Cisco Switching/Routing :: Default Gateway Of VOICE Providers 2600 Router
May 21, 2012
We have two MPLS circuits managed by two different suppliers, one carries VOICE the other DATAWe are to decommision the VOICE MPLS and have increased the bandwith of the DATA MPLS to carry VoIP traffic too.
At both of our sites A & B ,devices connected to the LAN have a default gateway of the VOICE providers Cisco 2600 router , which then goes into the LAN switching. (see diagram)So what I am trying to achieve is toto simply replace these 2600 routers from the VOICE MPLS provider with our own so we dont have to change the default gateways at both sites.
Testing
Our Cisco 2600 routes are plugged into each LAN switching environment with two subinterfaces configured, one for voip and the other for dataThe problem is from the router and respective subinterfaces we can get to the other sites destination without any issue, but if for example a user is at site A with Ip address 10.16.11.12/16 they cant ping the VOIP subnet at site B 10.3.11.0/24. But If a ping is issue from the Site A test router then the 10.3.11.0/24 subnet is reachable but only on the 10.3.12.0/24 configured subinterface.So i guess what Im saying is 10.16.0.0/16 from the LAN needs to be able to get to 10.3.11.0/24Note at site A 10.16.0.0/16 & 10.3.12.0/24 can communicate no problem and at site B 10.207.0.0/16 & 10.3.11.0/24 can communicate no problem.We are using IP routing, should we be using route-maps?
imagine I want to make VLAN200 workstations communicate like the show in the attachment. What would be the default gateway to be configured in the workstation? If I configure 192.168.1.1 as the default gateway (R1 interface fa0/0) is this right?That could be possible because the switch should be configured with command "ip default-gateway 192.168.1.1"?
I have two ISPs. Each is on it's own subnet connected to the 6509 MSFC/Switch. FW1 is on 100.1.100.0/30 and FW2 is on 200.1.200.0/30 subnet. My goal is route all traffice going to the Internet from subnet 10.133.3.0/24 to FW1 and all other subnets across the organization to FW2. I am not sure if I need to use ACL / Static route combo, or just a static routes or ACLS?
This would probably sound like a stupid question but it took at least 2 hours of my time so far. I have a 3750 switch where a router and a server is connected. From the switch I can ping the router and server with no issue (directely connected). But from the server I am not able to ping the router. The router and the server are in the same subnet. The router is configured as the default router for the server. I am not able to ping the server from the router either. Here's the output of the ip route from the router. The server IP address is 10.1.200.21 and the router IP address is 10.10.200.1
10.0.0.0/8 is variably subnetted, 8 subnets, 3 masks C 10.1.30.0/24 is directly connected, FastEthernet0/0.30 C 10.1.20.0/24 is directly connected, FastEthernet0/0.20
I have a Cisco 2960 ( WS-C2960-8TC-S) running 12.2(46)SE C2960-LANLITEK9-M image.I would like to set an ip route 0.0.0.0 0.0.0.0 87.101.156.97 but the current image does not allow.Will ip default-gateway 87.101.156.97 work or do I need ip routing ?The ISP has provided a /30 address and we are using an additional /29 for our network devices. I dont think this image can be upgraded. I need to forward routes directly out to ISP. [code]
I have a bit of a mystery on my hands. I had a whole campus of Cisco 3750's cache a new default gateway. Example
Cisco3750#sh ip redirects Default gateway is 10.10.10.1 Host Gateway Last Use Total Uses Interface172.16.0.5 10.10.101.179 0:00 185749 Vlan1172.16.0.76 10.10.101.179 0:01 47254 Vlan1192.168.0.154 10.10.101.179 0:00 183090 Vlan1
My question is what generates a IP Redirect packet or how does the switch know what to change the gateway to? As in my case the changed gateway was a dead IP address. So I am at lose how this happened. I this case the Host IP's are network management servers conducting polling.
