Cisco WAN :: 1841 - IP / Assign Routers To Test Pinging And Getting Traffic Flowing?
Jun 3, 2013
I have two 1841's, setting up a Lab WAN in Packet Tracer. I have one of the 1841's run to a DSL modem, then out to the cloud and the same setup on the other end... from the cloud to the DSL modem and to the 1841 on that end... I have all green lights, so that tells me layer 2 is up, but I'm trying to figure out
what IP to assign the routers to test pinging and getting traffic flowing. but the DSL Modem's have the public IP's and dynamically assign an IP to the routers? I've also tried setting up a static IP on the routers fa0/0 interfaces and the pings fail.. Wondering what I am missing to get these two talking.
View 2 Replies
ADVERTISEMENT
Jun 7, 2011
im attempting to setup a L2L VPN between an 1841 and an NSA 2400, via the SDM.The Tunnel comes up, and when I test connectivity it shows as being successful, but I do get an error stating:-
"A ping with data size of this VPN interface MTU size and 'Do not Fragment' bit set to the other end VPN device is failing. This may happen if there is a lesser MTU network which drops the 'Do not fragment' packets."
From my reading this shouldnt cause all traffic to drop though, right?
Currently I cannot ping or telnet to services from one end of the tunnel to the other. I was able to ping momentarily from the Sonicwall end at one point, but this disappeared shortly afterwards (without my changing anything regarding the config).
All of the ACLs created were populated through the SDM.
View 3 Replies
View Related
Mar 27, 2011
I'm currently using ASA 5510 with software 8.4.1 and I have an issue with nat configuration. I used the following config line:nat (inside, dmz) source dynamic LAN Pat1 destination Server1 Server1
The traffic is not flowing and when I use Packet Tracer, packets are dropped at the NAT rule with the following error: Drop-reason: (acl-drop) Flow is denied by configured rule.The only ACE I have is permit ip any any.
View 2 Replies
View Related
Jul 12, 2011
I have manually configured the Firewall ASA 5510 from existing PIX to match the configuration, however when I connect the firewall to the Network, no traffic is flowing in either direction. I have the Inside network on the 172.29.0.0 subnet and the outside network on 20.2.0.0 subnet. I am attaching the cofiguration file.
View 4 Replies
View Related
Jun 13, 2013
i have a gateway router going to the internet....using public IP addresses on both interfaces. starting on Monday, traffic would suddenly stop flowing from the inside of the network going out, though i can still ping the outside interface , but when I log in to the router I am able to ping to the internet. so its like traffic is not passing from the outside int to the inside int. I have a 3900 router. other thing is, when i restart the router it will work for some time and then just stop again....
View 6 Replies
View Related
Apr 7, 2012
i'm using an rv220W and i whant to know if is it possible to assign vpn traffic to a vlan when i setup an ipsec tunnel?
example:
Im using different vlans on my rv220W.
Vlan 10: engineers (ex: 192.168.1.0/27) no intervlan routing
Vlan20: sales (ex: 10.0.123.0/24) no intervlan routing
This is what i need: - An engineer is on the road and when he makes a ipsec vpn connection => assignd to the vlan "engineers" so he can access the server/pc's in that vlan.and when someone from the sales group starts a vpn connection he needs to be in the vlan "sales" so he can access his pc/data,...
View 15 Replies
View Related
Aug 20, 2012
I've got an ASA 5505 with the Security Plus license that I'm trying to configure.
So far I have setup NATing on two VLANs, one called 16jda (VLAN 16 - 10.16.2.0/24) and one called 16jdc (VLAN 11 - 10.105.11.0/24).
From each subnet I am able to connect to the internet, but I need these subnets to also be able to talk to each other.
I have each VLAN interface at security level 100 and enabled "same-security-traffic permit inter-interface", and I have setup static NAT mappings between the two subnets, but they still can't communicate.
When I try to ping there is no reply and the only log message is: 6 Aug 21 2012 09:00:54 302020 10.16.2.10 23336 10.105.11.6 0 Built inbound ICMP connection for faddr 10.16.2.10/23336 gaddr 10.105.11.6/0 laddr 10.105.11.6/0
View 11 Replies
View Related
Oct 4, 2011
We have 3560 switch with following IOS. version 12.2(55)SE3 and image name is C3560-IPSERVICESK9-M. On one of the interface we need to know what are traffic is flowing.
Do we have "ip nbar or ip route-cache" support on this switch IOS? Is there any other way to find out which protocol traffic is flowing through that interface.
