We have a setup of a firewall in between my Cisco 1841 router and Switch.
Cisco Router --> Meraki Firewall--> Switch
Client VPN is configured on the Meraki Firewall but then for the outside users to client vpn in to the network, I have to port forward or open the ports 500 and 4500 to the IP address of the Meraki Firewall 192.168.1.90. [code]
I have a Cisco 1841 router connected to a Cisco 2960 switch.Users behind the router can't access the internet but when someone is directly connected to the switch with his PC and uses the IP Address found on the WAN port of the router, he's able to go on to the internet. [code]
View 4 Replies View RelatedI have a Cisco 2940 switch and a Cisco 1841 router. I want to build two different VLAN networks on the switch, which do not have to communicate one with each other, but those VLANS should communicate with the router.
I read a lot of articles, i tried to configure properly the switch and the router but i still don't get them work.
I set on the switch, the GigabitEthernet 0/1 port to Trunk port and i had to set it a native VLAN. The problem is that only from that native VLAN, i can ping the router.
We are using Cisco Router 1841 and users reporting issue related to VoIP. After investigation, seeing input errors on Router LAN interface, but there is no error on connected switch interface. [code]
View 2 Replies View RelatedI have a Cisco SG 300-20 as the core switch, layer 3. It is 192.168.4.6 on VLAN1 and 192.168.5.1 for VLAN2 (VOIP). All the ports are set in trunk mode. DHCP relay is setup on this switch.
The phones connected into a layer 2, Catalyst 2960-S switch. All ports are set in trunk mode. Default gateway on it is set to 192.168.5.1.
DHCP for both VLANs is provided by a Windows Server 2008 R2 server (the relay IP 192.168.4.15).
There is also an ASA 5510 in the mix which is 192.168.4.1. It has a route added to it for the 192.168.5.0 network to go to the SG 300 (192.168.5.1).
Just the two switches can ping each other on the 192.168.5.x network when I "add vlan 2" to the trunk port that is connected between the SG 300 and the 2960. The phones don't get DHCP on the 2960 switch. And I cannot ping 192.168.5.x from the ASA or anything else on the 192.168.4.x network.
After a bit of reading on intra-vlan routing for the SG 300 switch, I am thinking the SG 300 has to be the "center" of things so I need to make it 192.168.4.1 to be the gateway for both VLANs and change the ASA to 192.168.4.2 for VLAN1, etc. And I really can't do asymmetric routing with this switch.
I was looking for a way to connect an AUX port from a 1700 router to a 6500 switch module console port, to see the output of the Switch's on the 1700 router, in case there is a network downtime, I could see what's going on in the switch, what cable should I use ? Also, is there is any kind of documentation for this type of config what have I seen is very few info.
View 2 Replies View RelatedI currently have IOS image cat4500e-entservices-mz.122-53.SG5.bin. According to my research it appears SPAN is supported on this OS. However, after looking at procedure notes using websites like here:
[url]... I cannot find and obviously not figure out how to use the SPAN command. My main objective is to simply setup a port mirror on one of my TenGigabitEthnet interfaces and from what I read SPAN is the best way to setup a tap interface on a cisco switch.
I am trying to setup SNMP v3 on a 4948E switch here is what I have done so far:
snmp-server location "location"
snmp-server contact IT Admins
snmp-server group SNMPgrp v3 priv read SNMP-ro write SNMP-rw access 80
snmp-server user snmp_user SNMPgrp v3 auth sha xxxxxxxxx priv aes 128 xxxxxxxx access 80
What else am I missing and how can I confirm that it is configured correctly?
I'm trying to setup a port on a catalyst 3750 so it will pass traffic for 2 vlans. It connects to a (watchguard) firewall which I've configured with a primary IP (for vlan 27) and a secondary IP (for vlan 29).
However I can't seem to find the correct commands to enter on the cisco switch port (I've tried a variety).
FYI the current configuration is...
interface FastEthernet1/0/38
description ## Connection to WG vlan27 and vlan 29 ##
switchport trunk encapsulation dot1q
[Code].....
My requirement is that I want to set same console password in 12 switch instantly...
All the 12 switch are connected to a cisco 6500 L3 switch..