I have created two vlans, vlan 1 data and vlan 200 voice. the issue is that when an on one vlan i cannot ping the default gateway of the othe vlan from my PC. An using sge 2010p switches.
below is my configuration p route 0.0.0.0 0.0.0.0 192.168.0.1 ip dhcp relay address 192.168.0.100 ip dhcp relay enable ip dhcp information option interface vlan 1 ip dhcp relay enable(code )
I'm trying to configure an IPSEC VPN + tunnel for multicast data. When the default gateway is set on the router (1841) it works fine but if I only set a route to the IPSEC peer via our gateway then the tunnel fails to come up. The end point is to a 3rd party. [code]
I found that if I add a static route for the tunnel destination via fa0/0, the public facing interface, the tunnel comes up..ip route 10.23.4.2 255. 255. 255. 255 FastEthernet0/0
and I can then ping the tunnel IP at the far end - 10.23.0.5.Why would that be? Is there a better way to do this without using a default route??
I have a design hurdle that I cannot seem to cross. I have two sites and I need the same VLAN to span both sites. I have accomplished this using L2TP but my issue is that I can no longer assign a gateway for this VLAN on the router. The 2 routers are 2821's and are connected with a dedicated fiber run.
Ant recommendation for how this could be accomplished? It would be great if I could have the same gateway at both sites by leveraging some sort of bridged interface (BVI so I've heard) but I am at a loss as to where I should start with this. Also, this is not the only VLAN that needs to traverse the link.
Recently we observed that newly installed WS-C3560CG-8PC access switches are able to communicate without a default route or default gateway.The 3650 switches are used as a layer2 access switch behind a layer3 distribution/core. They have only the management VLAN configured for IP with a single address.
The ARP table looks like there is an implicit proxy-ARP request sent for any IP address.
We definitely have no configuration whatsoever which would explain this.
Is this a new feature? We don't observe that with the older 2960-series...
Here is a brief trace of what's happening (debug arp):
host41#ping 1.1.1.1 Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 1.1.1.1, timeout is 2 seconds:
Sep 20 14:44:06.706: IP ARP: sent req src 10.1.8.41 1833.9dc9.wxyz, dst 1.1.1.1 0000.0000.0000 Vlan1 Sep 20 14:44:06.711: IP ARP: rcvd rep src 1.1.1.1 2c54.2dd3.wxyz, dst 10.1.8.41 Vlan1..
[code]....
The mac address if of course the mac address of the layer 3 interfaces of the distribution switch, no surprise here (proxy ARP is turned on by default).
Why is the 3560 sending out proxy arp requests without being told to? As far as I understood proxy ARP on Cisco IOS it only means it will reply to a proxy ARP request but will not send out proxy ARP requests by default.
Using Network Assistant in XP, plugged ethernet cable to first front port and keep getting "Failed to get Default Gateway. Check your security settings to make sure the current Java Virtual Machine is not prevented from running commands.", I have tried reducing secruity to nothing but I still get the same problem.
I also have an official cisco console cable and tried that, but Hyperterminal just does not pick it up when plugged in. I have left the IP dynamic, turned off all netowork adapters apart from ethernet, set the baud rate etc... correctly, still no joy.
We have a Cisco Catalyst 4506 running: "Cisco IOS Software, Catalyst 4000 L3 Switch Software (cat4000-I9K91S-M), Version 12.2(25)EWA14, RELEASE SOFTWARE (fc1)" I have configured the default gateway as: ip default-gateway X.Y.116.65, However, when I do, "show ip route", it only shows the 3 connected networks and states "Gateway of last resort is not set". The Command "ip classless" is not set. I read on some blogs that this might explain the issue. However, when I go into config mode (config t), I get the following output.
I have a 3560G and an ASA FW, for which I am trying to use PBR to append the next hop. The gateway is the switch VLAN address and the amended net hop is the same VLAN interface on the ASA. Trouble is, I can ping the FW from a client, but not the switch. If I remove the route map, I can ping both. Even more strange is this is the case for some VLANs, but not all!
Config:
HOST ON VLAN 96 IP 10.11.120.99 S/M 255.255.255.240
I had setup a lan infrastructure with 5 3750 stack swithes. In these 3 of them are in one stack which is acting as access switch, 2 of them in another stack which is as core switch where all the SVI is configured. Now, when i tried to ping from our edge pc which is connected in access switch to default gaeway, which is configured in core switch, the ICMP is getting delayed . But when try to ping from the same edge pc to another user PC, it is getting less tahn 1 millisecond icmp replies.
why icmp is delaying to default gateway , but working with another edge to edge pcs without any delays?
