Cisco Switching/Routing :: Router On Stick Configuration / Plugged Into ASA 5505
Feb 27, 2013
I have not been able to figure out the resolution. The basic premise is to have 3 inside vlan networks controlled by a 1900 series router. Then have that primary LAN router connect to the inside of my ASA5505 Basic, then go out to my ISP Gateway. I have tried hundreds of different static route configurations on my router and asa. I have tried equally as many NAT and PAT configurations, but nothing seems to work. I have even tried using all the commands (specific to my topography of course) on this weblink from cisco: url...
View 12 Replies
ADVERTISEMENT
Nov 30, 2012
It doesn't seem like I can set up trunking (dot1q) on this device. Isn't it supported on this device? Can I still set up VLANs with the router-on-a-stick concept working internal in the device, i.e no external interfaces/subinterfaces being configured? If so, can I then connect VLANs to other switches? I have:
-876 ISR
-Catalyst 2960
-SLM2008
I know the small biz switch supports VLANs and I think trunking as well--obviously the 2960 supports it. Is there a way with these devices to configure one VLAN for servers/net devices and another for regular end-user computers so that they still talk to one another, or do I need a different router in the mix?
View 3 Replies
View Related
Oct 12, 2012
In my preparation for my coming CCNA certification I am experimenting with different network configurations. In my test network I am currently working with a "Router on a stick" setup. A Cisco 2611 router connecting a Cisco 2950 switch. VLANs configured on the switch and subinterfaces + dot1q encapsulation configured on the router. Switch only supports dot1q.Router's Eth0/1 is connected to the Switch Fa0/24 port which is also set to trunk mode. I am using a normal Cat5e twisted pair cable to connect the 2 devices.
VLANs are working since I can connect a workstation to an access port for example fa0/2 (vlan2) and get Internet access.I can also ping any of the subinterfaces of the router from the workstation.With the current setup I am not able to ping the switch from the router, or the other way around, so in other words I can't remote manage the switch from a telnet or SSH session with this setup. What I am missing?Just to be clear I am pinging the switch directly from the router (Router2611#ping 172.16.100.2), so please ignore all static routes and OSPF. [code]
View 3 Replies
View Related
Jun 1, 2012
I am trying to configure router on a stick with 2811 and 3750, but I just cannot get it to work - vlans are not getting propagated from 3750 to 2811: 3750:
Code...
View 1 Replies
View Related
Mar 17, 2013
i have a simple router on a stick config which is providing dhcp to a customer SSID. however i don't want employees to stay on it and eat the band width since its open. the lease is set to an hour, is there anyway that i could set it so that once your lease expired it can't be renewed for 4 about 8 hours? I am using a cisco 2600 router in this setup.
View 1 Replies
View Related
Jul 10, 2012
Has anyone implemented a working Nat on a Stick?I am looking for 3750 configurations for Nat on a stick.Our users need to access the camera monitoring from home as well as in work.We will like to setup the monitoring software with public address (and port) of the cameras, as the users use the same configuration at home and work.DNS will not work for us as the monitoring settings only accept IP.
View 4 Replies
View Related
Jun 24, 2012
I am interested in learning and setting up VPN IPSec with Cisco ASA 5505. I've managed to successfully setup VPN andcan connect to it from outside and browse securely to the outside/internet via tunnel. However, once I am connected to VPN, I cannot access any of my internal hosts/servers via VPN client. I am wondering it its a missing ACL/NAT...ASA Version 8.2(5)
!
hostname ciscoasa
enable password xxxxxxxxxxx encrypted
passwd xxxxxxxxx encrypted
names
[code]....
View 1 Replies
View Related
Aug 13, 2012
I have been asked to setup a VPN on a stick setup so that people on the move can use the encryption of our SSL VPN for web browsing etc using Any Connect. This works fine, whats my ip shows the external IP of the office when connected to the VPN and all traffic is pushed down the pipe. The only issue is when connected I have no access to local resources such as IP printers etc. How to do this on 5505?
