Cisco WAN :: Configuring QOS Between 2800 And 1800 Series Routers
			Feb 20, 2012
				We have an MPLS network to a half dozen remote sites.  At our main location we have a 2800 series router.  In the routers config are the following lines for QOS.  When I go to the routers on the other end of the MPLS, none of them are configured with these same policies.  Would these not be in the running config of the 1800 series routers, or is this not setup correct and this should be removed?
	
	View 13 Replies
  
    
	ADVERTISEMENT
    	
    	
        Jun 2, 2012
        why I can't use cisco ehwic-3g-hspa-u card in cisco 2800 series and 1841 series router?documentation said that it should work with that devices but when I installed it, it doesn't work even as device i can't see I am using cisco latest ios  advance ent. 15.1(4)M4?
	View 3 Replies
    View Related
  
    
	
    	
    	
        Aug 1, 2011
        Site A, site B, site C, site D is connected using leased line each other. We are using Cisco 1800, 2800 and 2900. Each site also have Internet connection using ADSL connected to firewall, we are using pix 501 and ASA 5510.My question is, can i use the existing ADSL line to be use as a backup line if the leased line is down on any of the site??And i want it to trigger itself, once the leased line is down, the firewall UP the backup line? something like that..
	View 1 Replies
    View Related
  
    
	
    	
    	
        Jun 9, 2013
        load balancing and automatic failover between two isp 
	View 13 Replies
    View Related
  
    
	
    	
    	
        Jul 29, 2010
        I will have this one router. Its f0/0 will be for the Internet connection with bandwidth of 30Mbps. Its f0/1 will be connected to a switch for internal networks. This link will be separated to 3 VLANs for 3 internal networks. I'm wondering if there is a way to gurantee 10Mbps for each VLAN but allow use up to 30Mbps when another two VLANs are not using any Internet bandwidth? I only worry about download bandwidth from internet.The 3 internal networks will all have public IPs and they belong to their own subnets. There won't be NAT/PAT.
	View 18 Replies
    View Related
  
    
	
    	
    	
        Jun 28, 2011
        We have 2.5 Mbps connection from an ISP at our branch routers (1800 series)with single physical link terminated on FE0 but have two subinterfaces with separate subnets. 
 
I have applied the following policy-map outbount under physical Interface FastEthernet 0. Show poliocymap output is as follows
 
 Policy Map QoS-OUT
   Class Email
     priority 512 (kbps)
   Class SQL
     priority 512 (kbps)
   Class File-Copy
    police cir 1024000 bc 32000
      conform-action transmit
      exceed-action drop
   Class CCTV
    police cir 384000 bc 12000
      conform-action transmit
      exceed-action drop
But it seems that sometimes( not all the time ) the CCTV traffic seems to exceed the 384k and chokes the entire link(2.5 mbps).
	View 4 Replies
    View Related
  
    
	
    	
    	
        Aug 1, 2011
        We've just discovered it seems the 2800 series aren't getting IOS 15.2?
 
We're running a 2851 for our CME and specifically want some features in CME 8.8...
 
End of Sale has been announced, but as it stands you can still purchase this router new today.
	View 5 Replies
    View Related
  
    
	
    	
    	
        May 7, 2013
        i have one cisco router 2811 now its not booting normally.
 
Router was working without any problems but due to power loss router restarted and goes into rommon mode
 
I tried to boot from flash and usbfalsh with different images but no use router is in still rommon mode.
  
here the output of my router:
 
program load complete, entry point: 0x8000f000, size: 0x3117470
Error : compressed image checksum is incorrect 0x8E095E7F
Expected a checksum of 0x8E0AE77F 
*** System received a Software forced crash *** 
signal= 0x17, code= 0x5, context= 0x80014e20
[Code].....
	View 7 Replies
    View Related
  
    
	
    	
    	
        Feb 7, 2011
        Each time I enter show run on my router 2821, it takes ages to display and I have a cpu peak from the ssh process ( I am connected through SSH)
 
RTR-2821-01#sh proc cpu sorted
CPU utilization for five seconds: 96%/21%; one minute: 34%; five minutes: 22%
 PID Runtime(ms)   Invoked      uSecs   5Sec   1Min   5Min TTY Process
  55       26948       814      33105 74.96% 16.92%  5.87% 323 SSH Process
	View 3 Replies
    View Related
  
    
	
    	
    	
        Aug 21, 2012
        I'm trying to turn off SSH version 1 & 2 to pass PCI compliance. Problem is, I cannot touch the VPN link between the two offices. I'm afraid the PKI certificate used for the VPN will be deleted if i zeroize the RSA key which seems to be the only way to stop the router responding on port 22. 
 
