Cisco Switching/Routing :: Accessing WRVS4400N Web Interface On LAN?
Sep 13, 2012
I have Comcast as my ISP and their Small Business Gateway Router/Firewall. I purchased a WRVS4400N and configured them like this:
Comcast Router/Firewall - 10.1.10.1
Cisco WRVS4400N - 10.1.11.1
I turned DHCP off on the Cisco so that wireless devices that connect to it get a 10.1.10 address from the Comcast device. Now, I am completely unable to connect to the web interface of the Cisco, whether connected to it wirelessly or even if I plug directly into one of the LAN ports on it. I have one of the LAN ports on the Cisco connected to one of the LAN ports on the Comcast. What am I missing here? I'm guessing I'm not able to see the 10.1.11 addresses when I am getting a 10.1.10 address from the Comcast, even though I'm connected to the Cisco?
View 6 Replies
ADVERTISEMENT
Dec 27, 2012
I am trying to make my LAN to work at home. Its pretty small but I am bearly an smart user, noobie if so.I have a Motorola Cable Modem model SB5101 receiving the internet from Shaw Cable.from there I have an ethernet cable to my switch (Cisco SE2500) from there I have two ethernet cables coming out, one goes to my PC and the other one goes to an Airport Extreme so our laptop.I am just here double checking this info... sice this is an unmanaged switch I guess there is no way of accesng an interface to make this happen.I just hate spending the money in something I wont be using just because I dont know whats going on.
View 7 Replies
View Related
Apr 9, 2012
I am setting up a link between buildings that uses wireless links. I'm using Layer 3 routed ports on 2 3560 switches to handle the routing between sites. Normally I would just put these in a /30 and then the switches handle the rest. However, the wireless access points have a web interface for managing them that I want to be able to access, but it's only available on the single NIC that also carries traffic. What would be the best way of making this work? Should I make the link a /29 and give the access points an IP in the same range? If this is the case what do I use for the default gateway for the access points?
I have included a diagram to try to explain the issue clearer. The IP addresses in black are what I would do if this were a standard cable (and indeed this will work, but I wont be able to access the admin interface of the wireless AP) and the red ip addresses are the alternative if I use a /29 (but as I said, I'm not sure what to use for the default gateways).
View 1 Replies
View Related
Aug 7, 2011
Recently I'm having issues with accessing local services via external IP. Short description of configuration:
- sub.mydomain.com pointing to my external IP.
- few web services running on my local server with reverse proxy on Apache 2
- firewall on router enabled
- ips on router disabled
- single port forwarding: WAN 80->Lan 443, WAN 443->LAN 443
- accessing my services via sub.mydomain.com/service1, sub.mydomain.com/service2, etc
- I had to create a new rule in internet access policy allowing LAN, any, any to
Basicaly if I go no matter if I type http or https I will be redirected on 443. That configuration has beed working without any issues for a month. Recently I have increased the amount of DHCP users and suddenly it's not working any more. I can still access my services from outside but not from LAN.Restarting router does the trick for a while,sometimes for few minutes, sometimes longer.Enabling IPS is the way to go but then I'm limited to around 22Mbit/s. I have no idea what happend.What I can't understand that it was working, suddenly it's stopped and there are two solutions, either to enable IPS or to restart router?
View 1 Replies
View Related
Dec 11, 2011
I'm trying to access the CLI on a Cisco Catalyst 4003 switch.
It has a WS-X4012 Supervisor module, a WS-X4232-L3 - Layer 3 Routing Module, and a WS-X4418-GB switching module. Well to make things short and sweet, I don't have a computer with a COM port on it. I need to access the CLI to setup the switch, and I only have a ethernet port on my computer and I'm running Ubuntu 11.10. How to access the CLI? This is just a second hand switch I picked up.
