Cisco Routers :: WRVS4400N Creating IP Based ACL For Vlans That Are Not Default
Aug 18, 2011
After a long effort I managed to get my WRVS4400N to work and provide a stable WLAN/LAN and to define all network devices in my home office. It is running the latest firmware (2.0.1).
I created a seperate SSID and a vlan for it (vlan ID is 3 and IP is 192.168.1.xxx while the default vlan IP is 192.168.0.xxx).
My plan is to use that SSID/vlan for the kids and block some bad content for them via the router there.
I want to make a ACL for that vlan but in the computer list option I can only specify ranges in the default VLAN segment (192.168.0.xxx) while in practice I need the 192.168.1.xxx segment.
I can't switch to .0.xxx as some devices are hard wired to be .1.xxx on my network.
View 1 Replies
ADVERTISEMENT
May 28, 2012
the objective is to set up 2 vlans, one of which is a wireless access point connecting to our company network which is behind our firewall. the other is a wireless access point for admins and selct people to connect directly to the internet, bypasing all network devices and firewall. i am unable to get tech support unless i buy a contract for $800. I currently have it working and vlans setup but they both hook into the company network.
View 3 Replies
View Related
Feb 26, 2013
I bought a WRVS400N v2 to be used as an access point. Currently it is hooked up on my switch via a trunk port and is able to communicate with my gateway. Whenever I try to access an IP subnet other then the local IP address of the WRVS, I get a network unreachable error. To fix this for my local networks, I added the appropriate static route to cover my local LANs and that seems to work now. I tried to add route 0.0.0.0/0.0.0.0 using the web interface for internet access, but somehow it does not recognize this as a default route (quad zero!?). Does any know how I can set the default gateway in this router? Maybe, but hopefully not, I have to use the WAN port to create some kind of uplink and use one of the LAN ports to connect using the trunk port and route traffic for the clients over the WAN port .
View 1 Replies
View Related
Feb 20, 2012
I have 2 WRVS4400N routers that were installed at 2 remote locations to provide VPN access to these sites. The routers have been found reset to the factory defaults on three occasions, twice on one of them and once on the other. Both sites are unmanned so no-one is on site to have pressed the reset button, and both routers were set to have remote management disabled. They are running v2013 firmware.
View 3 Replies
View Related
Aug 6, 2011
I upgraded the firmware for my WRVS4400N v2 to version 2.0.2.1 firmware, now old and default passwords don't work. I have tried resetting it as well, and the default password does not work.
View 1 Replies
View Related
Jan 23, 2013
I had something strange happen to my WRVS440N router yesterday. Our network had crashed for some reason. So I attempted to log into the device to see what was wrong and I was surprised to discover that all of the settings including user name and password had reverted back to factory default.
1. What are all of the possible scenarios that would cause this to happen?
2.Would disconnecting power in the middle of a boot up sequence cause the router to revert to factory settings?
View 1 Replies
View Related
May 29, 2011
I have an ASA 5505 at each of three locations. We have VPN tunnels set up between the three sites. I am currently using a single ISP to control the traffic between the sites. I am adding a new ISP to the mix. The goal is to have any internet traffic routed to ISP 2 and all internal traffic routed to ISP 1.The ASA does not do policy based routing (mostly because it is a firewall, not a router). I need to configure a router that will accept the output of the ASA and route it according to the above rule. All incoming routing will be done through ISP 1. Any suggestion on the device and the methodology to set it up? I am planning on doing this in each location.
View 3 Replies
View Related
Jan 24, 2013
We have a 3560 switch running IOS universalk9-mz.150-1.SE3.bin.Recently, we saw two problems with this switch:-
1. if we try to enable subinterface on any routed interface , for eg. gig1/1, it says invalid input detected. It doesnt accept encapsulation command also. Following was done to enable subinterface:
int gig1/1
no ip address
int gig1/1.2000
ip address 1.1.1.1
under the gi1/1.2000 subinterface, it doesnt present the option of ip address.
2. we created a layer 2 vlan 2000 like: vlan 2000 When we do an exit after creating this vlan , it gives following error:-
%SW_VLAN-4-VLAN_CREATE_FAIL: Failed to create VLANs 2000: extended VLAN(s) not allowed in current VTP mode
View 6 Replies
View Related
Nov 2, 2011
I've been searching high and low and although I've found many results of people having this same exact problem there doesn't seem to be a fix, or at least no one was kind enough to post one. I have many vlans but the 3 in question are 10, 20, 30.
