Cisco WAN :: 2801 How To Bridge Through Public Ip Scheme
Dec 14, 2011
I have a cisco 2801 router, My ISP in which i receive my bandwidth from has assigned me a ip address/gateway etc for my FA0/0 from our Telco switch. I need to figure out how to bridge through the public ip scheme they are issuing me through FA0/1 (setting up a transparent bridge) so in example if i was givin 192.168.1.189 on a /30 network for my router (assigned to FA0/0) how to i set it up to bridge through the publics?
View 9 Replies
ADVERTISEMENT
Mar 12, 2013
I have a Cisco 2801 with two DSL cards that are both routing to the internet, with NAT to the private LAN interface. I am using IP SLA and route maps to accomplish this load balancing. I have rsolved most of the issues that come with this setup, but I still have a major issue: I cannot SSH into both of the WAN addresses, only one. I have included whqat I think is the most relevant config info.
#sh run
! ........some info omitted........!
!
[Code].....
View 12 Replies
View Related
Jan 5, 2013
I have 2 public ip, 1.1.1.1 anda 1.1.1.2. I'm connected to the ISP using PPPoE. I also have a router and a firewall. I want to assign 1.1.1.1 to router and 1.1.1.2 to the firewall. I do not want to NAT 2 times (one in router and one in firewall)That's why i want to bridge Fa0/0 and Fa0/1.Could this be done in Cisco router? I've done this command but it's not working as i want. I'm using bridge irb and bridge-group.
View 6 Replies
View Related
Sep 30, 2012
I was wondering if an interface numbering scheme is available for the 6509-E switch equipped with SUP-2T and includes 16Port X 10GE DFC4, 48 x 1GE SFP and RJ 45 line cards. Would like to understand:
How the slots are addressed
Interface Addressing
On board SUP-2T 10G and 1G port addressing
View 2 Replies
View Related
Jan 30, 2012
I have been assigned to create a basic IP Addressing Scheme. The company has a single class B private address range of 172.16.11.0/16 and it needs to be divided into four subnets. They are all based on a single router.
Subnet A: 500 hosts
Subnet B: 200 hosts
Subnet C: 50 hosts
Subnet D: 20 hosts
How can I subnet them correctly and how would I make an addressing scheme for each subnet? (Host range, server, peripherals, gateway address? etc.)
View 3 Replies
View Related
May 18, 2012
I'm doing something in class where I have to define a ip addressing scheme for multiple buildings in what im guessing is a campus lan. I understand how to subnet, but was never taught how to put it into practice. I'm having trouble grasping the creation of a network for: multiple buildings(4) with 3 levels/floors each, housing around 2000 students and 400 staff, all needing to access the network in each building.The main hall houses the data center on the first of 4 levels.
View 7 Replies
View Related
Jan 17, 2013
I have access points deployed across several buildings that each have a different IP scheme and their own T1 line. Is it possible to configure the 5508 controller to allow these access points to use the IP scheme assigned for that particular building or will dhcp always assign an IP address to the connecting client based on the IP scheme of the building that the controller resides in?
View 1 Replies
View Related
Oct 18, 2012
I was trying to make an Ethernet cable about 100 feet long and what I found; it was not working in non-standard color scheme. However it works fine when re-arrange its color combination into standard, (Same cable, only color difference).So, why this Color scheme is important? And what is the secret behind its color combination?This is Standard Color Scheme for Ethernet.
View 3 Replies
View Related
Jan 17, 2010
I was wondering if a interface numbering scheme is available for the 4900M. Configuration includes 1 x 8Port 10G and 1 x 20Port 1G modules. would like to understand How the slots are addressedInterface AddressingTwinGig interface addressing
View 10 Replies
View Related
Oct 3, 2012
I change DHCP scope to match corporate IP scheme Friday came back To discover only some stations picked up new leases from the scope.
View 2 Replies
View Related
Apr 2, 2013
One of our vendors requires using a public ip address to setup a site-to-site IPSEC vpn. We only have one public ip address and that will be used for the vpn endpoint and for internet access for the local network. I've setup policy NAT from our local network to the outside interface. I'm also using the outside ip address for the crypto map. The tunnel setups successfully and the Tx count increases anytime I try to ping the remote network, but the ping fails and the Rx count does not increase. According to our vendor, we should be able to ping the remote network and connect using port 443. When trying to connect using port 443, I see a SYN timeout in the logs. I'm not sure if the problem is on their end and they're rejecting our traffic, or if something is misconfigured on our end. I'd like to make sure that I have everything configured correctly before I go and point fingers at them.
