I have a cisco 2911 set up at one of my sites and it is configured with sub-interfaces as this provides a default gateway to each of the offices.I have just had a 100mb leased line put in and i have a couple of questions regarding the config.let me start by telling you how it is set up .I have 3 HP Procurve switches connected together then that connects to the Cisco and the Cisco connects to a Zywall
HP Switches > Cisco 2911 > Zywall > Internet
We are wanting to remove the Zywall and connect the Cisco to the Leased line box
HP Switches > Cisco 2911 > Leased Line > Internet
The config of the cisco is
G0/0 - is up but no cable connected as this holds the sub-interfaces G0/1 - Connects the Zywall - 192.168.1.1 (this has firewall rules to forward traffic through) G0/2 - Leased Line
The way i have configured the sub interfaces is with its own DHCP pool and default router, some of the offices have there own ADSL router and hold there own Internet connection and the default gateway for that is 192.168.xxx.253 and the offices that use the Cisco use default gateway of 192.168.xxx.254
Now my question is how would I move everyone onto the Leased line and get rid of the Zywall ? Would it be as simple as giving the leased line an address and put in a static route to forward all traffic through that connection ? Or am i missing a trick or 2.
The reason is i want to know the difference between the leased line and the DSL line. The whole thing behind the confusion is, We plan to have a high speed internet connection in our office. We will don't have a branch office or some thing like that. I preffered to have high speed internet in our office. I found in some website that Lease line will have high speed connectivity(Upto 10Gbps). Can i use the lease line or DSL is enough for our office. Our office contains of 82 user who will use internet.
my company has a 4mbps leased line from TTSL . we are getting 2 WAN IP and 2 LAN IP. in Addition we are also getting 12 additional IPs .-what is additional IP, their uses?-how are the 2 wan ips configured? & how they are distributed in network? -is 1 IP from the ISP sufficient if i have a 1:1 internet bandwidth connection?
I got following IP address from BSNL to configure Internet leased line.OFC cable was terminated at our premises. it has to connect Ethernet port.Say eg.Wan IP : 192.168.1.6 255.255.255.252Public address pool : 172.168.10.6 to 12if i configure one address on Ethernet port1 as nat outside 192.168.1.6 255.255.255.252.the ip address given for wan & pool are different.Then how can i configure pool and how to configure nat inside eg 185.168.10.1 to 255the above ip are not actual ips just given for example.
Leased line is between dammam to dubai and the dammam office is getting internet from dubai.The ip address of Dammam office is class A (Public IP) x.x.x.x and for dubai it is y.y.y.y which we are using as proxy for accessing internet.I purchase the local DSL direct line connection through cable from Local Provider and this ip address range is 192.168.1.0 - 192.168.1.254.Is it possible to use the DSL line as failover, so if one line goes down the user should remove proxy and can use local internet.The router which is using is cisco 1800.
I believe that failover is possible, 100%, but would like to know how I can do it and requesting for sharing more inputs about failover in this case.
I am going to design one network. I had queries with this design.Let me explain scenario first( it was attached below).I have two sites, Site-A and Site-B, repectively.
In site-A i have one Cisco 1841 router, one Cisco ASA 5510 firewall and One cisco 3560 layer 3 switch. in site-B i have one Cisco 1841 router, one Cisco ASA 5505 firewall and One Cisco 3560 layer 3 switch.
From ISP side
I have point-to-point leased line between sites A and B. And both sites have internet connectivity from another ISP.
I planned to terminate leased line in cisco 1841 router in both branches for branch to branch connectivity.
I will configure site to site VPN between two sites, A and B.
Here my query was i want make VPN as failover connectivity if leased line fails. In both the cases, i need internet to the inside users in both sides.
Summary requirement:Leased line is Primary and VPN is Back-up, if leased line fails. In both cases internet is needed to inside users.