-10 is for my laptops and desktops with an ip range of 192.168.10.10 - 192.168.10.50.
-20 is my home automation network with an orange of 192.168.20.20 - 192.168.20.150
-30 is my guest network with a orange of 192.168.30.84 - 192.168.30.89
I have a dell powerconnect configured with vlans as my core switch. I trunked a port on the switch assigning 3 vlans (10,20,30) and connected it to port 1 on the wrvs4400N. On the wrvs4400 I trunked port 1 tagging vlan 10,20,30. For some reason vlan 1 is untagged on port 1 and I don't know why. I also have a router connected to the powerconnect. Of the 3 vlans I mentioned vlan 10 and vlan 30 are the only ones with interfaces on the router. Vlan 20 is an internal network with a separate router and until I figure this out that router is physically turned off. Also the router currently turned on has no routes configured to connect my vlans. Currently there is no configured way to jump vlans.
No matter what ssid I connect to I get a dhcp response from vlan 10. all my test indicates that I'm actually on vlan 10. I get internet and I can hit all devices on vlan 10. If I connect to ssid guest and change my ip address to match vlan 30 I can not ping the gateway for vlan 30 and I have no internet access. Some times I get something different. Sometimes I get an ip address from vlan 1 on the powerconnect. If I renew my ip address then I'll grab one from vlan 10 but I should be getting one from 30 or none at all for vlan 20. The absolute crazy part is my droid sometimes gets a 192.168.4.x ip address. I don't have a 192.168.4.x network or dhcp scope anywhere on my network! If I physically plug into a port on the power connect I get to the correct network 10 out of 10 times. If I configure vlans on the other 3 ports on the wrvs4400 and physically plug in, I get to the correct network 10 out of 10 times. I've reset to factory a few times and I've been all inside and out of the wrvs4400. I have no clue what could be wrong with this thing.
View 1 Replies
View Related
May 25, 2011
How to configure dynamic VLANs (IP subnet-based) using Nortel JDM? My company is now using port based VLAN and it wastes a lot of time reconfiguring the port to its VLAN everytime their devices moved from one place to another place. So I think using IP subnet-based VLAN might solve the problem?
View 1 Replies
View Related
Jan 6, 2011
My customer requires the hostport on an access switch to be allocated to a specific Vlan based upon the AD Group that the user is a memeber of ? I am planning to setup NAC in a Real Gateway OOB deployment, using an ACS 5.2. I was initially thinking that the initial authentication server would be the ACS and then the AD, which using group mappings within the AD, I could then assign the user to a specific ACS group and then pass a Radius attribute back to the NAC manager for processing?
View 2 Replies
View Related
Jan 21, 2013
2 ISP's connected to a 4507, both with seperate public IP blocks. Based on some source IP addresses on the LAN they would either use ISP-A or ISB-B's connection based on what I define.
View 3 Replies
View Related
Sep 24, 2012
I've got two Nexus 7010's running HSRP north bound to a pair of ASA's, and BGP south bound to four 6509's. Is it possible to advertise default route to BGP neighbor (or prefer it via MED), only if the node is HSRP-active?
Essentially the goal is to create symmetry for inbound/outbound traffic. Only way I can think of so far is via an EEM script, so that when it sees HSRP go active via syslog, it would kick off an action to remove ASN prepend, or reduce MED, and the opposite if HSRP goes standby.
View 2 Replies
View Related
Nov 2, 2011
3945 is running c3900e-universalk9-mz.SPA.151-4.M2
3560e is running c3560e-universalk9-mz.150-1.SE
I've got brand new 3945's with onboard 16-port 3560e switches. On the first power up I see that there are several new vlans added that appear to be default vlans..
vlan 2 name fst2
vlan 3 name fst3
vlan 4 name fst4
vlan 5 name fst5
vlan 6 name fst6
vlan 20 name VLAN0020
vlan 21 name VLAN0021
vlan 22 name VLAN0022
vlan 23 name VLAN0023
vlan 99 name VLAN0099
I deleted the vlan.dat and reloaded the switch but these vlans come back. What these vlans are intended for and is there a better way to get rid of them? What does "fst" stand for?