View 7 Replies
View Related
Jan 21, 2013
I have a 6509 running catOS that i had to do some routing changes on this weekend. I guess i forgot to set the default route so now I can't login or ping from outside the local subnet and because of acl restrictions on the vty lines can't login from a device within the local subnet. I can login to the sup module so i'm trying to figure out if there is way to get to the switch from the sup like you would access the sup from the switch by inputting the command session 15 or session 16, is there a way to do the reverse to get to the switch from the sup?
View 1 Replies
View Related
Sep 17, 2012
I've attached the file which shows the issue which im facing in reachability between a PC to GNS3 router.
Home Broadband ->LAN (192.168.1.1) ---- Win 7 (192.168.1.3) -->Loopback Adaptor(192.168.137.1)---->GNS3(cloud-->Router (192.168.137.2))
Win XP (192.168.15)
[Code]....
View 6 Replies
View Related
May 1, 2012
I have a Cisco ASA 5505 and I have my internal and external interfaces configured but I currently cannot ping from the inside to an IP Address on the outside. I had this setup and working and I have another set of equirement that I am replacing that is working with my service provider so I know it is a configuration issue. When I ping 4.2.2.2 for example I get:
Destination host unreachable
Do I need to add a static route from my inside interface to my outside interfaces?
: Saved
:
ASA Version 8.2(5)
!
hostname pxasa
[Code].....
View 2 Replies
View Related
May 9, 2012
Switch: SG500 VLANS: 1 (default) xxx.xxx.0.0/24 network, 150 (device management vlan) xxx.xxx.150.0/24 network I am plugged into port 1. This is a trunk port with VLANs assigned as follows: VLAN 1 (Default) - UntaggedVLAN 150 (dev mgmt) - Tagged Device is plugged into port 2. This is an access port with the following VLAN assigned: VLAN 150 - Untagged Why is it I cannot communicate with the device on port 2?
View 1 Replies
View Related
Feb 5, 2013
Can I get access on the WAN Ip from an oeap600?I can't connect trough [URL]
View 3 Replies
View Related
May 19, 2013
Our client having one c3750 with ipbase license switch.They are connected server and end switches to that switch.Our customer want to increase the speed to accessing the server at that time I am told to use etherchannel.Customer happy about this and implement the etherchannel configuration.Now i need to configure etherchannel upto 4 physical link.server are connected on port no Ge1/0/10,they want to bind four phical link GE1/0/10-13.how to configure etherchannel in this switch?
View 1 Replies
View Related
Nov 13, 2012
we recently upgraded from an RVS4000 router which didn't have this issue.
the problem; Internal users from Site A cannot access the external owa address.From Site A i can successfully ping both the external/internal IP addresses/names and they resolve correctly, including pinging the address ('mail.company.com") resolves correctly to the external ip address.
[code]...
View 1 Replies
View Related
Apr 12, 2012
I only want SSH to be allowed when accessing this switch, but telnet is still allowed, why? Whe authenticate via radius.version 12.2no service padservice timestamps debug datetime msecservice timestamps log datetime msecservice password-encryption!hostname 3750!boot-start-markerboot-end-marker!logging buffered 64000logging console informationallogging monitor informationalenable secret 5 $1$1K$!username admin privilege 15 secret 5 $1$Bs$cLHusername users view priv3 secret 5 $1$Jfnviwp!!aaa new-model!!aaa authentication login default group radius localaaa authentication enable default lineaaa authorization consoleaaa authorization exec default group radius local !!!aaa session-id commonclock timezone GMT 0clock summer-time BST recurring last Sun Mar 2:00 last Sun Oct 3:00switch 1 provision ws-c3750g-12sswitch 2 provision ws-c3750g-12ssystem mtu routing 1500udld aggressiveno ip domain-lookupip domain-name CB!!login on-failure loglogin on-success log!!crypto pki trustpoint TP-self-signed-3817403392enrollment selfsignedsubject-name cn=IOS-Self-Signed-Certificate-3817403392revocation-check nonersakeypair TP-self-signed-3817403392!!crypto pki certificate chain TP-self-signed-3817403392certificate self-signed 01 3082024C 308201B5 A0030201 02020101 300D0609 2A864886 F70D0101 04050030 31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274 69666963 6174652D 33383137 34303333 3932301E 170D3132 30343133 31303539 33395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649 4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38313734 30333339 3230819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281 8100C31D AE6DD8B5 56245317 AD96F4F4 727385D4 97A5B138 488A215E 4294FC40 1C5B2F26 2B75E1CF E562F240 118F2F50 0CFF2449 16EC66EA 2D489F5F F36BFD05 ACCC79CA DDDA984D 4CB7AB DD95A5E0 9274A225 3F5A3634 DEBF1A2A 416E2189 B35B4473 C7D5EE2C E3D41675 A86F31CD.
