Cisco WAN :: 1921 - NAT On A Single Router With 2 WAN Interfaces?
Mar 17, 2013
I have a 1921 with 3 interfaces. One for the LAN and the other 2 are wan each with a public address. The 2 wan interfaces are used for redundancy. I would like to know how I can static nat the same port and inside address on both wan interfaces.So if the request comes in on one or the other it works. I know if I do a static nat to one of the wan interfaces and then add the same port and inside address to the other wan interface it replaces the previous configure.
The tunnel connection is establishing correctly but when i change the priority in he hsrp configuration of my gig 0.1 interface to be the active on this router the cellular 0/0/0 interface goes down, by the way this is going to be my redundancy.
I am trying to figure out exactly what I need to buy to to connect to an ISP's fiber switch. We need to install a router between the fiber switch and our own core switch to be able to access the IP's allocated to the property. We installed a 1700 with the below config, but we want to purchase a brand new router and we were looking towards possibly the 1921 if the budget allows. Our distributor is telling us that we need to purchase an Ethernet WIC also, but if the router already has 2 ethernet interfaces, why do we need to purchase more hardware? I am a little out of the loop with routers at the moment, so I am not sure if they correct or not, just looking to see if this is the case and if so, why?
interface Ethernet0/0 ip address x.x.x.x 255.255.255.248 full-duplex ! interface FastEthernet0/0 ip address y.y.y.y 255.255.255.252 speed 100 full-duplex(code)
Am applying a policy map to gig0/0interface vlan xIf i apply to either one only it is ok but if i apply it to the other interface it says ''configuration fail''.Am not also given the option to apply it to a particular interface as the one below
We want to puchase new Cisco ISR 1921/K9 . i want to know does it support the following sample IP-SLA commands
ip sla 2icmp-echo 172.16.1.2timeout 500frequency 1ip sla schedule 2 life forever start-time now
track 10 rtr 1 reachability delay down 1 up 1 ! track 20 rtr 2 reachability delay down 1 up 1 ip route 0.0.0.0 0.0.0.0 192.168.1.2 track 10ip route 0.0.0.0 0.0.0.0 172.16.1.2 track 20
Im asking above question because we will need to enable ip-sla on the mentioned router. as i read on the cisco webside, it says Cisco-ISR-1921/K9-IP Base support only IP-SLA RESPONDER feature nothing else. If Cisco-921/K9 does not support the above commands , should i go for ordering Cisco-1921-SEC/K9 ?
I have installed a Cisco 1921 router in our company and i have stumbled upon an issue with the DNS.
We have a internal DNS server and an internal WEB server. In the DNS server there are records pointing to sites on the WEB server, this is working just fine.
The thing is when i use a public DNS such as 8.8.8.8 (googles public DNS) i cannot resolv the external IP of those sites. I do not want to access the sites and i do not want to send any packets to the sites. All i want is to query the public DNS and resolv the public IP where the site is.
I am really stuck with router requirement for one of our client. I need 891 SEC router. I think this comes with advanced IP services. What I have is 1921, with IP Base. can I upgrade 1921, so it will become alternative to 891 SEC.
I'm attempting to set up a Cisco 1921 router running IOS15, and am having trouble with the NAT - it might be that what I am attempting is not possible. The only traffic going across the router is UDP, and the outside of the network canot be changed.
I wish to use a 1921/k9 as a router on a stick. Inside interface interconnects up to 9 VLAN, and performs the routing. Does the 1921/k9 supports trunking and VLANs (I think it should support 16 VLAN, but I am not shure) or I should choose 1921-SEC-k9? Routing performance is the same both on 1921/k9 and 1921-SEC-k9? (I think I'll use static routes or RIP, it is not a large network)
The router passes the Interface test for the WAN port in CCP but it still we cannot access the internet. Here is my configuration:
Building configuration... Current configuration : 3663 bytes ! ! Last configuration change at 09:29:52 Chicago Mon Feb 20 2012 by fbcpekin version 15.1
We are having problems configuring NAT on our Cisco 1921 Router. Below is the running config. The problem we're having is for example our FTP server 192.168.1.16, cannot be accessed from its outside IP address, which is NATed on the router. The server is verified to be up and running and when we do a show debug ip nat, we see the router is translating outside users attempting to access the ftp server to it's correct internal IP address.
i have a cisco 1921 router and it has ge0/0 (LAN) and ge(0/1) WAN. ge 0/0 is well connected and i can ping it and the LED light is on but ge 0/1 has failed to come up.Ge0/1 is connected to an IDU and has a public IP address. The LED light also does not light on ge 0/1.Where could the problem be?
how do I monitor temperature of my 1921 router? Which commands do I need to put on router and which MIBs to use. I am using PRTG network monitor as a monitoring system.
I have a 1921 router with a V.2 T1 wic installed connected to a MPLS circuit. The circuit is down hard and the CD light is flashing. We reseated the WIC card and the circuit recovered for about 30 seconds, then went down and CD began flashing again on the WIC. AL is solid.