I have two sites connected via 2901 routers to a head end with an ASA 5510, the WAN circuits are LES running at 100MB and at the head end we have a 100MB leased line. All WAN circuits are provided wires onlyby another supplier. I have setup the two 2901 routers with inside IP addresses on GE0/0 and a /30 subnet for the GE0/1 interfaces to the ASA over the LES circuit.
The LES circuits are set to 100MB but the problem I am having is that one of the 2901s will only negotiate at 10MBps Half Duplex with the ASA at 100MB Half Duplex, the other will negotiate at 100MBps Full Duplex at both ends. My WAN provider tells me both LES circuits are the same so I cannot work out why one will negotiate at 100MB Full and the other at only 10Mb Half.
At the head end I have and ASA 5510 connected to the WAN providers 100MB circuit but testing from my end sites I can only get 6MB download and 0.5MB upload on an Internet Speedtest.
I used Wireshark when downloading from my end sites and I can see lots of TCP retries and duplicates so I think this is a duplexing issue, my question is, my WAN provider is stating the issue is nothing to do with them and it is my 2901 and ASA that is at fault, they state if they connect a laptop to the LES circuit and then their leased line they get 100MB up and down.
I am a total new comer for Cisco Router. All I know is plug the console cable to a serial port on a PC, fire-up HyperTerminal to view and that's it. I don't know any command or scripts.
I am trying to setup my client connection, I already receive the required configuration settings from ISP. It is a Leased Line Serial connection.
How to setup the router with the below configuration.
Serial IP : 1.X.XX.222 Serial Netmask : 255.255.255.XXX LAN IP : 1.X.XXX.1 to 1.X.XXX.31 LAN Netmask : 255.255.255.XXX [Code] ....
I have configured cisco 1751 router for internet with nating. Internet browsing working fine. But We have polycom hdx 6000 conference system to connect from remote site.
1. While calling remote ip it is ringing and connecting but not displaying any thing on the screen but their side is displaying. 2. When they call our side ip it cannot connecting.
I have connected netgear router then video conference is working fine (with out port forwarding also). If I configured that router between 2 local sites (not on internet line) its working fine where i did not configured any thing just given routing. Configure same situation using internet leased line.
We have configured ASA 5510. We have configure Ethernet 0/0 ( Outside ) connected with ADSL line and Ethernet 0/1 ( Inside ) Local LAN. we have configured NAT and all the traffic is passing through outside interface. Now we have connected ethernet 0/3 ( leasedline ) interface with static public IP. Now we want to allow SMTP traffic to pass through from this interface.
How to configure it if we want our local lan SMTP traffic sending through new leased line ( Static Public IP ).
According to specifications fo Cisco ISR G2 2911, it has got 4 EHWIC slots. But in [URL] appears that Cisco2911 supports only 2 HWIC-2FE or only 2 EHWIC-1GE-SFP-CU.
We have configured new 2911 router with HWIC-2T with it.However we are seeing serial interfaces up, but can hardly ping other end. Again we are seeing a lot of CRC errors on serial interface.
But if we connected same cable, with other old router 2811, it works fine. Confiuration is same on both the routers. [code]
I had purchased a HWIC-8A in an effort to provide terminal server capabilities into multiple routers. I had found a document that I thought would take me through the configuration but it doesn't appear that the command syntax is the same on the 2911's as it is in the document. Does any know how I would need to get this configured on the 2911 router?
I have cisco 2611 + NM1E , and i want to trade in for a cisco 2911 security router + HWIC4 Card.Which type of HWIC card should i use in the cisco2911-sec/k9 router?
I am trying to configure a shdsl port on a 2911 router for CO mode of operation.The dsl-group auto command does not seem to change the port to operate in CO mode and the link will not come up to a remote router that has a card installed operating in CPE mode.The configuration I have applied for the shdsl controller is.
controller SHDSL 0/1/0 dsl-group auto ! !
Do I need to use a HWIC-4SHDSL card for the CO mode operation?