View 3 Replies
View Related
May 12, 2012
I've been assinged a task to connect our branch office with the head office, so that the IP Phones in the branch office can be connected to Cisco Call Manager at head office. To accomplish this they have given a Cisco 877 Adsl router a 10 Port 3-COM POE Switch and 3 Cisco 7911 IP Phones. Currently the there are 7 PC's Connected to 3 COM Switch which indeed is connected to a Internet router(Speedtouch). First I thought of connectiong the IP Phones to the Ethernet Port on Cisco 877 router but had to change my mind as the ports are non POE ports and I do not have adapters for IP phones. So I've decided to connect the Phones to 3 COM Switch and create VLAN's (DATA & VOICE) and pass the DATA traffic through Speed Touch and Voice traffic through the Cisco 877 router, but when I tried accessing the 3-COM Switch via Console I am getting Junk language( See the attachment for reference).
how can I pass through this Junk messeges and access the switch
[Code].....
View 3 Replies
View Related
Jan 24, 2013
I’m working with a managed switch that has three V LANs setup on it. Recently the domain changed and the wireless V LAN can no longer access the internal website. I found access rules, in the switch that allowed the wireless V LAN to use the DNS server on the private/staff V LAN. Their DHCP scope is on the switch and DNS is set there. The Website is also on the V LAN with the DNS server. This configuration totally cuts out external DNS usage. It stopped working though. It is as if when things switched on the Domain the wireless users were denied DNS requests. The switch was not touched at that time. I’m looking at it though and it seems that I may have conflicting rules.
The version is 12.2. I believe its a Catalyst 2600~
DHCP scopes: ip dhcp pool INSIDE network 192.168.1.0 255.255.255.0 default-router 192.168.1.1 dns-server 192.168.1.6 192.168.1.4 domain-name saline.lib.mi.us
ip dhcp pool WIRELESS
network 172.16.0.0 255.255.255.0 default-router 172.16.0.1 dns-server 192.168.1.6 192.168.1.4
Here is the V LAN Setup:
Interface Vlan1
ip address 192.168.1.1 255.255.255.0
[code]...
Here are two access lists that should be allowing the traffic from 172.16.0.0 into the list IPs/Ports. These do no work.
ip access-list extended WIRELESS-PRINT
permit tcp 172.16.0.0 0.0.0.255 host 192.168.1.12 eq 30044
permit tcp 172.16.0.0 0.0.0.255 host 192.168.1.12 eq 21326
permit tcp 172.16.0.0 0.0.0.255 host 192.168.1.12 eq 6987
[code]...
During my testing I removed the Deny rule and everything worked. deny ip 172.16.0.0 0.0.0.255 192.168.1.0 0.0.0.255
However, the “ permit ip any any “ rule, makes all the port rules pointless because when this rule is in place solo, I can ping and access everything on the 192.168.1.0 network. Is there a way to deny everything, except what I permit? Because when I remove the ip any any, then they cant even get out. Perhaps there a better way to say, the wireless users can get out but only get into the sub net over specific ports? I have a feeling it may have not be thought out entirely when initially created. However, the big mystery is that it worked before secondary domain controller failed.