We have a 6509 series of core switches and 3750 series of L2 switches, There is no default gateway or any static routes to any IP.VLAN 1 is made admin down and another vlan is used for all communication here in this environment
Attached is configuration for reference But still I am able to take telnet or SSH. I want to know how telnet or SSH or tacacs authentication happens without any static or default route.
i am facing a problem when the client vlan is commmunicating with the default gateway on the core 3750-x.
ios in 3750-x core is 3750e-universalk9-mz.150-2.SE.bin. But, client to client communication is happening without any dealy and icmp is less than 1 ms always.
When try to ping default gateway of client vlan, it is getting delayed (variable icmp delays). Is this an ios bug?
It has ip helper configured that points to DHCP.From 4500 switch port - port x connects to 2960 port.Port x is configured as trunk between 4500 and 2960.
2960 config vlan 10 name data
All user ports are configured under vlan 10 and as access ports.Port x is trunk port connected frpm 2960 to 4500 switch allowing vlan 1 and 10 only.This switch has no default gateway configured.
We connected user PC on 2960 switchports and they were able to get the IP from DHCP server and were able to access the network? My question is how users on 2960 switch are able to access the network without ip default-gateway configured on 2960 switch?
We had a core switch (4503), distribution switches and access in our network and consists of many vlans. Almost all vlans uses DHCP Pools. But for few vlans DHCP is not yet configured. Recently one of the rogue user in vlan 1 gave the corresponding interface vlan ip of core switch (gateway) as his ip and caused a prolonged network outage for the vlan. Any way we are going to seggregate vlan 1 into different vlans, but before that we need a temporary plan to block such kinds of attack.What are the possible ways we can avoid the network outage problem even if a user gave the gateway ip to the machine?
We have a 2800 router which is configured as a Voice Gateway. For some reason, yesterday we started getting DFM notifications like the one below. We seems to get an active messages every few 10mins or so, then a few minutes later the message will clear before becoming active again...
EVENT ID = 0009NK2 ALERT ID = 0000QTM TIME = Tue 21-Jun-2011 16:06:50 BST STATUS = Active SEVERITY = Critical MANAGED OBJECT = XXXXVG1 MANAGED OBJECT TYPE = Routers.
I am connecting a 2600 router to an ISP. Interface 0/0 is connected to the ISP using DHCP. Interface 0/1 is connected to the inside providing DHCP services to the inside. At least it should only be providing DHCP services to the inside. I also have a public static IP that is NAT to a private static IP. Everything is working except the computer on the static IP. From the router I am able to ping inside and out from each interface. I am able to ping both interfaces of the router from the computer on the static IP but I cannot ping outside the router. If I do a debug all I see a reject for the gateway of the static IP but it has “mobile IP” in the text string. Not sure what mobile IP is relating to. Networks are as follows:
0/0 DHCP 10.X.X.X 0/1 192x.x.x Static 75.X.X.X no ip dhcp use vrf connected ip dhcp excluded-address 192.X.X.1 ip dhcp excluded-address 192.X.X.2 ip dhcp pool CLIENT
I have a 2600 Router series and I cannot remember the Password. I have tried following web pages that state to use control Break on the boot up but its not working.can reset that pw and write erase my configuration file?Here is my boot up. I have tried hitting control break at the very beginning over and over and then again when at the cold boot it has not worked....
System Bootstrap, Version 12.2(7r) [cmong 7r], RELEASE SOFTWARE (fc1)Copyright (c) 2002 by cisco Systems, Inc.C2600 platform with 131072 Kbytes of main memory program load complete, entry point: 0x80008000, size: 0x1c9468cSelf decompressing the image : ######################################################################################################################################################################################################################################################################################################################################################################################################################################################################## [OK] Smart Init is enabledsmart init is sizing iomem ID MEMORY_REQ TYPE00036A 0X000B3B80 C2610XM Single Fast Ethernet 0X00098670
I have a cable modem with my 2600 Router and i have a little speed problem when I'm going out to the web via my F0/0.. according to regular speed test sites my speed is around 20mbps but when i hook up to my modem directly i get a solid 40mbps.. now I've changed my Cat 6 cable from my modem to my router and this are my settings in the router.