So how can i do that.. i have cisco acs 4.1...
can i do that by cisco acs 4.1 if not tell me an software or command ...
I live in a condo building that uses 3 Cisco Catalyst 3550 switches connected to a Comcast router with 100 Mbps download. Currently we regulate bandwidth by providing each user with 3 Mbps download. Even if only two people are active they still only get 3 Mbps download. I would like to set it up so if two people are using they each get 50 Mbps; a sort of 'dynamic qos. Is this possible with these switches? Would we have to purchase a Cisco router in order to provide this feature?
View 9 Replies View RelatedCurrent our environment is the following:
Core1 ---- Core2
| |
Nexus5k
| |
N2k, N2k, N2k (FEX)
||
Servers, hosts, etc..
We would like to add another Nexus5k to this topology. However, it has to be a zero downtime infrastructure add-on. When setting up the keep-alive, peer-link, vPC and vdc domain, will there be any upset in network traffic on the current N5k?Also, are the Nexus5k configurations synchronized or are they independent from one another? Before setting up the new 5k, should i configure it to teh 6509's, and vPC's to the Nexus2k's before setting up peer-link?
To setup SG300-20 as CORE switch and SF100-48 as Distribution switch.SG300-20 will have 2 VLAN(DATA and VOICE)
-192.168.14.1/24 DATA
-172.168.0.1/24 VOICE
SF100-48 will also have 2 VLAN(DATA and VOICE)
-192.168.14.1/24 Desktop/Laptops
-172.168.0.1/24 IP phones
Problem is when I tried to assign IP to any VLAN's the switch will just hang and loose my connection the light will stop blinking it will steady and i unable to access the switch until i turn off again?
Do you have the ability to setup DHCP servers on this layer 3 switch? I know I can with my old 3550 switch. Want to upgrade and make sure this model supports setting up dhcp servers on it.
View 3 Replies View RelatedHere is my setup:
Cisco 1841 Software (C1841-ADVIPSERVICESK9-M), Version 15.1(2)T1, RELEASE SOFTWARE (fc1)
Cisco Internal IP:192.168.X.254
Cisco External IP 64.X.X.5 (NAT)
Netopia DSL Router:
Internal IP: 192.168.X.253
Exernal: 76.X.45.3
Now the DSL was installed a while back for a different need and now that need is gone. What Id like to is have the Cisco router do performance routing and send out internet traffic to either its own external IP or send it over to the DSL if it can get a better response. Presently, Since the Cisco is my gateway, the DSL line is sitting idle.
We have a Cisco 1841 router that requires 2 levels of access, at the moment we have network admins logging in with a single username via SSH and with privilege 15 but we also need our helpdesk to login to run certain commands but not chaneg anything
View 4 Replies View RelatedI've never had a router's CPU suddenly hit 99% and just stay like it for hours even after a reboot. This router really does nothing with regards to CPU, I'm looking at it's CPU history (via SolarWinds Orion NPM software that we use) and it is arounf 1-3% all the time for the past 2 years.
I did a show debugigng and it seems no debugging is running
We currently have a Cisco 1841 router with version 12.4(1c) of IOS using image c1841-ipbase-mz.124-1c.bin. Our goal is to make it so our router can fully support IPv6. The current IOS version cannot. I've seen a site that seems to indicate 12.4T does support with IP Base image but recently had Cisco tell me with the latest IOS release 15.1.4.M4 that I have to use either the "Advanced Enterprise Services" or "Advanced IP Services" image. Did Cisco just remove IPv6 from IPBase in later IOS releases?
Also I've seen conflicting specs on the max amount of Flash and DRAM the router can support. The following link shows that 384MB is the max for DRAM and 128MB max for flash. We're looking to upgrade ours from 128MB and 32MB respectively but as mentioned I've seen it where higher amounts are supported. In fact we bought a backup 1841 to have and it has a 256MB Flash card in it.URL
Last but not least. Where can I find a straightforward documention of this situation where we may have to upgrade our Flash and DRAM and then upgrading the IOS?