View 1 Replies
View Related
May 7, 2012
I have configured multicast(ip pim dense-mode) on two 2911 that are connected by a Multilink( 3 Mbps) Wan connection.The configuration works fine for awhile and sometimes all day but at some point one of the Multilink interfaces stops passing multicast traffic.I perform a SH Multilink 1 on the interfaces and one show multicast packets incrementing and one does not, it just stops.The problem acts like there is a buffer that gets full and after that happens it just stops working.
View 2 Replies
View Related
Jan 16, 2013
We are in the process of rolling out iPads to our offices. As part of this implementation, we need to print from the iPads to our network printers. Our network printers are mostly HP and Xerox and do not have native Apple AirPrint capabilities. As such, we have been using the FingerPrint software to share out the network printers as Apple AirPrint printers. We have a mixture of switches at our offices. Most offices utilize a 3550 PoE switch. In these offices the AirPrint traffic is being transferred successfully and everything works great. In the offices which are using 3560 PoE switches, the traffic is never seen at the iPads. We are using EnGenius EAP300 access points connected into the Cisco switches to provide wireless access to the iPads. Both 3550 and 3560 switches are running iOS 12.2(25). What might be stopping/blocking the AirPrint traffic on the 3560 switches?
View 3 Replies
View Related
Nov 1, 2011
We have a Cisco 3640 router running c3640-is-mz.123-3g.bin Switching ports are devided into several VLans. Each VLan has its own IP subnet. We can't ping IP address X in subnet A from subnet B unless we log into the router and ping it from there first. (and then the IP address will show up in "show ip arp" command. Then we can ping X in subnet A from subnet B, and browse web on device X from subnet B, etc. )
View 6 Replies
View Related
Oct 28, 2012
i had a client request to block ICMP request on their 1841 WAN link. i've got ACL hits for ACE 170 but not for 171.
how to test or simulate for ICMP time-exceeded? is this TTL related and is there a DOS command or any way to produce ping packet with a less TTL count that would hit the ACL log? below is the config.
interface FastEthernet0/0
ip address 202.42.x.y 255.255.255.252
ip access-group IDS_Fastethernet0/0_in_0 in
ip access-list extended IDS_Fastethernet0/0_in_0
[code]....
View 2 Replies
View Related
Dec 8, 2010
I have configured an Cisco 881 router in our lab with netflow commands and pointed to our network monitoring tool and I want to check if the tool can collect valid traffic statistics from this router (eg. utilization). The problem this router has nothing plugged into a production LAN that would potentially generate traffic to measure using this tool.
Is there a way to configure a Cisco router (ex. Cisco 881 router) to artificially generate network traffic to test that I have setup the monitoring tool correct to capture future utilization statistics?
View 1 Replies
View Related
Dec 6, 2012
Attached setup i am planning for testing multicast output from different vendors using VLC and STB. This Setup made to test the picture quality between the vendors at the same time on the multi viewer screen.
1) Only a 2960 Gig port switch with only one L2 v lan with IGMP snooping enabled.
In this scenario where Source and receivers are in the same L2 v lan ( no L3 interface is involved) hope i would able to test all the multicast sources with out any additional configuration on the Cisco switch.
View 6 Replies
View Related
May 9, 2012
We have an MPLS that connects our main office with our 7 branch offices. We have 3Mb coming into the main office and 1.5 into all of the branch offices. I would like to give rdp traffic the highest priority. We have a Cisco 1841 at all branches and a Cisco 2811 at the main office. Do I have to configure QOS on all routers or just the one at the main location?
View 5 Replies
View Related
May 3, 2011
Question re: DIR-655; Hardware ver A4; Firmware version 1.32NA
During bandwidth tests to several sites (principally speedtest.net) I get ping times of 10-11 ms, download speeds of 12+ to 17+ mbps but failure on upload tests using my DIR-655.
When I bypass the 655 and test directly with my cable modem, all (including upload) tests work reliably and consistently.
I have swapped the two ethernet cables involved as well as replacing both with new cables but the results are the same (uploads fail with 655 and work without it)
I have seen several postings over the the last year with this same problem but have never seen any comment from D-Link, or a solution from any reader.
Not that it should have any bearing, but I have TA785GE-128M motherboard and am running Windows 7 (patch current) on COMCAST
is this problem acknowledged by D-Link and is there a solution?
View 14 Replies
View Related
May 2, 2012
I am about to pull my hair out. I have a 1841 router at one end with 3 ASA's for teleworkers working great. I'm connecting a 4th one that I can not get to work for the life of me. The tunnel is comming up, but its not passing any traffic. I don't see any glaring errors in the VPN debug. The router comes up, reverse route injection does its thing... all looks great. Am I totally overlooking somthing? I must have rebuilt this a dozen times.