Local Network - 10.10.9.0/24
Remote Network - 20.20.41.0/24
Remote Peer - 20.20.60.193
.ASA Version 8.2(5)
!
hostname ciscoasa
[code]....
View 4 Replies
View Related
Jul 10, 2011
i have an ASA 5520 8.4(1) setup as follows
public wan
|
|
ASA-- public dmz
|
|
private lan
i need to allow https traffic to a server in the DMZ that will have a routable IP address will just an ACL suffice ?which interface do i apply it to ? wan or dmz ?i dont need a NAT since the DMZ is a routable space?
View 6 Replies
View Related
Feb 5, 2013
I have a Cisco 2801 with dual ADSL WAN connections, PATing to a network hanging on the fa0/1 interface. From the server connected to the router (hanging off of the fa0/1) interface, I can ping any address and there are no issues. But from inside the Cisco CLI, pinging certain addresses causes erratic behavior. [code]
View 5 Replies
View Related
Nov 9, 2011
I have a 2801 router. The Fa0/0 int shows up/down. I have plugged it into diffrent cisco and non cisco switches and even a cross over cable to my laptop. I cant seem to get the protocol up. I have changed the speed to 100 and duplex to full to try to get it up that way and nothing. [code]
View 7 Replies
View Related
Dec 23, 2011
I have a 2801 with dual ISP connections, and I have configured route-maps to direct voice traffic over ISP1 (working just fine), and I'm attempting send all other traffic over ISP2 (traffic is load-balancing instead). The connection to ISP2 is DHCP, and I have configured a route-map to route this traffic using the 'ip next-hop dynamic dhcp' command, but when I look at the route-map, it states the following: ip next-hop dynamic dhcp - current value is UNKNOWN..Is there something that I need to enable in order to see the next-hop, and properly send traffic over the ISP2 connection? [code]
View 9 Replies
View Related
May 3, 2012
I have a Router 2801 What conf should i make to access the webserver from the same LAN.
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.63
[Code].......
View 6 Replies
View Related
Jul 23, 2007
I looked but could not find any information on what's the use of the USB interface on my 2801 router. I saw something about Cisco USB memory module and eToken by Aladdin. Is this interface restricted to Cisco and Aladdin only?
View 17 Replies
View Related
Oct 14, 2012
I have a Cisco 2801 with flash: c2801-advipservicesk9-mz.124-16.bin where I use to doing VPN IPSEC.My problem is where I do a connection with a client, if my VPN dont have a traffic, the tunnel are closed. If a receive or send any traffic, the tunnel get up again.If don't have traffic, this tunnel is closed and after is opened other tunnel where is changed the conn-id to 999 for example.This comportament is normal? Exist a form that my tunnel never close? I enabled the parameters below: [code] But the tunnel continues closing if a don't have traffic.
View 5 Replies
View Related
Mar 21, 2012
We are setting up a new VPN from an ASA to a cisco 2801 router (behind a third parties checkpoint firewall). We seem to be almost there with the setup but the tunnel is not working correctly. I have included a debug from the 2801 router and its config and a diagram of the setup. [code]
View 2 Replies
View Related
Aug 4, 2011
I have a Cisco RV110W small business router setup at my home. It has one of those HTML GUI interfaces, check the boxes, etc.., to get things working. Basically, your typical home router with VPN. I have enabled the VPN, it's PPTP, added the password, and now it's automagically configured! I can successfully VPN to my home with a Windows7 client. Here's my problem, I now need to VPN into my home router with a 2801. Is this possible? Everything I found on the subject has only been to setup a Cisco IOS router as a VPN server or tunneling to another IOS router. No examples using an IOS based router as the client.
View 3 Replies
View Related
May 29, 2012
We have one Router Cisco 2801 at the customer site and facing issue of having very High CPU coming to 99%.CPU utilization for five seconds: 99%/28%; one minute: 99%; five minutes: 98%
View 2 Replies
View Related
Oct 31, 2012
I am trying to run the following commands on a 2801 router, but the commands are missing:
mls qos
mls qos map cos-dscp 0 8 16 40 32 46 48 56
The only QoS command i have in global config is (no MLS qos) :
REMOTE-ROUTER1(config)#qos ?
restore-show-output Restore old show output
shape-timer Set the HQF shape timer interval
The router is running IOS:
System image file is "flash:c2801-ipbasek9-mz.151-4.M5.bin"
Am i just running the incorrect IOS or am i missing somehting, i need to change the QoS Map for my Nortel VoIP. The VoIP phones connect to a 3750 PoE which used to conenct to a 2651XM to route VoIP and data traffic over the same copper pairs (WAN link to hub site) hence the need for a Service policy but being Nortel phones, require changing the cos-dscp map. the 2801 is going to replace the 2651XM using a new HWIC.