Here is the stuff from the running config related to the crypto map: 
crypto isakmp policy 1
 encr 3des
 authentication pre-share
 group 2
[ code].....
 
I'm only CCNA so I'm not even sure if the certificate or RSA key is being used for the VPN link, but I can't tell from the running config that zeroizing it would be a good idea and not break the VPN. I'm open to other ways of disabling SSH, as we are able to just connect using a console cable. But it looks like denying port 22 with an access-list doesn't even stop the router from responding to the port.
	View 6 Replies
    View Related
  
    
	
    	
    	
        Jan 25, 2013
        My Cisco seems to be stuck when it boots up, with the following:
 
Upgrade ROMMON initalized
And it goes on with self comperessing image then an OK but then it starts loading again all over.
	View 13 Replies
    View Related
  
    
	
    	
    	
        May 22, 2013
        I have Router 2800 series Global nating is configured on it.
ip nat inside source list 111 interface Dialer1 overload
!
access-list 111 deny   ip 192.168.1.0 0.0.0.255 192.168.0.0 0.0.0.255
access-list 111 permit ip 192.168.1.0 0.0.0.255 any
 
My object is that i want give internet access only for few users ip E.g   IPs addresses from range 192.168.1.0-10 can acess intenet access other all are deny.How i do this with ACL .
	View 2 Replies
    View Related
  
    
	
    	
    	
        Oct 3, 2011
        Any problem/issue with using 28VDC to power the 2811 router. The spec calls for a 24VDC power.
	View 1 Replies
    View Related
  
    
	
    	
    	
        Jan 10, 2011
        i have Router 2800 series we are using  leased line Connection 8 Pubilc IP.One IP Config in Router FE0/0 IP  101.102.148.91 and FE0/1 192.168.0.0 Local IP.I have 6 Web Server. How to Config other 7 IP address on Web server in the router 2800 series.
	View 6 Replies
    View Related
  
    
	
    	
    	
        Jun 10, 2012
        Can I use Sandisk Compact 4GB Flash card on Cisco 2800 series Routers
	View 8 Replies
    View Related
  
    
	
    	
    	
        Jun 29, 2011
        I have a comcast business class cable modem and am trying to connect it to my cisco 2821 to route only certain types of traffic.
	View 3 Replies
    View Related
  
    
	
    	
    	
        Aug 3, 2012
        Is there a way to set static routes per VLAN?Example VLAN 100 sends all traffic to 192.168.1.1 and VLAN 200 sends all traffic to 10.1.1.1. (2800 Series RTR)I have 5 networks that have their own gateway to the Internet via satellite link. Those networks run over the same infrastructure on separate VLANs. They frequently send traffic to each other, which gets sent over a slow SAT link. I introduced a router to the network and would like to set all my hosts default gateway to the local routers sub-interface then have a static route that send all traffic that is not on one of my 5 networks back to that VLANs respective SAT modem to get routed out over the Internet. 
	View 4 Replies
    View Related
  
    
	
    	
    	
        Aug 16, 2012
        I am trying to add WCCP to be configured for websense. My first option seems to be either purchase an IPServices license for the stack of 3750E switches, but i am thinking this will require us to license all three switches in the stack. The second option i am looking at is to do the WCCP configuration on the 2800 router we have on the edge. The problem is both Gig ports are in use, one going to the firewall and the second going to the ISP. My first question would be, which option is better in terms of manging as well as cost of implementing it.The second question is, if WCCP on the router is a better option, what is the add on module i should be looking to get to add the additional ports to hook up the Websense cache.
	View 8 Replies
    View Related
  
    
	
    	
    	
        Jan 31, 2012
        In a site we currently have 1 BT provided ADSL link which is currently terminated using their device which I believe is some kind of 2wire device, which is extremely slow due to distance from the Exchange (4Mbps)...We have a growing number of users here and want to install a second ADSL line from BT to give them increased performance.
 
We have a Cisco 2800 sat not doing much so I was wondering if I could use this to load balance the link? I know BT do not support MPPP so therefore the maximum any user can get will be the speed of a single link (4Mbps)...But basically how can this be done..
 
Can I leave the two BT routers in place and place the Cisco 2800 behind them, or do I need to purchase two ADSL modules for the 2800 and terminate the connection there?Also once done, what do I need to do regarding actually setting up the load balancing? I have seen this:
 
[URL]
 
But am unsure as to how relevant it is? I am not sure I understand what the ACL's are being used for? I just want all users on the LAN to load balance out...
 