View 1 Replies
View Related
May 22, 2012
I have a LAN with 6 vlans and a 2821 router. By default, intervlan routing is enabled for all vlans, however, I want specific vlans to be denied access to others, though all should still be able to use the Internet being served from GE/0.
View 6 Replies
View Related
Jul 5, 2011
Right out of the box, the WRVS4400N [firmware v2.0.1.3] I just purchased says the WAN interface is DOWN; and it simply will not obtain an IP address from the Arris TM602G cable modem it is attached to. Internet still runs great on the old WRT54G. Is this WRVS4400 DOA? Or is there some arcane setting the quickstart guide overlooks? OR?
View 2 Replies
View Related
Dec 2, 2012
I have a scenario where there is an ASA5510 configured as follows:
Interface0 = Outside
Interface1 = LAN
Interface2 = DMZ
Interface3 = unused
Running ASA version 8.2[1]
All network operations are fine, as are the IPSEC tunnels to other branch offices, and the incoming SSL VPN accessed via the IP address assigned to the external adapter.
My problem is that I have a device on the DMZ that needs to access the AnyConnect service hosted on the external adapter so that it can access LAN resources. When I try accessing it, I see the following errors appearing in the debug log:
3Dec 03 201212:10:50710003[DMZ client address]51031[AnyConnect ExternalAddress]443TCP access denied by ACL from [DMZ client address]/51031 to DMZ:[AnyConnect ExternalAddress]/443 If you look closely, it suggests an ACL issue from the DMZ client to the external AnyConnect IP address BUT it suggests the Anyconnect IP address is on the DMZ interface.
View 1 Replies
View Related
Dec 21, 2012
I have a new SG300-28P, and have had occasional issues with being unable to connect to it via anything other than the serial port. I have connectivity between my machine and the switch (tested with ping each way), and in fact, have the same problem if I take a laptop to the switch and connect them directly.What happens is that though the switch is operating normally, http, https, ssh and telnet attempts to access all fail in one way or another. Ssh and telnet either yields no response or a refused connection (even though those services are enabled). For http and https, I'll occasionally get enough of the web page to be able to tell what it is ... but attempts to log in just don't work.While this is happening, the CPU and packet load on the switch is very, very low.Rebooting didn't work entirely, though it may have made it better. Resetting to factory defaults and then reconfiguring makes it work.This is using the latest firmware: 1.2.7.76.
View 3 Replies
View Related
May 16, 2013
i have router 2911
pub ip: 121.97.65.61-74
interface gigabitethernet 0/1
ip address 121.97.65.61/28
[Code].....
and other ip will drop/kick/disconnected automatically
how to implement this on access list
View 6 Replies
View Related
Mar 31, 2013
I have a PIX 515e running version 7.2(4).I have 2 interfaces - DMZ3 (sec lvl 50) and LAB (sec lvl 100) behind the pix. There is also the OUTSIDE interface (sec lvl 0) which connects to the internet.In DMZ3 I have a webserver - x.x.124.217/24 (host is NATed via static command to public IP)In LAB I have a server - x.x.1.203/24 (entire range is NATed via NAT/Global statements to public IP)The server in LAB needs to access a webserver in DMZ3. From the internet both of these hosts have public addresses that are NATed into the inside addresses. I can reach the webserver from the internet, but not from the LAB interface.I think I have to add a static command so that the LAB host can access the DMZ3 host without accessing the internet.
View 3 Replies
View Related
Jan 24, 2013
I am not able to access the web interface of the router.No, i am not using cisco cloud or smartlink .. yes, it has the latest firmware (Ver.1.0.14.129982).Yes, I might be able to get to it if i shut down the router and turn it on again a few minutes later, but the problem is.. why? why do i have to interrupt connections and not have internet to log into the admin web interface of this device? Is there a known problem with it that makes the webservice go down?.. or to take extremely long to respond and thus the browser to quit on it throwing an error?