View 4 Replies
View Related
Jun 24, 2012
I have a 1941 router configured for Policy based routing with two ISPs.Two static default routes configured to point the gateways of respoective ISPs with same metric.But the problem is, packets are going throug the one ISP only while doing traceroute.
N/W connectivity:
ISP1-----> <----------------------> LAN1
| Router |
ISP-------> <----------------------> LAN 2
Below is my configuration :
Current configuration : 5958 bytes
!
! Last configuration change at 05:18:56 UTC Mon Jun 25 2012
!
version 15.0
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
[code]....
View 26 Replies
View Related
Mar 11, 2012
What is the best way to set up a VPN connection?
View 2 Replies
View Related
Jan 23, 2013
I've been given the task to clean-up our network config, and have walked into a disaster zone.We have a 4510R on site with everyone using the default VLAN, VLAN 1.I have created 4 new VLANS, VLAN100, VLAN150, VLAN200, VLAN250 I have assigned interface addresses to each VLAN and configured Inter VLAN routing.I can route to and from each new vlan with no problem, i.e VLAN250>VLAN100 VlAN100>VLAN200 etc but I can't route to VLAN 1(Default VLAN) from any of them, I can ping the interface on VLAN 1 from any VLAN , but any hosts are unreachable. On the flip side , from VLAN 1 I can route to all of the VLANS.
View 3 Replies
View Related
Jul 5, 2011
Right out of the box, the WRVS4400N [firmware v2.0.1.3] I just purchased says the WAN interface is DOWN; and it simply will not obtain an IP address from the Arris TM602G cable modem it is attached to. Internet still runs great on the old WRT54G. Is this WRVS4400 DOA? Or is there some arcane setting the quickstart guide overlooks? OR?
View 2 Replies
View Related
Dec 7, 2011
I'll just use the 4400n to provide DHCP to my two VLANs and then a new problem cropped up. I am unable to add a default route to the 4400n's DHCP server. It uses the 4400n's vlan IP as the default route. What I'm trying to ultimately achieve is to configure the 4400n as an access point for our "private" network on vlan1 and also "guest" access to the internet on vlan2.
View 12 Replies
View Related
Mar 3, 2013
I'm having problems trying to establish a IP Sec tunnel from the office to home. All of our machines are Macs so I have been using the directions described in "How to create an IP Sec tunnel for MAC Clients, A QVPN alternative" but I still can't get it to work. My setup is as follows:
The office is connected to the outside world through a MODEM (Sagemcom 2864 Connection Hub). This MODEM is also a wireless router. It's DHCP server provides addresses 192.168.2.x.The WRVS4400N's WAN port is connected to one of the LAN ports on the MODEM. It's IP address from the MODEM is 192.168.2.x. The WRVS4400N provides addresses 192.168.21.x to devices connected to it.We have a DynDNS account and are using the DDNS client on the WRVS4400N router to connect to it.At home, we have a DIR-655 router with IP Sec Passthru enabled. The router provides IP addresses 192.168.1.x for all devices connected to it. I am fairly sure there are no issues with the router setup at home since I am able to VPN into the office of my full-time job without any problems. I have tried just about everything I can think of but have not been able to get this to work. setting up the Local and Remote Group Settings on the WRVS4400N and the IP address settings in IP Securitas?
View 2 Replies
View Related
Sep 16, 2011
Ive setup a few WRVS4400N over the past 6 months, and have been receiving the below message from some of them every couple of hours.What does the message indicate?
View 1 Replies
View Related
Sep 15, 2012
I have successfully got QuickVPN working from Windows 7 64bit into my WRVS4400n. The router is sat behind another router/modem (Belkin) as the UK uses PPPoA and the WRVS4400n doesn't.So I set up DMZ and changed the DHCP to always allocate 10.x.x.2 on the Belkin which is the WAN side for the WRVS4400n as it is the only thing attached.I have now noticed, and I'm not sure whether it was the case before, that the DNS that the WRVS4400 is showing is the LAN address for the Belkin Modem/Router (10.x.x.1), not 192.x.x.1 for the WRVS4400n itself. I assumed setting the Static DNS 1 on the WRVS4400n would do it, but it didn't?When I connect into the network with QuickVPN, the computer names do not show even though I have selected the option in QuickVPN?
