Software: Advipservices-k9 12.4 25b
Skill: Just started
I got 2 RFC1483 bridged connections wich i want to combine in the 1841. What i want is 1 subnet (if possible) route normal internet traffic out on ATM0/0/0 Route 1 server and Voip box out on ATM0/1/0 What is the best way to configure this if it is possible with the hardware.Tried different things allready but no luckPretty much in all configs when i connect 1 line it works fine but when i connect the second one all goes wrong.
I've buy a SRP500 Series Router (ADSL 2+).My ISP need RFC1483 Routed with LCC encapsulation type but this router dont have this type of encapsulation available in WAN settings. What can i do to use this device with my ISP adsl connection ?
I have VPN connections in between my HO and branch locations. I am using ASA in HO and 1841 branch locations. One of the location is keep on disconnecting, why this is happening as i can see the configurations are identical to other locations.In 'sh crypto isakmp sa' output i can see multiple entries for this particular location, one with type 'L2L' and others with type 'user'.
securing a back-toback connection using E1.The connection is between two cities, using 2x CISCO 1841 router + VWIC-1MFT-E1 interface at each city.
The E1 connections has been provided by our local telco, and they are completely private. The customer is a bank, and they asking me if this is a secure connection or not. If possible, we need to guarantee that no body can get access to the bank network even if they brought E1 modem at one of the ends (telco PoP).
I am putting an pre-labbed DMVPN Hub config onto a production 1841. We had to upgrade the IOS to support protection with NAT so the current IOS we're running is c1841-adventerprisek9-mz.124-25g.bin.I can paste the configuration in fine (via the tunnel interfaces) and the router accepts it however the 'show dmvpn', 'debug dmvpn' and other related commands don't work. I have checked the IOS feature navigator and it definitely shows that DMVPN phase 1 and 2 are supported in this image.
I have a 1841 router and I can ping the f/0 port from my pc. However when i try to console to it, it is not showing up anything but a blinking cursor. I tried all different baud rates on my teraterm but still not luck. I picked the baud rate disconnected and reconnected everytime and still nothing. Then I tried to telnet to it using teraterm but it would just open a console window and then close.
a have a router CISCO 1841 and I configured a NAT inside from the router to the firewall like this :ip nat inside source static firewall_adresse public_adresse and its work fine and when a added it I do this command "wr" to save the configuration and I restarted the router many times and it still work fine,but in the last five months this NAT does not exsit twice and I must add it a gain.
We have an MPLS that connects our main office with our 7 branch offices. We have 3Mb coming into the main office and 1.5 into all of the branch offices. I would like to give rdp traffic the highest priority. We have a Cisco 1841 at all branches and a Cisco 2811 at the main office. Do I have to configure QOS on all routers or just the one at the main location?
We have a 1841 setup with WAN and LAN subinterfaced(2 WAN connections, 1 internal VLANs) and I am recieving some pretty horrible throughput when traversing the router to the WAN.
I am receiving about 2 MBPS down but around 5 up.Currently there is a ACL on the WAN interface, and as well we are running NAT NVI. It is possible that this might have something to do with it, but I am not sure.
Most of the CPU is going to IP input however I cannot seem to determine the cause. One thing I am thinking is the overload for NVI is using a route-map. Could that cause it to process switch instead of fast/CEF switch?
i have 6 sites using tandberg visioconference system, each site have a cisco router 1841 configured with ipsec vpn, i have a 4 conference a week and my bandwidth is 2 meg, and when people are working we have a lot of problems and cut in our visio conference.
I have a big problem, i want to make a high level QOS priority to my TANDBERG visio conference system between my sites, the issues is that there is an IPSEC VPN in my cisco routers between those sites and as i know if the traffic is crypted we can not separate the packets or give higher priority to packets over anothers.
can i mark traffic in the lan interface and and make a high priority befors the packets go through the ipsec tunnel?
We have cisco 1841 router with two ISP . But we facing the problem whenever our secondary ISP Link goes down the Primary has also went down.We have only one default route for primary Link
OK ran into a little problem with getting this to work. Only group members participate in the encryption process, correct?
I have numerous remotes all coming into one central location. I set up a KS and have currently only 2 of the remote routers set up as GM's, with the intention of the others coming into play as I move forward. Here is basically what I have in my KS and GM's:
So I applied the crypto map to the serial interfaces on my routers on either side of the cloud (central-ASR1002 and remote-ISR1841). When I did this, ALL the remotes went down and I'm not sure why. Even the ones that didn't have anything to do with gdoi. Ya, it wasn't good. I thought that only the group members would be affected.