View 6 Replies
View Related
Mar 23, 2013
WAN link plugs into a 2821 Router with an switch module in it. About 8 clients are plugged in to the 2821.2821 connects to super cheap netgear switch (I'm 99% sure it's stripping dot1q headers) via one of the ports in the switch module. About 4 people are connected to the netgear.Now, I sent a catalyst 3560g to the branch because they wanted to extend into a new building. Someone decided to run a single cable from the netgear to the 3560. On the 3560, I have about 5 clients and a couple of APs.
So it goes 2821 -> Netgear -> 3560. All of these are single connections.When the 3560 gets plugged in, all clients on the netgear lose their connection, and nothing on the 3560 works. It happens almost instantly. I can't figure out why connections are dropping. The APs have about 4 VLANs onn them, and the PCs are on their own VLAN (the native VLAN).
View 3 Replies
View Related
Aug 27, 2012
I have a Cisco Wireless LAN Controller WCL2112 model. It's currently plugged into an HP Procurve switch on a trunk port. That HP switch is plugged into my Cisco stack on a trunk port. I can reach the WCL just fine through the LAN. But when I plug the WCL directly into the Cisco stack on a trunk port, I can't reach the WCL at all, unless I connect to it over wireless. The interface shows it's conneccted and up/up. But no communications are sent across the line. I did a wireshark and can see only ARP request from the WCL. The trunk port on the stack is set to:
interface GigabitEthernet1/0/1
switchport trunk encapsulation dot1q
switchport mode trunk
The WCL has 3 VLAN's on it and the SSID of VLAN 1 is our office wireless. If that matters. .The Cisco Stack is 4 switches. cisco WS-C3750X-48P
View 3 Replies
View Related
Jul 17, 2012
I am position to migrate from CatOS 6509 switch to native IOS 6509 switch. long time ago, there was some site to convert automatically based on copy and paste onto the tool, but i can not find.
Does anybody know how to convert CatOS configuration to Native IOS configuration ? It is not IOS change, but it is configuration convert.
View 1 Replies
View Related
Jun 13, 2012
about to install first UC320w and wanted some sample 800 series router configurations showing required port fowarding, ACL entries and QoS examples.
View 5 Replies
View Related
Mar 27, 2012
I have recently configured a cisco 1921 router for internal routing on my network. Here is what i am trying to accomplish:
Main network 10.65.1.0 mask 255.255.255.0- all office devies and computers.
Second network 10.65.2.0 mask 255.255.255.0 - All plant equipment machinery and production lines
i have configure gig 0/0 for my company network and gig 0/1 for my plant network. I can ping the router from both networks but am unable to route traffic betwenn them. what am i missing?
View 8 Replies
View Related
Feb 11, 2013
Im using a 2801 router with a nat configuration.
The issue im having is the nat seems to be allowing only one machine at a time through the nat.
the range i am testing is 192.168.243.0
The firmware is c2801-spservicesk9-m
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
[Code].....
View 5 Replies
View Related
Dec 2, 2012
the router IPSec VPN config for remote users using Cisco VPN Client 5.0.07
Router 3945 IOS C3900-UNIVERSALK9-M Version 15.1(4)M4
Here is VPN related config part and log from router and client.
aaa new-model
!
!
aaa authentication login default none
aaa authorization network default none
!
!
crypto isakmp policy 5
encr aes 256
authentication pre-share
[Code]...
I highlighted strings with possible problems of of unabling to connect but doesn't know what to do with it.
View 4 Replies
View Related
May 21, 2013
i have floor with 10 users with DATA vlan and VOICE vlan , WIRELESS vlan , my questions :
Basement floor Core switch fiber -----> my floor switch <--------my internet DSL router827
- In this scenraio the switch in my floor will be as L2 or L3 ?
- What is the configuration it will be in the switch if it is L3 ?
- What is the configuration it will be in DSL router with Subinterfaces for each vlan ?
Any sample for configuration that can work for switch nad DSL router ?
View 3 Replies
View Related
Jan 11, 2012
I am new user of cisco router i can access the hardware and login in the account but the problem is if i use the command "enable" asking for a password, old I.T. personnel who setup this router already resign.