View 1 Replies
View Related
Aug 8, 2011
Our business was looking at purchasing one of these Cisco routers and were curious if it supported WPA2 EAP-TLS?
View 2 Replies
View Related
Jul 23, 2012
I have 2 WRVS4400N's available to be. One is running my network and security connected to my WAN.I want to use the other one stricly as a switch or even adding wireless repeat of my current wireless LAN.
View 1 Replies
View Related
Dec 16, 2012
Recently installed a WRVS4400N router on my home network. Prior to that I was using the wireless built into my FIOS router. I wanted something more secure so I went with the WRVS4400N. I turned off the FIOS wireless and am only using the cisco wireless.
Im having intermittent issues with the wireless. I have many things hooked up to my wireless including a HP printer and a Sonos system. Most of the time if I just open my ipad I cannot see anything else on my network including the printer. If I try to see the Sonos system can cannot, sometimes I can open the app on my iphone and then I can see it.
Sometimes I can see the printer and sometimes I cant. Sometimes when I do see it and then print to it, it will be gone before it even prints.
I don’t seem to have any issues thru the LAN connections.
Also, ive noticed that the wifi is much slower than the old FIOS box.
FYI, when I remove the cisco and fire back up the FIOS wifi I don’t have any problems at all at any time. And its much faster.
I have tried channel 6, 11 and auto. Also turned off IPC and still no change.
View 1 Replies
View Related
Aug 5, 2012
I have a gateway to gateway vpn (home-office) working fine for almost an year btw 2 wrvs4400n routers, This morning, the VPN tunnel was down. I clicked "Connect" from the web based interface, but it does not reconnect.
I tried setting up a new tunnel using the VPN setup wizard, but it says it can't connect to the remote router. Which is strange, since I can ping there normally.
View 2 Replies
View Related
Oct 15, 2011
I'm having a heck of a time connecting the WRVS4400N VPN to another WRVS4400N VPN. both of the routers have the current firmware version V2.0.2.1: Router 1 is below, and router 2 has the matching configuration with as it should be the local group being that routers local information and the remote crew set up being router ones information. the status is up on both of the routers, but I'm unable to ping the remote gateway or any device behind it.[code]
View 5 Replies
View Related
Apr 21, 2012
After a few months of trouble-free ... the Cisco WRVS4400N V2 stopped working. i have tried to reset by holding the reset button for 30 seconds ... but nothing changes the red DIAG light remains on at all times
i have also tried two different versions of the Firmware Rescue Utility but all i get is "unable to scan"
View 1 Replies
View Related
Apr 6, 2013
How to setup VPN connection,
Head office : fortigate 200b firewall - SSL, IPsec
Branch office: WRVS4400N Wireless-N Gigabit Security Router with VPN
Both side have the public IP.
View 1 Replies
View Related
Feb 2, 2012
This is a new device, just initially installed about a week ago. I updated to the latest firmware. We have iphones, ipads, and Samsung Galaxy smartphones all trying to connect to this WAP at this office, but cannot seem to connect. If I power cycle the WAP, we can connect for about 5 min, then it loses it and cannot connect again. I have strong signal, device says "connecting" then immediately "disconnected"... does this on loop forever.WPA/WPA2 PSK.I don't know what to do. About to go buy an Apple WAP.
View 3 Replies
View Related
Sep 18, 2011
My WRVS4400N is not letting my VPN client through the router. I have checked the passthrough boxes for all 3 protocols. I have port range forwarding for my VPN connections to my SBS2008 box on port 1723.
View 5 Replies
View Related
Oct 17, 2012
I have a Linksys E4500 as the main router and would like to use the WRVS4400N as a bridge to extend the range of my network and also attach a NAS to it. Is this possible? I've been trying different options but have been unsuccessful.
View 1 Replies
View Related
Feb 14, 2012
Looking for a working Cisco VPN client for Windows 7. There seems to be an availabel download for a ver 5, but you have to be a reseller etc.. Where do I download the Windows 7 supported VPN client to access my WRVS4400N router? If none, should I use 3rd party - IF yes to 3rd party, which one would you suggest?
View 1 Replies
View Related