: ASA Version 8.2(1) !hostname ciscoasa104domain-name default.domain.invalidnames!interface Vlan1nameif insidesecurity-level 100ip address 192.168.104.1 255.255.255.0!interface Vlan2nameif outsidesecurity-level 0ip address dhcp setroute! interface Ethernet0/0switchport access vlan 2!interface Ethernet0/1!interface Ethernet0/2!interface Ethernet0/3!interface Ethernet0/4!interface Ethernet0/5!interface Ethernet0/6!interface Ethernet0/7!boot system disk0:/asa821-k8.binftp mode passivedns server-group DefaultDNSdomain-name default.domain.invalidsame-security-traffic permit inter-interfacesame-security-traffic permit intra-interfaceobject-group network DM_INLINE_NETWORK_1network-object 192.168.2.0 255.255.255.0network-object 192.168.4.0 255.255.255.0access-list outside_1_cryptomap extended permit ip 192.168.104.0 255.255.255.0
[code]....
View 7 Replies
View Related
Oct 23, 2012
We are currently experiencing a problem on an IP SEC VPN tunnel that has all of us here completely stumped. We are hoping that one of you experts out there will be able to assist. Here are some basic details:
NETWORKS
An IPSEC site to site tunnel has been built between the two sites on different networks.
PIX 515E - MAIN SITE
Network 172.16.0.0/24
CISCO 1841 - REMOTE SITE
Network 172.16.99.0/24
ISSUE
All traffic flows over the VPN from the 172.16.99.0 network in the direction of the Pix, such as RDP, SIP etc. Pings will go in both directions across the tunnel. Other than the pings most traffic will NOT flow over the tunnel from the 172.16.0.0 network on the pix to the 172.16.99.0 network on the 1841. It would appear that something on the 1841 is blocking traffic coming in over the tunnel from the 172.16.0.0 network as we can not get a wire shark capture on a PC on the 172.16.99.0 network, other than the ICMP traces. Usually this is an access list problem but we have checked and double checked the configuration and can't see anything.
TROUBLESHOOTING SO FAR
1. Have tried inserting various access list changes to the tunnel on the 1841 to make specific reference to the 172.16.0.0 network.
2. Have tried various NAT entries.
3. Have removed and then recreated the VPN tunnel from a fresh start.
4. Have made the MTU 1400 on the inside interfaces on the Pix and the 1841.
The tunnel is fully up at all times and as we say can ping in both directions.
View 7 Replies
View Related
Aug 2, 2012
I am in trouble with my cisco 1841 configuration.The "what I want to" schema: very external IP ( AAA.AAA.AAA.AAA ) in the internet cloud => | cisco 1841 external IP BBB.BBB.BBB.BBB | => internal computer IP CCC.CCC.CCC.CCC
View 1 Replies
View Related
Aug 1, 2012
I am in trouble with my cisco 1841 configuration. The "what I want to schema":very external IP ( AAA.AAA.AAA.AAA ) in the internet cloud => | cisco 1841 external IP BBB.BBB.BBB.BBB | => internal computer IP CCC.CCC.CCC.CCC
Steps (this what I think should be done):
1. Find all packets from A by acl
2. Route finded packets throught cisco1841 directly to internal ip address
It should be easy but it doesn't.
View 2 Replies
View Related
Jan 6, 2011
I run a network that uses MPLS circuits to connect all of the companies different stores. Internet access is through a Cisco ASA5500 here at the corp headquarters.
To make all of this work, we use a little 1721 gateway router to move traffic as needed. All the clients in our corporate office use 10.10.99.1 (Cisco 1721) as a gateway. The 1721 routes the traffic either to the internet (10.10.99.106 Cisco ASA5500) or the MPLS router (159.61.54.30).
For some reason, anything that runs on Linux (Ubuntu server, ReadyNAS boxes, Thecus NAS) will not pass traffic beyond the 1721 gateway router.
I've poured over the config for that router, and I can't find anything that could be causing this not to work. Thinking that the 1721 was bad, I put an 1841 online in it's place, and it did the same thing. I'm a noob when it comes to Cisco configs, but am learning as I go along.
Ive attached a txt file of the 1721 config.
View 31 Replies
View Related
Apr 10, 2011
i am having 2 locations & having cisco 1841 & 2821 at both the end connected via a P2P link. Now when i trace location A from location B, the traffic is getting dropped at location A's Vlan HSRP IP address.there is no ACL in that Vlan, but still it is getting dropped.
View 1 Replies
View Related
Oct 23, 2009
I have a new WRVS4400N VPN router and have set it up for VPN. On a separate computer I have a Verizon EVDO card so I have used that with a separate computer to access the internet on a public, routable IP address off of my network.