Is it the fact that my acl is encrypting any to any? Surely I don't have to reverse that and have two statements with the same syntax. I'm basically just trying to encrypt all traffic from specific remotes back to the central side. However, I'm trying to do it without taking down the rest of my network .
I have recently started a new job where the IOS on the 1841 routers is version 12.4. These are from 2006 mainly, probably when the routers were bought.should I upgrade to 15.0? Mainly just to plug security holes that cisco have found?
Here is the setup : site 2 site ipsec pix 515 as the server (static ip) Cisco 1841 (dhcp client)
ezvpn client works fine for normal users that want to just authenticate with the Cisco vpn client. i have a site 2 site setup from the pix to my house, the connection is "up" on both ends, i see phase2 initiate under the pix logs . try to ping nothing happens, even drop down the byte size and the DF bit (aka ping xxx.xxx.xxx.xxx -l 100 -f ) ping to the next routed interface hop and i get "no translation group found for icmp src outside: xxx.xxx.xxx.xxx <--- my internal network dst inside xxx.xxx.xxx.xxx <---- pix internal network .
i've been trying to setup an SSL VPN on my 1841 lab router but with no luck. i tried both clientless (anyconnect 2.5) and using a vpn client (anyconnect 3.0).
i'm using a win 7 PC with IP 172.16.1.50 directly connected to 1841 FE0/1 port. tried disabling PC FW, used both IE and FF and delete cookes but to no avail. below are my config and some show and debug output.
SSL_VPN_GW#show webvpn gateway
Gateway Name Admin Operation ------------ ----- --------- SSL_VPN_GW up up
Here is my current situation, I have 3 Internet connections as below, at the moment they are terminate into the ASA.
ADSL Modem 1 (routed mode) ADSL Modem 2 (routed mode) Mid band Ethernet Tail (10m/10m) ASA 5510 LAN Switch
I want to change it to the following, in order to use PBR on the router. ADSL Modem 1 (/29 Ip block) ADSL Modem 2 (/29 ip block) Mid band Ethernet Tail (10m/10m) (/28 block) Router ASA 5510 LAN Switch
I need your opinion on the following points
1. What is the best suited router considering i have 2 adsl connections and i will need 3 WAN + 1 LAN ports in total. 2. Where should I run the NAT ? on ASA or the router. (I do have around 20 L2L IPSEC VPN tunnel on the ASA). In the new setup I would like to use ADSL 1 for the internet browsing and use ADSL 2 and Ethernet Tail for incoming service (+some outgoing to specific destinations or based on specific services) 3. I have an old 1841 with 2 Ethernet ports, am i better off buying 2 x ADSL2+ cards and use them with expansion slots? 4. Both adsl connections are PPPOA based, Can I put both adsl modems into bridge mode and create pppoa connections on 1841? (I will still have to buy a HWIC 2 ports Ethernet card). 5. Should i go for any of the above options or am i better of buying a new router?
I have a cisco 1841 router which isn't able to boot properly from its IOS. it always prompt me on ROMMN.
Here it is:
System Bootstrap, Version 12.4(13r)T8, RELEASE SOFTWARE (fc1) Technical Support: [URL] Copyright (c) 2008 by cisco Systems, Inc. PLD version 0x10 [Code]....
The connection with ISP or Extra net is a metro Ethernet, so the isp gave two ip address to the client: WAN (/30) LAN (/29) Which be the public addresses to be used by the client if you need to publish any server on the network (like WWW), so they do not have any device that will could do the nat, like an asa or linux server, so the router has to do the Nat, because the SW 3560 does not support this feature.
So... I did the following:
On router 1841: inter fast 0/0 description WAN no shut [ code ]...
I create an interface Blackpool to simulate the LAN connection (192.168.1.0/24)
Inter loopb 0 ip address 192.168.1.254 255.255.255.0 ip nat inside [ code ] ...
ON SWITCH:
interface vlan 448 description LAN-ME ip address Z.Z.Z.48 255.255.255.248 no shut ip route 0.0.0.0 0.0.0.0 Z.Z.Z.47
But if i try to do ping from the ip address 192.168.1.0/24 to any server´s internet the ping fails, but if i do the ping from v LAN 228 the ping is success. I will think that route map could solve the problem.