View 3 Replies
View Related
Mar 28, 2013
I recently installed a couple of Cisco Aironet 3600 Series Wireless Access Points at a remote site. While I was at the site everything seemed OK, The clients were able to get connected to the access points, the guest network worked fine, I could SSH into the access points, and I could ping them. The problem is when I went back to my home site I tried to SSH into the access points through an ASA IPSec VPN Tunnel and it couldn’t find it. When I try to ping the access points they “time out”. I can ping and connect all other addresses (via RDP, HTTP, etc..) on the same subnet which should rule out an access list problem. A couple of notes to be aware of:
The WAP’s have the Autonomous IOS installed (Version 15.2(2)JB) The WAP’s are connected to Dell PowerConnect 5724 (Not by choice.. We are a Cisco shop, these were already there and have plans this year to replace)
I can ping and SSH with Putty to the WAP’s from the local subnet I cannot ping or SSH from a remote subnet to the WAP’s. I can access all other IP’s and Computers from a remote subnet.
View 12 Replies
View Related
Nov 8, 2012
Using Cisco 1811W with IOS 15.1(4)M5. FE0 and FE1 are connected to the internet via Billion ADSL2+ modems operating in bridged mode. Both lines are similar so I'll only discuss FE0 from this point on.Local subnet is 192.168.128.0/24 with router on 192.168.128.1 as default gateway. Modem on FE0 has static LAN IP of 192.168.128.2 and when plugged into the switch on the LAN side, the web interface can be accessed at that IP address. Unplug the modem from the switch and plug it into FE0 and it now works as desired providing access from the router to the internet but the web interface is no longer accessable at 192.168.128.2
I tried adding a static route "ip route 192.168.128.2 255.255.255.255 FastEthernet 0" and also "ip route 192.168.128.2 255.255.255.255 Dialer 1" Neither worked and presumably it isn't that straight forward. Possibly NAT or other routing configuration required.Although there isn't much to configure when in bridged mode, I mostly want this setup so I can look at the ADSL connection status and for the modem to write messages to syslog (works when plugged into switch on LAN side), or SNMP access.
View 3 Replies
View Related
Oct 30, 2012
Got an ASA5525-X with 8.6 release. We have an inside interface (10.11.1.0/24) and a DMZ interface (10.254.1.0/24). On that DMZ interface theres an SMTP server; by using the Public server feature in ASDM we created a rule so we have mapped the 10.254.1.29 internal ip to an external ip 217.x.x.x Everything is fine; working ok, but for several reasons we need to access the public ip 217.x.x.x from an inside ip (10.11.1.10). I tried to do it by creating an exemption for the dynamic nat; if i don't do that i have a 'deny ip spoof from...' message rolling on my syslogs.Seems to do the trick.....but only for pings! i ping the public ip from the inside ip, and got the reply from the internal ip on the DMZ. But if i want to telnet port 25 from inside to public; its not working.
View 7 Replies
View Related
Feb 13, 2013
Query regarding the Cisco WRVS4400N and Valet M10 routers. How to block the web interface (router login page) from wireless accessibility?
-Our Business is a hotel, so untrusted intruders are our guests.
-Our ISP seeks hotspot methods that we cannot implement.
-Our only solution is routers and an AP to extend internet wirelessly.
the login page or configuration page of the router is always accessible via the gateway address.if the gateway is 192.168.1.1, then a guest can just enter this address and try to guess the password. hacking tools add to the problem.the LAN is working but it is not of certification standards.I seek a way to block wireless access to the gateway login page or physical access only.
View 1 Replies
View Related
Apr 8, 2012
I have a WRVS4400N router in a remote office. I have connectivity to the office and computers there. But the web interface for the router is failing to come up. This happens once every few days or so. Is there any utility or something that I can use to remotely reset the router without making use of the webinterface or having physical access to the router?