I have the rv042 vpn router which is the main gateway for our internet, connected to the vpn is one server for a software and then another computer is connected for a web server software, well i need to get these setup like so
Setup firewall rules that will block all inbound Internet access to the web server except port 443Setup firewall rules that will block all communication between the two internal networks, except ports 7000 and 1702These must be on two different internal networks
I have got a l2 link of 512 kbps from two different ISP. I want to aggegrate the bandwidth of this connection so that I can feel like having 1 mbps connection. I am not actually talking about load balancing, but bandwidth/link aggegration. Can we have the solution of failover with different vlan from different isp ? Can we be able to make the link as a single link.
View 2 Replies View Relatedestablishing a Static NAT on an 1841 router.
I'm at a FOX affiliate TV station, and in order to connect our EAS Device to the internet & Fox Splicer, I need to setup a Statio NAT, so we picked up an 1841 on eBay.
I've done a little configuration in HyperTerminal.
I've done these ip addresses:
FE0/0 10.1.10.13 this is the subnet our EAS device is on
FE0/1 10.110.81.174 this is the subnet of the Fox Splicer.
I need to have NAT translate 10.1.10.11 to 10.110.81.170 and I also need to set a route for 10.110.81.0/24 pointing to 10.110.81.161
Hava cisco router 1841 forgot user name and password and need to reset it to its factory setting
tried boot while holding ctrl and break get into rommon1>
rommon1>confreg 0*2142
rommon1>reset
still shows rommon 3>
I have the following devices for our IT Test LAB
1. Cisco 1841 with 2 Fast Ethernet interfaces fa0/0 & fa0/1
2. Cisco 2960-S
3. Speedstream 6200 DSL Modem ( PPOE Connection with Static IP address)
I want to connect to the internet using the current DSL connection we currently have .
LAPTOP --> SWITCH 2960 --> ROUTER 1841 ---> DSL Modem ---> ISP
Troubleshooting 1: Currently from the LAPTOP i am able to ping
1. Switch 2960 Vlan interfaces
2. Router 1841 fa0/0 & fa0/1
BUT can not Ping the DSL Modem LAN interface IP 192.168.2.1 and can not get out to the INTERNET
Troubleshooting 2:currently from the Switch 2960 i can ping
1. All the Vlan interfaces on the Switch 2960
2. Router 1841 fa0/0 & fa0/1 interfaces
3. Laptop A & B
But can NOT ping the DSL modem LAN interface IP 192.168.2.1 and can not get out to the internet
Troubleshooting 3:Currently from the Cisco 1841 router i can ping
1. All the Vlan interfaces on the Switch 2960
2. Router 1841 fa0/0 & fa0/1
3. Laptop A & Laptop B
4. Can Get out to the internet. I am able to ping any internet destinations without any problem
Any simple way of opening ports on a 1841 router.I have a working config for internet traffic. I am looking to boot up my Windows Server and Run IIS.
View 1 Replies View Relateddue to upcoming changes to our network I'd like to be able to pass vlans across the FE ports of a Cisco 1841 router.1 port would go to a managed switch and then to local devices on different VLANs.the 2nd port would go upstream to a Cisco 3825 at a different location which would then connect to the internet.due to monitoring behind the Cisco3825 we would like all NAT to occur on the 3825.
what I would like to happen is this example device connected to port 7 on managed switch gets an IP (10.0.7.10) from the Cisco 1841 in VLAN 7 (10.0.7.0/24).traffic from that device goes to the switch, then in f0/1 on the 1841 and out f0/0 still with the same IP info, no NAT occuring.traffic is received on the 3825 port 0/1 and then NAT occurs and out port 0/0 to the internet.
I have 10Mbps internet speed connected to ciusco router 1841 that has 2 internal NICs. One NIC has a full 10Mbps download speed and the 2nd NIC is currently limited to 1Mbps download speed. I want to change the download speed of the 2nd NIC to 4Mbps? How do I do this on a cisco 1841 Router?
View 8 Replies View RelatedThe issue is occuring on our local LAN where my ARP requests are being modified after a period of time by the router for one host. I'm finding that the host will work fine with the correct MAC IP pairing for a period of time and then about 15-30 minutes later, the arp table is changing so the associated mac/IP address is now the mac address of the router interface.