I have an 1841 running Advanced Security IOS (12.4(25) I think, have to check when I get home) that I'm using to learn about CBAC and IOS' firewall functionality. Its external interface is connected to my Windstream DSL modem in bridge mode, and the router is doing the PPPoE authentication. It's also doing NAT for my internal network, and is acting as a firewall using CBAC inspect statements and ACLs.
Everything is working at at least a baseline level: the DSL authenticates and connects, and machines on the inside can browse the web. The problem is that browsing to some sites is slow or times out. Not all sites, just some. Latency seems to be okay when doing pings. The problem seems to happen with https connections, but again, not all of them. Gmail works fine (I have it set to always use https), while my bank and credit card sites either time out or take minutes to load.
I have an "inspect https" line in my config, and have allowed https through my outbound ACL.
I'm looking for next steps for troubleshooting this. I've check CPU utilization and it's very low; not sure what else it could be. I only have a few inspect statements, for the common stuff: tcp, udp, icmp, pop3, imap, dns, tftp, ftp, and ntp.
I have 2 cisco 1841 routers the one is connected to my local network and the other is the stub router and it only has 2 fastethernet interfaces. fao/1 connected to the local network and fa0/0 connected to the internet and to the other router. How can i configure NAT on the fa0/0 which is sharing the internet and local network
We have a Cisco 1841 router and checked something an unnusual (never seen before) routing table having L - local routes. if this an IOS bug or same as C - connected local routes.
1841#sh verCisco IOS Software, 1841 Software (C1841-IPBASE-M), Version 15.0(1)M3, RELEASE SOFTWARE (fc2)Technical Support: [URL] ... Copyright (c) 1986-2010 by Cisco Systems, Inc.Compiled Sun 18-Jul-10 01:16 by prod_rel_team
I have a Hwic 3G-GSM module in an 1841 router. The sim card in the module is configured on an APN no username and password. I have checked all the config from a working router 1841 plus the same module and same vendor Sim card on the APN and all is working. I have configured the second router but it doesn't want to connect at all. If i put the Sim card in a standard 3G modem life is good, and I can connect to the APN and get the static IP address. When I'm trying to initiate the connection from the 1841 the Sim card wont connect.
My config to debug:
sh ip int brief Interface IP-Address OK? Method Status Protocol FastEthernet0/0 10.20.20.1 YES NVRAM up up FastEthernet0/1 unassigned YES NVRAM up up Cellular0/1/0 unassigned YES NVRAM up up NVI0 10.20.20.1 YES unset up up
[ code] ...........
I'm not sure if the cellular card is calling the wrong script (d0efault-d0ials0crip) instead of the gsm one configured.
I finally can upgrade my 1841 routes from 12.4 to the latest 15.1 IOS. Any info about upgrade path , do I need to modify config file and provide me with upgrade instruction link or something like that ?
1841 & 3845 router. We send 30 GB data on 100 Mbps link. First time we use 3845 router for sending the data and 47 Min are required to complete the data, during this link utilization was 100%. After that we send same data through 1841 router & 46 Min are required for the same. Only difference in data transfer is CPU Utilization of 1841 router goes 30% & 5 % of 3845 router Can we use 1841 router instead of 3845 router ? .
I have new DIA Internet service coming in and unlike the last vendor who provided a router, I am configuring my own. This is my first full Cisco config - I've been looking at this for 3 days now. I have SIP signalling, rtp and default traffic on a (3) t1 multilink (4.5mb). My lan and firewall uses dscp tags and passes them to the 1841 for outbound. The ISP only prioritizes by destination address so I just need the 1841 to respect the tags internally. Inbound, I have only port numbers to go by to differentiate voice traffic and I want to tag EF and CS3 accordingly for use by the 1841 and the rest of my network.
Below is part of my proposed config. I have read tons of Cisco docs and looked at all the queuing methods and this one I understand the best. I am getting the error: "CBWFQ : Can be enabled as an output feature only", so I presume that something is wrong on an input definition somewhere. For now all the firewall functions are done at the actual firewall (Sonicwall NSA) so other than limiting ports to the PBX everything else is just pass-through. Any changes required. IOS is 12.4(4)T1.
For educational reasons (a Videoconference class), I need to connect two 1841 router with each other. They both have HWIC-2T modules, but it's almost impossible for me to have the CAB-SS-2626X Smart Serial crossover cable on time. So, I was wondering if there will be some kind of a problem if I connect them through a UTP crossover cable using their FastEthernet interfaces. I suppose it will not "simulate" a serial wan connection but, would it work as a router to router connection?