View 4 Replies
View Related
Jun 23, 2011
We have a 2801 rotuer in place that hooks up to a metro ethernet link that's obviously dropped off to us via ethernet. Anyway, the throughput granted to us is 20MB, but for some reason I can't get it to go anything above 11MB at the most. I've spent a day going through documentation trying to find the fastest speed the 2801 supports and I can't find my answer. I've seen that the high speed wan cards in this router support up to 45MB, but I'm not using a WAN card, only one of the two built in 10/100 ports.
what the maximum throughput speed is on a 2801?
View 7 Replies
View Related
Mar 26, 2011
I have a FWSM in my 6509, this firewall is managing three VLANs, one of which holds a file server. As you all know, FWSM do not support VPN like the ASAs and PIXs do. I have been trying to add remote access to this file server LAN all week. The only VPN device i have is a 2801 router.
first layout: VPN router behind FWSMstatic translation from FWSM LAN (private) to VPN WAN (public)default route was facing back at FWSMip address pool was to be NAT'd on the interface facing the FWSM the idea was that my VPN address pool would be NAT'd back to the FWSM on it's VLAN. since the FWSM was managing this VLAN and recognized the source IP of the translated address pool, i would have access to my precious file server.
second layout: VPN router fa 0/1 on a /30 with 6509 (public)VPN router fa 0/0 still on the same LAN as FWSM (private)address pool for VPN once again NAT'd to fa 0/0default route pointed to fa 0/1static route of FWSM LAN pointed to fa 0/0 this idea was to have more of a 'inside' and 'outside' interface on the VPN router. this too did not work, having used every trick in the book, i could still not ping anything on the FWSM LAN while VPN'd in the network (aside from the LAN interface on my router)
trace route was showing that the all routes were headed out fa 0/1 (default route) and all to my FWSM died. i really don't think my address pool is being NAT'd, though my route map statement applied to the NAT policy is permitting my VPN address pool.
I am new to VPN technology, one of those things that happened to land on my lap. how this layout could work? there are no good VPN Remote access walkthroughs for a situation like this (2801 allowing access to a FWSM controlled LAN)
View 2 Replies
View Related
Apr 23, 2011
i have configured remote access vpn on my 2801 router's gio0/0 int ip x.x.x.1. i connected my laptop through vpn client from internet. i connected successfully and my vpn router gives me the assigned ip block y.y.y.1. from my laptop i can ping the other int gio/1 ip z.z.z.1 but i cant ping the ip z.z.z.2 of my core sw which is connected on router's int gi0/1.
View 14 Replies
View Related
Jul 31, 2011
The application here is a wind power project, built in two phases, without any effort to coordinate or integrate the two sites during the design phase. All operations activities for both phases are performed by one staff out of a common location. This is a rural area and Internet connectivity is mission critical due to contractual obligation with Electrical Utilities.
The client has a need to reconfigure a network which has grown over time in a layer by layer approach, whereas at every point in time that an additional T-1 or other changes occurred to address a specific need, no thought was ever put into integrating the entire site as a whole. It is at best a dysfunctional solution which somewhat accomplishes thier needs, and at worst, a kludgy, grossly security compromised, and difficult to use infrastructure. There is every kind of equipment one can imagine, each installed by some entity providing needed services on the site, but forced to make uninformed decisions because the client really has no IT department to coordinate with. Over time, every vendor just provided their own switch, router, or maybe figured out how to reconfigure another existing device to also provide the routing or access needed, To say the least, it's a mess.
The client requests a solution which provides a means to accomodate 6 internet connections (4 T-1 lines, and 2 satellite) in a manner which aggregates available bandwith and provides redundancy. The T-1 lines will be the main internet access, with the satellite connections only used if available bandwidth falls below some threshold, say 3Mb. There are many internal networks which need to be routed to and between, in total, about 20 subnets. There are 2 SCADA (Control) networks which have a mandatory requirement of 1Mb each, a VoIP system which does not use any internet connetivity as there are 6 POTS lines dedicated to it, an internal office LAN and a turbine manufacturers site LAN.
The T-1 lines, at 1.5Mb x 4 = 6Mb.
The 2 SCADA networks require a guaranteed 1Mb each, the remaining 4Mb is to be allocated between the office LAN and the turbine manufacturer site LAN. The satellite connection are only to be active in the event bandwidth falls below 3Mb.