View 2 Replies
View Related
Sep 23, 2012
my trouble is I have a cisco 857w and I have never configured a wireless config for a cisco router before. Ok so i have had a go through the web interface (i know, last resort) and still no joy
Basically what im looking for is to have a visible (broadcast ssid) network with a password (WEP/WPA/WPA2, not picky) and it to be joined to the same vlan as the ethernet ports (VLAN 1).
View 1 Replies
View Related
May 22, 2013
I have a Cisco 2811 Router. I have two VLANS on the router. The first one of course is VLAN 1 and the second one is one that I created from reading everything from this forum.. it is called VLAN 531
On VLAN one I have an IP address of 10.8.1.1 and on VLAN 531 I have an IP Address of 172.16.1.1, now what I can do is this... I can.. from a workstation on the 10.8.0.0 segment, ping 172.16.1.1 and one server on that segment that has an IP address of 172.16.1.50, which is fine, but what I really want to be able to do is ping our email server which is on a 10.21.0.0 segment and I cannot. Any commands on what I would need to do to make this work as I would like the 172.16.0.0 segment to ping any other part of my LAN of my choosing.
View 12 Replies
View Related
Dec 9, 2012
Here is my current config, how to enable and setup NVI on a cisco 1941 router.i think it would fix my issue but i'm unclear on how to implement it to test.
i would like to be able to access an internal server from an outside address.
View 4 Replies
View Related
Dec 9, 2011
Will 2811 Router with 4 switch port module, How to do dual ISP configuration on this router.
View 10 Replies
View Related
Nov 10, 2011
I have a 1711 Catalyst router hooked up behind a cable modem. I configured the router, copied running-config to start up-config then wrote it to memory with "write mem". I unplugged router to move it and when I plugged it back in, I had to start from scratch.
Is this normal, or should router be able to save configuration if powered down?
BTW, I'm using Putty to access router console. Is that the hot setup for Windows 7 or is there something better?
View 5 Replies
View Related
Aug 15, 2012
I currently am trying to program the config for a 1720 router however i cannot get the config to stick. I boot up to the command prompt put in all the configurations use the "write mem" command and then hard reset the router but when it boots back up I get the initial system configuation dialog.
I have tried booting to the rommon prompt and typing "confreg" and following the prompts keeping all options set to no except for this setting
"enable "ignore system config info"? y/n [n]: Y"
Is set to yes. but when i get to the end of the config it just loops and starts over with
"you wish to change the configuration? y/n [n]: Y"
If i choose yes it loops if I choose no it goes back to the rommon prompt.
View 5 Replies
View Related
Oct 3, 2012
i have to configure 80 Cisco 876 routers, so i planned to copy config via tftp from one configured router to PC, edit it in text editor (change ip addresses, dhcp pools, vpn keys...) and then copy it via tftp to another router, etc... Configuration looks fine and it works when i paste it in cli, but when i copy it via tftp i'm getting strange problems like dhcp not working or snmp not accessible. Am I missing something.
Here's config from router with dhcp problem:
ROUTER#sh run
version 15.1
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers(code)
View 2 Replies
View Related
May 5, 2013
I have customer that we have configured netflow on the 2821 router that their traffic is on. Currently the company they have contracted with for the analysis is seeing data duplication. Below is the configuration for the interface and the router
Cisco 2821;
interface GigabitEthernet0/0
description TVC-FI-Ethernet-Fiber-Ethernet link
ip address 216.255.164.33 255.255.255.248 secondary
ip address 192.168.5.1 255.255.255.0 secondary
ip address 216.255.166.129 255.255.255.128 secondary
[code]....
View 2 Replies
View Related
Mar 3, 2013
i am currently using 2 DSL WIFI modem and wants to combine them to my RV042 dual wan router but as i set them up using WAN1 and Wan2 as "Obtain IP Automatically" there is no internet connection?