We have a 6 spoke DMVPN setup. Five of the six spokes work fine. On the 6th spoke, a 2911, we have created a Tunnel0. Other spokes and the hubs can ping it's ip, but it can't ping itself. When we do a show interface it shows the Tunnel 0 is up, but the protocol is down. What does that mean?
I have a brand new 2911-TS running 2900-universalk9-mz.SPA.151-4.M1. I have connected the async lines to several devices including ASA5510's, 7206V XR and 6506es. I'm experiencing issues where I go to connect to the console port of one of my devices and my access is denied as if the port was already in a session. I clear the line and try again, same response. If I swap that line with a known functioning line I see lines and lines of output as if the device I was trying to connect to was constantly sending data to the console port. I've not had this problem on any of my older Cisco terminal servers. I opened a TAC case and they had me RMA the HWIC module. I cannot find any information about setting some sort of buffer limit or session timeout. I feel this is a configuration, or mis-configuration issue.
I am pinging across the Wan to test the circuit and it is pinging fine with the default extended ping 5 repeat count and 100 Datagram size. I was told that I need to up the repeat count to 1000 and the datagram size to 17999 to test the line. Also when performing this test Txload is 255/255.Is this really needed to test the load on the line, that big of a datagram size?
i have a problem with my adsl line connected on a HWIC-ADSL on router 2901 it was working good until yesterday the atm interface is down but the interface dialer is up .i connected this line into home adsl modem and the line is working good?
I have remote access as I work at home on a government laptop that has Entrust( for security). My IP lapse time is set for 1 hour and every hour I am losing full connection due to having to sign back into Entrust. I need to be able to lenghten my lapse time on my work computer. My other two personal computers are fine with 1 hour as there is no Entrust on either of those laptops.....is it possible for me to change the lapse time to say 12 hours, 1 weeks, whatever??
What is the difference between HWIC-1ADSL-M and HWIC-1ADSL without the "-M"?Can either of the above ADSL cards be used in Cisco 3845 router? We are using HWIC-1ADSL-M in our Cisco 3845 routers everywhere?
And I would like to ask some opinion on the best configuration for the above layout:
1. Configuration #1 - Using load sharing and automatic failover So I want to ask whether there's any link/url that provides details/guides on how to setup the load sharing and failover?
2. Configuration #2 - Workstations 1 - 35 will be routed through Line01 gateway and workstations 36 - 70 will be routed through Line02 As for this configuration, it's done now. However, I want to know whether there's any software (preferred web based application which allows me to change the gateway from line #1 to line #2 for all 70 computers instead of having to go to each workstation to update the gateway).
I'm trying to configure policing and/or shaping on a setup of 2 x ASA 5505 Sec Plus. The units are placed in office A and office B and each have a ISP connection to the internet and a leased line with a capacity of 4/4 Mbit/s for interoffice communication.
On each ASA there's four subnets. VLAN 200 is used to connect the offices through the leased line.
I've read a lot of articles and posts about shaping and policing on the ASA but still can't get it to work like I wan't to. I'm trying to limit all traffic besides IP-telephony traffic to 3 Mbit/s and thus reserving 900 Kbit/s for voice traffic. I tried setting a service-policy on the linknet interface on each ASA and set Traffic match to Any traffic and QoS settings for both input and output.
I can see traffic passing the policy when I run the "show service-policy police" command but it never seems to be high enough to be policed which is strange since the ASDM monitoring shows that I'm pushing 3900 kbit/s. I file transfers verifies that policing does'nt work.
I am having one router CISCO2911/K9 (Cisco 2911 w/3 GE,4 EHWIC,2 DSP,1 SM,256MB CF,512MB DRAM,IPB). But now my management asking me to upgrade this router as CISCO2911-SEC/K9.
I have an existing C2821 router (2 onboard GE + 1 HWIC-2FE) currently. Like to add another 1 HWIC-2FE. Saw this doc on Cisco website which states Max of 2 HWIC-2FE for Cisco2821. Want to confirm this is indeed so as another link states max of 1 HWIC-2FE.