The FastEthernet 0/1 port has no ip proxy-arp enabled and is set with ip nat inside.This only started happening after restarting the router, however the running config was saved as the startup config prior to the restart.I've tried hard-coding the entry with the command arp 10.15.4.190 c82a.1459.0579 ARPA however that is not working as expected.
The device is an 1841 ISR with the advanced IP Services bundle loaded. Is there some way that the router is viewing my host (provides DNS, Directory Services) as a intrustion attempt and somehow rejecting the packets?
We have a 1841 Cisco router for one of our remote sites and we have the GRE over IPSec tunnel on it (with our datacenter router) for the connectivity. The LAN facing interface becomes UP/Down (status 'UP', Protocol 'Down'). When I login the router and 'shut' and then 'no shut' the interface, the interface becomes UP and everything starts to work. Traffic starts to flow across it. But after some time, some hours or sometimes some days, the interface is again back to up/down status. The router is connected to a non-Cisco switch. I do see some CRC's increasing very slowly, but apart from that there seems nothing wrong with the interface in sho int fas0/0 command:
!
RTR01#sho int fas0/0
FastEthernet0/0 is up, line protocol is down
Hardware is Gt96k FE, address is 0026.cb91.ee48 (bia 0026.cb91.ee48)
[Code]....
I want to know is it possible to check Internet speed directly in the cisco router thru any command or activating any service in the cisco router?.As it is seen most of the times internet speed offer by ISP is different as compared to clients.and Clients most oftenly not satisfied with internet speed The problem is that our ISP has given us 100MB leaased line.But when we deployed in production network the speed is same as DSL.We have reported this issue to ISP they then carried out Iperf test by connecting laptop directly with the ISP router.They have tested the speed and it shows about 94-96 Mbps and argu that it is up to the mark and there is problem at your side(i.e our internal network).Now our internal network has cisco 1841 router connected directly to ISP 3825 cisco router.Our router has minimum configuration as required to pass traffic out and in.Our internal 1841 router is connected to switch to which different clients are connected.We have performed some online tests using different speed checking websites and also perform real time tests by uploading and downloading files.The speed is much low as compared to 100Mbps and it is nearly or slightly higher then as DSL connection. how can we check internet speed in the specified scenario?Is there any command or service available in cisco router to check internet speed as we want to check ISP connection speed directly thru 1841 router?what about authenticity of online speed checking websites?Any specialize software/tool you recommend to check Internet speed in specified scenario?
View 11 Replies View RelatedI've moved a Cisco 887 router from a site where it was used to dial up on an ADSL line to a new site where we have a EFM circuit which terminates at a Cisco 1841 router managed by our ISP. I therefore need to re-configure our 887 router to work as a conduit from our servers back to the Cisco 1841 as its gateway.
I have asked from our ISP and they told me that i need to configure the 887 to use IP address 176.35.140.65 255.255.255.248 and its gateway should be 176.35.140.70. That's great advice in theory but I don't know how to configure this correctly
Our internal network is using subnet 192.168.42.XX which will need to be retained for local devices.
Trying to setup client VPN access on a 1841 router. essentially i would like to connect using the cisco vpn application.
View 2 Replies View RelatedI am trying to set up Remote access vpn in 1841 router. The vPN client is connecting to router, but cannot ping to remote LAN Here is the config.
Current configuration : 3625 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
[code]....
I am not getting any hit on the deny statement of 102 when i try pinging to client ip address (10.0.0.10).
I am using Solawinds syslog and trying to get our Cisco routers send syslogs to our syslog server. I followed the procedure on Configuring Cisco Devices to Use a Syslog Server from [URL] Our Cisco swtches are all sending syslog messages but not the routers. I compared the config with our access switches but can't seem to find the problem:
Sample router config:
service nagleno service padservice tcp-keepalives-inservice tcp-keepalives-outservice timestamps debug datetime msec localtime show-timezoneservice timestamps log datetime msec localtime show-timezoneservice password-encryption!hostname WWF-RT1boot-start-markerboot-end-marker!security authentication failure rate 10 logsecurity passwords min-length 8logging buffered 4096logging rate-limit all 10logging console critical!aaa new-model!!
[Code] .......
is there a command that prevents the router from sending the syslog to the server?