How do I access the router's web gui management? I already enabled the ip http server and ip https commands. I have a username and password configured
I open a browser session with the ip address:URL, But I do not get the management GUI. I haven't used the GUI in many years,
Cisco Systems Accessing Cisco CISCO1921/K9 "my-router" Show diagnostic log - display the diagnostic log. Monitor the router - HTML access to the command line interface at level 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 Show tech-support - display information commonly needed by tech support. Extended Ping - Send extended ping commands.
We have a 1921 router that has WebVPN (Any connect) enabled on it as well as IPSEC. When a user logs in using IPSEC client they stay connected no issue. IF you connect using Any Connect it will disconnect you after exactly 10 minutes. Never a second more or less. I ran some “debug webvpn” and the disconnect looks to be a planned event and reports no error it just sends the disconnect command. However, if you watch the buildup you get the following message from Debug.
003960: Jun 7 09:09:06.833 NewYork: 003961: Jun 7 09:09:06.833 NewYork: 003962: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] CSTP Version recd , using 1 003963: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Allocating IP 172.18.249.50 from address-pool IPRange1 003964: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Using new allocated IP 172.18.249.50 255.255.255.255 003965: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Full Tunnel CONNECT request processed, HTTP reply created
[code]....
The highlighted entry is a session timeout set for exactly 10 minutes. I cannot find how to change, remove, or modify this setting. Google has failed me in my ability to find this timeout setting.
Have a cisco router 1921 ,version 15.0,configuration register is 0x2102 and did not remember the password try to solve by GW-RTR>confreg 0x2142 give error translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Bad IP address or host name translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Unknown command or computer name, or unable to find computer address also tried this GW-RTR>confreg 0x2102 give error translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Bad IP address or host name translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Unknown command or computer name, or unable to find computer address what are the way forward to get to default settings?
I have recently configured a cisco 1921 router for internal routing on my network. Here is what i am trying to accomplish:
Main network 10.65.1.0 mask 255.255.255.0- all office devies and computers. Second network 10.65.2.0 mask 255.255.255.0 - All plant equipment machinery and production lines
i have configure gig 0/0 for my company network and gig 0/1 for my plant network. I can ping the router from both networks but am unable to route traffic betwenn them. what am i missing?
i'm having some trouble setting up the correct NAT configuration of a Cisco 1921 router. The NAT is not working as I want - I think my configuration is wrong somewhere. All clients in 172.16.0.0/24 have the correct outgoing address of 1.1.1.3. But the NAT for 10.10.0.4 (and 10.10.0.5, 10.10.0.6) is partially broken: Ping and ssh from the outside world to 1.1.1.4 is "natted" to 10.10.0.4 and works as expected. But from inside (172.16.0.0/24) ssh to 1.1.1.4 should be "natted" to 10.10.0.4, but doesn't work (ping works). ssh from 172.16.0.0/24 to 10.10.0.4 (without doing NAT) works.
network design: =============== 172.16.0.0/16: network for normal use 192.168.64.0/24: network for specific clients and servers
i installed Data license(Evalutation) initally it took the license after reload, when i enter sh lic command the out put shows that Data license is installed and valid for...
But when i run sh ver command it only shws ipbase license and not the data license
I have a Cisco 1921 to replace our current router which is constantly freezing. We have a couple inside servers, one is a web server and application server which needs to be RDP'd to by a couple of clients outside of our network. I cannot get this to work no matter what. I know it's not the server's setup as when I plug the network back into the old router, it works just fine.
All clients have access to the internet, and I can successfully ping/resolve hosts from both the router and a client computer connected. I cannot, however, rdp using neither our public IP, nor our hostname. The hostname does resolve to our ISP assigned IP, but the server cannot be contacted, leading me to belive this is a NAT issue. [code]
How do I chose a router? Network has about 100+ devices across a campus with remote sites connected thru metro-e.Thinking of a 1921 to use as core router.
I am working at a client site today. This specific client has decided to replace their legacy 2600 branch office routers with newer 1921 ISR G2 routers as they move from a Legacy Frame WAN to a MPLS network with a different provider.
The backup in the former scenario was actually an ISDN solution. Moving forward, the provider has sold them a 3G backup solution. To support this, we have purchased Cisco line cards for the 3G. The part number for the cards is "EHWIC-3G-EVDO-V=".
I was asked by the client this morning if there was a way to tell what the IMEI number for the 3G card was. I performed a shew inventory, as well as a shew hardware, but I do not see this IMEI number. I also checked the label on the packaging box that the cards came in, but do not see this number. Is there a way to tell what this number is for each card?
We got a 1921 router that works fine. We ordered Verizon Businss One Static IP ADSL. It came with a Westell Modem that we configured in bridge mode. When we do a test by assigning a static IP to our laptop then hook it up to the Westell it works fine. We can browse the web. Then when we assign a static IP to the Ethernet on our 1921 then connect it to the Westell it doesn't work. We can't ping out from the router to for example 4.2.2.2. From the router we can't even ping the default gateway (on Verizon's side).
I'm trying to identify a Cisco router that will give 300+Mbps through a 1Gb WAN port. I think the 1921 can get up to around 300Mbps with the on board RJ45 ports, but are there any other/better suitable models?
There's no need for any other particular functionality or feature set, the routers aren't doing anything fancy or unusual - it's the achieved throughput that's important.