Also I am unsure of this statement:You potentially need to add policy-based routing for specific traffic to ensure that it always uses one ISP connection. Examples of traffic that require this behavior include IPSec VPN clients, VoIP handsets, and any other traffic that use only one of the ISP-connection options to prefer the same IP address, higher speed, or lower latency on the connection.I do not understand why a established session such as a VPN client, would ever traverse the second ISP connection anyway?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Sep 27, 2011
        I have a 2801 running c2801-spservicesk9-mz.124-3g.bin According to the Cisco IOS MIB locator the image supports OLD-CISCO-SYSTEM-MIB I have tried .1.3.6.1.4.1.9.2.1.55 etc to set server IP address and the filename string but without any luck.e.g.
Reason: (noSuchName) There is no such variable name in this MIB.
Failed object: iso.3.6.1.4.1.9.2.1.55.a.b.c.d  (where a.b.c.d is the server IP) 
 
I have also tried the method similar to that for Cat 3550 switches where you create a table of entries to define the transfer paramaters then activate the transfer (I think the CISCO-CONFIG-COPY-MIB)
 
e.g.
[URL]
C:>snmpset -v 1 -c private <device name> ccCopyProtocol.<random number> integer 1   !  1 = tftpccCopySourceFileType.<Random number> integer 1     ! 1 = networkFileccCopyDestFileType.<Random number> integer 3     ! 3 = startup & 4 = runningccCopyServerAddress.<Random number> ipaddress "<server ip address>"ccCopyFileName. <Random number> octetstring "<file name>"ccCopyEntryRowStatus.<Random number> integer 4     ! 4 = createAndGo, or 1 = Active
 
To write net have the source as running (4) and the dest as network (1)
ccCopySourceFileType.<Random number> integer 4
ccCopyDestFileType.<Random number> integer 1
 
Clean up at the end - destroy .14 with the value of 6.
 
example output : -
-- earlier output omitted --
 Error in packet.
Reason: (noSuchName) There is no such variable name in this MIB.
Failed object: iso.3.6.1.4.1.9.9.96.1.1.1.1.4.111
Error in packet.
[code]...
	View 4 Replies
    View Related
  
    
	
    	
    	
        Mar 25, 2012
        We have recently implemented Windows Deployment Services on our local network, but everytime we do a multicast image deployment the network get flooded to point of total saturation.
 
We have Netgear switches and a Cisco 2800 series router. IGMP Snooping has been enabled on all Switches, however, we are unsure on how to implement multicasting on the router.
 
The whole network is flat - no VLANs over than the default VLAN1. We only want multicasting to work within our local network and does not need to go out the other side of the router as that is the connection to the internet.
How to get the Cisco router configured properly to enable multicasting to not flood the network. It seems that even if we were to image 4 PCs using multicast this is enough to completely get the network flooded.
 
Also, am I right in thinking that IGMP needs to be enabled on all of the Switches?
	View 5 Replies
    View Related
  
    
	
    	
    	
        Nov 15, 2011
        I just read the Removing and Installing CompactFlash Memory Cards in Cisco 2800 Series Routers instructions and there was nothing said regading powering down the router. Are these CompactFlash cards hot swappable??
	View 2 Replies
    View Related
  
    
	
    	
    	
        Jun 1, 2013
        Configuring an application using routing mode on cisco ace clients ---asa--3750--cisco ace--- servers behind vip,visa card transaction servers.i am able to setup a vip on ace using routing mode on ACE,as the  servers need to see the client ip ,so we are not  performing SNAT,this  part is working fine,when a request comes from the client ,it goes to the vip and to one of the backend servers ,and the request will be forwaded back to the ace ,as the default gateway on the servers is pointing to the server vlan on ace.but if the transaction from the servers need to go to the visa card transaction servers ,how can we achieve this ,and after fetching the data from visa servers,does the reply will be fwd to the ACE or ASAs directly.
	View 1 Replies
    View Related
  
    
	
    	
    	
        Nov 24, 2011
        I have configured Cisco 870 router ATM interface with following configuration
 
interface  atm 0
ip address public ip 255.255.255.254
ip nat outside
pvc 0/38
encapsulation aal5snap
no shutdown
 
But when I check ATM interface it is still down and line protocol is down. how to make it up and up so that internet service could be used.Also I want to know that the provider has also given username and password for internet in their device.We want to replace that device with the router and facing problems.
	View 1 Replies
    View Related
  
    
	
    	
    	
        May 27, 2012
        My Draytek 2710 just dies after 2 years so I was looking for something a little more reliable and noticed the spec of the SRP527W-U.I take it with only one antenna and reading a couple of past discussions, the wireless will only manage n-lite as some people call it i.e. 150Mbps, and not the full 300? Oh, and are the ports still only 100M and not Gig?I know the 547 would tick both these boxes but we are talking twice the price.  How does the quality and logevity of the SRP500 series compare to the RV series (which would need an adsl modem) or the Linksys boxes?
	View 1 Replies
    View Related
  