There are 2 Cisco 2801 routers on site which could be reutilized if appropriate. Each T-1 has it's own Adtran CSU with Ethernet out. All T-1 lines are /29 IP Blocks. 2 of the T-1 lines are adjacent IP Blocks, for what its worth.
Everything here is open to reconfiguration. The client wants this finally integrated correctly with the ability to address emerging Electrical Utility cybersecurity requirements in the immediate future.
An ideal solution would be fully redundant to eliminate the single point of failure at the edge router. As to whether there needs to be separate edge and interior routers, I just don't know that. I would guess everything could be done with just a pair of redundant routers at the edge, but perhaps it is better to do the interior routing between subnets on a different router(s).
Again, the goal is a well integrated, redundant, and secure solution. My part is mostly complete, with the OSP part of the network finally at 100% after 5 years of stupid and careless misconfigurations and bad fiber splicing (by others).
I'm absolutely covered up in business at Layer 1 & 2 on these sites, as the physical plant and associated network elements are typically very poorly designed, specified, and implemented. The complexity of this job leads me to seek outside advice and ultimately a more qualified Cisco professional than me. I'm experienced enough with Cisco to know when I'm in over my head. I know a diagram would be nice, but at this point I've only got a very detailed diagram which reveals too much site identity information to make public. I'll wait to see a few comments and in the meantime work on removing site identity info so I can post a good diagram for everyone to see.
View 1 Replies
View Related
Apr 24, 2012
Can I associate the non-root bridge model 1310 to the root bridge model 1400? Is there any problems on the configuration I need to be aware of?
View 7 Replies
View Related
Dec 19, 2012
Someone told me the commands, but I can't remember them. Have a router (2801) at the end of a highly utilized T1 link/router. How do I protect it so my SSH and/or Telnet sessions will get serviced if the router is real busy.
View 9 Replies
View Related
Apr 20, 2012
1- Cisco Router
Eth0/0 : Ip address 192.168.1.1 /24 == connected my laptop of 192.168.1.2
/1: Ip address : 192.168.2.1 /24 = connected cisco swith
2 - Cisco Switch
VLAN 2 Name : Sales : ip address 192.168.3. 1 = connected computer 192.168.3.2
VLAN 3 Name : Marketing : ip addres 192.168.4.1 = connected computer 192.168.4.2
So I want my laptop that connected the router Eth0/0 Interface should access both VLAN 2 and VLAN 3 computers
View 4 Replies
View Related
Oct 3, 2011
I've been looking and I can really find much info about this, I got a 1841 and 2801 router with ADSL WIC cards and both are synching really low compared to my cheap home router
This leads me to believe I need a firmware update so I got the adsl_alc_20190.bin and loaded it into flash and reloaded my router but its still saying my firmware is using an embedded one.
sh flash:-#- --length-- -----date/time------ path1 1000636 Oct 4 2011 05:59:54 +00:00 adsl_alc_20190.bin
sh dsl interface atm0/1/0ATM0/1/0Alcatel 20166/20174 chipset information ATU-R
[Code].....
View 3 Replies
View Related
Dec 6, 2010
I have a nat and vpn setup on my Cisco 2801 router.Everything is working as expected except the NAT. I have a single static nat translation but it only works for inbound and not outbound. Going outbound, it uses the default overload nat address of the outside interface. [code] I want to add another mailserver. But I fear if one mailserver were to get black-listed, they would both be reporting there ip address as the same address (the one on the ethernet interface) which would blacklist both mail servers.Again, inbound nat works ok, but outbound is just using the IP of the ethernet0/0 address.
View 2 Replies
View Related
May 31, 2011
I'm having trouble setting up a Cisco 2801 as an internet router between our firewall & our ISP.I've setup FastEthernet0/0 as the WAN port & FastEthernet0/1 as the LAN port. I've setup a default gateway pointing the next hop (the ISP),when I plug in a pair of laptops configured to mimic our IP scheme, I'm able to ping thru, but when I put the router between our firewall & ISP I'm not able to get out to the internet (can't ping google) I can still ping the next hop.,Our old router died, so I am unable to pull up its configuration. Here is the code I'm come up with so far.
View 6 Replies
View Related
Dec 26, 2012
I need some clarification if it is possible to do an IPL connection between Cisco 2801 (T1) to Cisco 1841 (E1) via Ethernet (2801) to Serial (1841).
I am unable to find any documentation about this and I need to connect our network to an offshore network.
View 2 Replies
View Related