View 4 Replies
View Related
Mar 12, 2013
Quick question here. Using 3750E series switches with multiple VLANS configured. These switches serve as our 'core'. I have SVIs configured for the different VLANs and add inbound ACLs in each of the SVIs to control traffic between VLANS. This switch also terminates a P2P Ethernet link which connects to our Colo facility. The port used for this is configured as an L3 port. I noticed today that I was able to send traffic across this L3 link that I thought should have been blocked by an ACL I had in place but it wasn't. So the traffic flowed from a port in say VLAN 20 across this L3 link (assigned with an IP address). Would this traffic flow not cause traffic to be checked against an ACL applied in the inbound direction on the SVI of VLAN 20 (int vlan 20)? Traffic does get checked when routing between SVIs. Why would it not get checked when routing between SVI and L3 interface?
View 2 Replies
View Related
Mar 7, 2012
On a pair of my CISCO7609-s (engine:sup720-3B IOS Version:12.2(33)SRD4),some interfaces is configured as routing interface but also them are attend MSTP caculation and i really caught BPDU packet go out from these ports. [code]
View 1 Replies
View Related
Feb 26, 2013
We got a layer3 switched network, with one vlan for every switch, routed by a cat4006. [code] So can we put some ports on different switches in, let`s say vlan 50, with different ips? For example, Port 0/3 on Switch 1 and 0/8 on Switch 2, but keeping the ip of the "old" vlan? Or is it necessary to configure a specified vlan interface with ip-adress for every vlan if i want to route it?
View 4 Replies
View Related
Jan 7, 2012
I am a recent student to Cisco products and I have purchased some (what I thought was good) lab equipment to learn with on a budget. What I have is a 2948G switch and a 2620 router. My issue is this: the router has only one fast Ethernet port. Is it possible to use V LAN's and V LAN Interfaces on the router and switch to somehow emulate a second interface to connect to a WAN or sub net?
View 11 Replies
View Related
Aug 30, 2010
i've got a Cisco 877 router connected to an ADSL link. i'm using the show dsl interface atm just to have a look on its performance. i've tried to search on Cisco website on how to interpret the output but a blog gave me more info [URL]. My question now is, what readings do i consider? is it on the left (ATU-R) or on the right (ATU-C)?
877ROUTER#sh dsl int atm0 ATU-R (DS) ATU-C (US)Modem Status: Showtime (DMTDSL_SHOWTIME)DSL Mode: ITU G.992.1 (G.DMT)ITU STD NUM: 0x01 0x01Vendor ID: 'ALCB' 'ALCB'Vendor Specific: 0x0000 0x0000Vendor Country: 0x00 0x0FCapacity Used: 31% 85%Noise Margin: 34.0 dB 10.0 dBOutput Power: 16.0 dBm 12.0 dBmAttenuation: 10.0 dB 6.0 dBDefect Status: None None Last Fail Code: NoneSelftest Result: 0x00Subfunction: 0x15Interrupts: 1453 (2
[code]....
View 3 Replies
View Related
May 15, 2012
I notice strange input rates on the interfaces of a 881 router:
show int fa4
..
MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec
..
30 second input rate 85000 bits/sec, 11 packets/sec
30 second output rate 16000 bits/sec, 9 packets/sec
221434 packets input, 287889736 bytes
..
..
142286 packets output, 15683576 bytes, 0 underrun
How can 11 packets/sec be 85000 bits/sec -- average packet size of 8KB?. The total packets input (221434 packets versus 287+ MB) also shows this kind of a 10KB+ average packet size. There is ahardly any traffic through the router when the above snapshot was taken so 11 packets/sec sounds right, but not the 85Kbits/sec.
The router is running c880data-universalk9-mz.151-4.M4.bin and config is simple with a single Vlan (inside NAT) with a public IPs on fa4 and a couple of IPs for dynamic NAT. Everything works fine except for these interface counters that look worng.
View 1 Replies
View Related