    
	
    	
    	
        Apr 19, 2012
        I recently purchased a Ciso 1200 Series WAP and I want to bridge this to my existing Cisco Wireless Router So I can extend my coverage. I have done some research but keep coming up short as to where I need to start. Note*(I do not want a physical connection to the WAP, I simply want to be able to bridge the connection from my existing Wireless router to my WAP. 
	View 1 Replies
    View Related
  
    
	
    	
    	
        Oct 4, 2011
        We have 4 1142N LAPs that I want to divide between an internal wireless and a guest wireless network using the controller.  Currently all of the APs are on an established internal network, but I want to migrate one over to a test guest network before buying more LAPs to augment the networks further. Currently the port connecting to the WCS from the 3560 switch is configured as an access port using VLAN 10.  Whenever I make it a trunk port carrying VLAN 10 as well as the other ports we will be using for the guest and ap-manager networks, I lose connection with the controller.  To me this implies that the port on the controller is configured as an access port as well.  In the documentation I found for the controller it states that by default the ports are al configured to be trunks, but it appears as though something was changed by the previous tech.  All of the APs are connected to other switches, not to the controller itself.
 
1) How can I get the port on the controller back to being a trunk port
2) Can I use the internal DHCP server for the guest network if the subnet is different than the management subnet, or will I have to use another external server and relay/proxy it through the controller to give guest clients IP addresses?
	View 2 Replies
    View Related
  
    
	
    	
    	
        May 30, 2013
        We have a vpn setup in our office, the setup is done by our ISP and they said this is a webvpn.Since when I join the company the vpn between the head office and the site office is working fine and there is no changes made on the setup of the routers. 
Then suddenly is not communicating... Our router Cisco 1800 from head office can ping the route Cisco  1900 on the site office, but the site office cannot ping.Why the router of head office can ping the site office router, and the site cannot? What is causing this situation?
	View 0 Replies
    View Related
  
    
	
    	
    	
        Feb 5, 2013
        Any known problem with the DRAM on 2800 routers? Over the past few months we have had four 2800s fail to reboot after power off/on and in all cases this was due to faulty DRAM. All four routers had been working fine for months with no problems and only failed after being rebooted. They all failed when trying to load the IOS into memory and therefore all got stuck in rom mon. The compact flash cards were all ok as a working 2800 booted up using the flash from the faulty routers. I haven't seen a field notice so are we just unlucky here?
	View 0 Replies
    View Related
  
    
	
    	
    	
        Aug 20, 2009
        We want to implement an IPSec VPN between two routers cisco 2800 IOS version of what we need.
	View 4 Replies
    View Related
  
    
	
    	
    	
        Oct 17, 2012
        Just need to verify if HWIC-2T is compatible with the Cisco2800 routers?
	View 4 Replies
    View Related
  
    
	
    	
    	
        Mar 3, 2013
        I recently added a business cable modem to relieve some of the congestion I was getting on my T1 for our MPLS network.  There was an ASA 5510 collecting dust in a closet here and I thought it would be the perfect device for firewalling the traffic coming in from the Cable modem, and handling the routing of our internal MPLS traffic as well.  Internet setup was cake.  The test laptop I have using the ASA as it's gateway has great internet service but it cannot ping across either of our MPLS networks.  I have one MPLS with AT&T and one MPLS with EarthLink.  My hope was to use the cable modem as the Default route for all unspecified internet traffic and route our internal MPLS traffic to the cisco 2800 routers that are currently in place for the MPLS.  I can ping across the MPLS when I telnet to the ASA, but I cannot ping across the MPLS from the client that is connected to the ASA.
 
Here's the topology I'm working with
 
Internet
|
Cable Modem
|
ASA 5510 10.52.120.23
[Code].....
	View 8 Replies
    View Related
  
    
	
    	
    	
        Feb 14, 2013
        I am currently setting up a 2800 Series router, and prefer a username/password type authentication rather than a single enable password. To do this, I did:
 
Router(config)# username <myuser> privilege 15 secret 0 <mypassword>
Router(config)# username2 <myuser> privilege 15 secret 0 <mypassword>
Router(config)# aaa new-model
Router(config)# aaa authentication login default local
 
This basically does what I want - when I connect to the router through console, it immediately asks me for a username and password. The thing is - as soon as I provide the right credentials, it takes me to USER EXEC mode (the default command mode). Is it possible to change that so that after entering the credentials, I go right into privileged exec mode?
 
Bonus question: As it is now, I just have no enable password, so when I login with my credentials, I issue "enable" to enter privileged exec mode without it prompting for an additional password. Is it safe to do it this way - having no enable password but requiring a username and password for login?
	View 3 Replies
    View Related