[Code] ...........
I see some drops and lost carriers but not sure what those might mean?
I have been saving money to build my ccna voice lab. Recently I bought 2600 and 1700 series routers.One of the 2600 router needed a password recovery so after a refreshing nap i got to work.
During the password recovery procedure, I mistyped confreg 0x1242; by the time I realized my mistake, my computer screen was full of "C" characters Now the whole story is i can not console into it.
Edit:After some research, I found If I use the baud rate 1200 in hyperterminal.i will be able to console into it.When I did that, I noticed that Rommon kept incrementing as:
I recently lost my configuration when attempting to reset the password for our Cisco 3560g switch, the switch connects to a Cisco 4506 switch via fiber back to our main office.
I have the switch temporarily routing all traffic to our 4506 by using the default route of 0.0.0.0 0.0.0.0 10.10.10.254 but the same switch is connected to a cisco 2600 router that is on a 10.10.20.0 network and the 3560g is on a 10.0.0.0 network.
Host computers sit on the 10.0.0.0 network, but they need to go to the 10.10.10.0 network for internet, domain, etc the same computers need to go to the 10.10.10.20 for remote connections and other services.
The address of the 3560g is: 10.0.0.254 The address of the 2600 is 10.10.20.2
When the default route is set to 0.0.0.0 0.0.0.0 10.10.10.254 (4560 switch) domain browsing works perfectly When the default route is set to 0.0.0.0 0.0.0.0 10.10.20.2 (3560G) switch I can ping any ip address in that range and the address on the other interface ip adresses on the 2600 (eg. 10.10.30.1 / eth2, 10.10.40.1/ eth3 etc.)
I have tried to weight the routes after adding them both to the configuration, but that doesn't seem to work at all.
The switch connects back to the office via vlan1 (10.10.10.253) The 2600 is connected to port 1, which belongs to Vlan2 (10.10.20.1) And client computers sit on ports 2-12 belonging to Vlan10 (10.0.0.240)
So in a nut shell, how would I go about setting it up so the machines on 10.0.0.0 can connect to 10.10.20.0 and 10.10.10.0 and vice versa at the same time? Everything was working fine until I rebooted the switch (3560g), which makes me think the person that configured this before me didn't save the running config to the start up config.
I was about to portforward to be able to make an minecraft server. but i can't connect to the default gateway 192.168.1.1 so for the moment i use hamachi but i would wannt to portforward it to make it easier for others to join.
I have to configure router 2811 for Data and Voice network.However I have only one Fast Ethernet interface. [code]
what else do I need to configure on switchport on which Avaya phones are connected.And is there any extra command, i need to configure on the router and 2950 switch.
My network generally runs older routers (2600 series) with 16 port switch modules (NM-ESW-16). This has always worked great since I can configure the router and the switch ports on the fly, making changes to either as necessary. Well I am upgrading to 2811 routers, and we wanted to get gigabit ethernet ports on our switch modules. I think I made an error when I purchased a few of these switch modules: NME-16ES-1G.
The first problem, is that the switch ports don't even show up on the router config, I have to establish a session into the switch, (And I can't seem to get back to the router unless I manually switch off power and restart). I don't like this type of switch module, it's like I'm running a completely separate device, and while having a layer 3 switch is cool, It doesn't let me setup routing protocols so I don't like doing it this way. I want to go back to using a switch module that simply adds a ton of ports to my router like the NM-ESW-16. (Note: The NM-ESW-16 does actually work in the 2811 and would be perfect if it were Gigabit speed.)
The seconds problem is that the NME-16ES-1G isn't actually a Gigabit switch. It has a single gigabit port, but the 16 ports are all Fastethernet, and not gigabitethernet. So ideally, I am looking for a switch module that I can fully configure from the router interface that has 16 gigabitethernet ports, and works with a 2811. IE I want to do this. [code]