View 2 Replies
View Related
Jan 4, 2012
I have an 877W router that I would like to have a 2nd pre-configured backup for. I was thinking of getting another 870 series (probably an 877) router, as the more expensive wireless option is not actually required. Am I right to assume that I could simply copy the contents of my current config.txt file onto the second router?
View 4 Replies
View Related
Jul 5, 2012
I've recently purchased a Cisco catalyst 2960S-24TS-L & setup 3 V LANS 10 (no current IP),20 (192.168.2.1) and 30 (192.168.3.1) to reflect the router V LAN configuration & ip information. When connecting my PC to the switch to test connectivity on (2.1 & 3.1) I'm unable to connect to the the net but can successfully ping GW (int FE0.20 & FE0.30) 192.168.2.1 & 3.1.
The router is an Cisco 1801 & it seems this is where the configuration issue is but I'm unable to figure out how to complete the setup. It has been quite awhile since I've configured a Cisco router.
Ive never had this router connected to a switch so all router switch ports are in the default VLAN1 (192.168.1.2), with FE0 disabled. In trying to get the switch to communicate with the router I made the following router config modifications.
FE0 enabled with subinterfaces configured
FE0.10-currently no ip
FE0.20-192.168.2.1/27
FE0.30-192.168.3.1/27
I have two issues I want to resolve:
1) I do not know what additional steps are required to allow 2.1.& 3.1 V LANs to access the net.
2) I want to disable VLAN1 if possible & use the network IP for VLAN10 (192.168.1.0). I'm unsure how to do this as any change on VLAN1 immediately breaks router access and the router reconfiguration becomes more complicated with changes to the FW ACL etc.
View 2 Replies
View Related
Jan 11, 2012
i would like to know if i can use my 3g stick connected to a computer to use it with my router to have wirelles signal in my house.
View 1 Replies
View Related
Sep 27, 2012
I understand router on a stick for inter-vlan routing but where I'm having trouble is having one of the vlans be public addresses. One of my clients has a rack in a colo where there is no router, i.e. their /24 public network has .1 of the network assigned to a colo router, then they have a 2960G switch in the rack that all the gear is connected to. Public IP's are assigned to certain devices / servers with .1 as their GW. Problem is, they also have a private range on the same switch with no vlans and things are a little 'cluttered' and there is no control of traffic.
The assets I have are a 2821 router with (2) GigE interfaces and the 2960G switch. A /30 network is going to assigned on the colo gear to use to push the entire /24 down to the cabinet. I'm going to NAT the local 10.100.x addresses on vlan 10 and I want the public traffic on vlan 20. During a recent test, the private traffic worked as expected but the public traffic didn't work. I don't need a complete config, more of a 10,000 ft. view of how this needs to be done so (a) traffic is vlan'd to keep things segmented, (b) I can static inside / outside public addresses from the /24 to reduce the number of public addresses being assigned directly to servers (some of this is unavoidable, but the less the better), and (c) I can NAT the local subnet to either to the /24 or the /30 (not much very much traffic in this way).
EDIT: The switch is a C2960S, not G. I cannot enable lanbase-routing, it is apparently unavailable.
* 1 26 WS-C2960S-24TS-S 12.2(55)SE3 C2960S-UNIVERSALK9-M
View 5 Replies
View Related
Aug 14, 2012
As per the title, I just require 3 to 4 VLANS with inter-VLAN communication enabled.
In the past I have used this router with each port of the internal switch set to a different VLAN, with each in turn hooked up to an unmanaged switch. This has work fine for me but I want to dip my toe in the world of .1q VLANS and gain some added flexibility and neatness.
View 3 Replies
View Related
Oct 14, 2011
I want connect an external HDD 320GB FAT32 2,5" but E4200 dont found it. USB Stick with 4GB is working.E4200 have latest Firmware.
View 1 Replies
View Related
Mar 8, 2013
I just had to get rid of a bad DIR-825 that I replaced a trusty old DIR-655 with and now I'm back. Anyhow, I can't seem to make the DDNS setting stick in the router. All of the information is correct, but it doesn't seem to want to login. When I click the enable check box, it tries connecting and then greys out and doesn't connect.
View 3 Replies
View Related