When I use the QuickVPN client, I wasn't able to get into my network (using ddyns.org) because I didn't have the "BLOCK WAN REQUEST" setting disabled so the router could be ping'd. Once I did that, I verified I could successfuly ping my ddyns name abc.xyz.com.
In the error log of the QuickVPN client, I still see:
2009/10/24 16:57:15 [STATUS]OS Version: Windows XP2009/10/24 16:57:16 [STATUS]Windows Firewall is OFF2009/10/24 16:57:16 [STATUS]One network interface detected with IP address x.x.x.x2009/10/24 16:57:16 [STATUS]Connecting...2009/10/24 16:57:16 [STATUS]Connecting to remote gateway with IP address:x.x.x2009/10/24 16:57:28 [WARNING]Remote gateway wasn't reached...2009/10/24 16:57:36 [STATUS]Remote gateway was reached by https ...2009/10/24 16:57:36 [STATUS]Provisioning...2009/10/24 16:57:47 [STATUS]Tunnel is configured. Ping test is about to start.2009/10/24 16:57:47 [STATUS]Verifying Network...2009/10/24 16:57:51 [WARNING]Failed to ping the LAN IP of the remote VPN Router!2009/10/24 16:57:52 [WARNING]Failed to
[code]....
I HAVE been able to make the connection successfully without any other changes to the environment. It's hit or miss, but usually a miss. Restarting QuickVPN sometimes works on the next try, but then fails if I disconnect and try again. Even when that ping error message is appearing, I am able to ping the host name at a command prompt without a problem.
Is something else on the router possibly blocking the ping requests?My router is behind a Westell F90 6100 DSL modem operating in bridge mode. The 4400 is obtaining the WAN address from Verizon(DSL) and that is also where I have my PPOE info entered to obtain the internet connection.
View 7 Replies
View Related
Nov 4, 2012
I have the RV082 v03 i set it for load balancing i have 2 8gb Adsl modem connected to Wan1 and Wan2
Question how can i assign a certain pc to use the connection on Wan2, what i would like is to assign a specific pc on the network to wan2
View 2 Replies
View Related
Jan 30, 2013
Region : UnitedStates
Model : TD-W8960N
Hardware Version : V3
Firmware Version : 1.4.0 Build 111130 Rel.54317n
ISP : century link
How do I test my routers ddns? My computer went down. So, my adsl ip address changed. I caused the modem/router to reboot. But the new ip wasn't sent to the Host (dyndns.org). I had to update my ip manually on [URL].
View 2 Replies
View Related
Feb 4, 2013
I have a RVS4000 router with DHCP enabled and in router mode.
The LAN is 192.168.2.x. The RVS4000 static IP address is 192.168.2.8
The router is not the RVS4000 and is at 192.168.2.1
The RVS4000 dhcp is assigning it's clients a default gateway of 192.168.2.8 instead of what I want 192.168.2.1. How can I get the RVS4000's DHCP server to assign another IP address other than its own as the default gateway to its DHCP clients?
View 2 Replies
View Related
Jan 8, 2013
I have a n150 and it only allows private ip addresses for the lan setup. Is there anyway to assign a public address? I need to have the DHCP use a public range and I can't do that unless I can set the router to a public ip.
View 2 Replies
View Related
Dec 23, 2012
I keep getting "Speed Test: Error occurred during test." message when I run Streamline speed test on N750DB router. I'm not sure what my download and upload speeds are which is why I went with run a speed test to begin with.
View 17 Replies
View Related
Jan 5, 2013
how do I MANUALLY assign ip address to devices connected to my n300
View 1 Replies
View Related
May 10, 2013
I have a Belkin Play N600 HD router. Does it have the capability to let me assign fixed IP addresses to devices like printers, NAS drives, and cameras so I know where they are?
View 2 Replies
View Related
May 4, 2013
It took a while of troubleshooting since I've never ran into this problem with my wireless router before. But finally I figured out that my router will not assign the proper DNS server addresses when assigning through DHCP. I upgraded from 2.10.02 and still the same issue.
View 1 Replies
View Related
Apr 24, 2008
Our ISP hands us an ethernet link. ISP router has one address of (for argument sake) 1.1.1.0/30 net, - let's say they have 1.1.1.1 we have the other usable address of 1.1.1.2/30 assigned to our 3825 router. Is it possible to use hsrp or vrrp if there is not two valid/unique "wan" IPs to assign to our routers? For example, if we had a pair of 3825 routers? are we stuck with basically a manual failover or requesting our isp to provide a larger address wan block?
View 2 Replies
View Related
Jan 29, 2011
Is RTP port open indicates that rtp is flowing in the network.
View 2 Replies
View Related