001?
View 1 Replies
View Related
Jul 30, 2011
How many ipsec tunnels are supported in Cisco 3900 routers(with & without the hardware processors)?How much is the throughput of the 3900 routers?
View 1 Replies
View Related
Mar 26, 2013
i am now trying to configure a Cisco Small Business Pro SRP 521w router for a branch office, i am trying to get the router to connect to a L2TP VPN server inside my datacenter, but seems to me like L2TP VPN client function is not supported inside the SRP 521w router.
Can Cisco implement L2TP VPN client into the firmware for the SRP 521w router in the future ?
View 1 Replies
View Related
Nov 12, 2012
I would like to set the subnet mask off the lan to 255.255.240.0 but the selection menu do not allow to do it.
View 8 Replies
View Related
Nov 8, 2012
I'm trying to setup this router with my IP range 192.168.100.1 to 192.168.101.254 but if I try to enter a subnet mask other than 255.255.255.0 I get the error - Invalid subnet mask. It should be 255 for given class of IP address at 255.255.xxx.0.
Every other device on my network allows that subnet mask, why not this router, it's stopping access from my 192.168.101.x devices.
View 5 Replies
View Related
Jul 10, 2012
I have RV042 Router, I'm using only one Internet conection, I'm using IP group like this 192.168.95.x, my DHCP setting use 192.168.95.120 to 192.168.95.240, but in this time I have 245 workstations (may be I will have 25 additionals workstations) and some times I see IP conflict message in my current work stations.
I had read about SUBNET like response about my problem, but I'm not sure about that and how to make subnet with my RV042.
View 7 Replies
View Related
Feb 12, 2012
I'm wanting to use the SRP527W (from Telstra) to route a block of assigned internet addresses (/29) over the WAN internet IP address. Is this possible on the 527W, or does it only do NAT routing?
View 6 Replies
View Related
Dec 2, 2012
We connected to locations to the RV042 by setting up 2 Gateway - to - Gateway VPNs - both locations can communicate with the RV042 and devices within the local LAN of the RV042 - however at the moment it is not possible to send traffic from 1st VPN Location to the 2nd VPN location
View 1 Replies
View Related
Aug 24, 2011
I have a RV042 with multiple subnet, 192.168.10.0 and 192.168.9.0. 192.168.10.0 is assigned to the LAN, 192.168.9.0 is created under multiple subnet. Both subnet can access Internet by accessing IP address, but 192.168.9.0 cannot access Internet by using host name. It looks like DNS is not working for the 9.0 network.
View 1 Replies
View Related
