Cisco WAN :: Traffic Going Across The Router Is UDP 1921
Feb 23, 2011
I'm attempting to set up a Cisco 1921 router running IOS15, and am having trouble with the NAT - it might be that what I am attempting is not possible. The only traffic going across the router is UDP, and the outside of the network canot be changed.
The router passes the Interface test for the WAN port in CCP but it still we cannot access the internet. Here is my configuration:
Building configuration... Current configuration : 3663 bytes ! ! Last configuration change at 09:29:52 Chicago Mon Feb 20 2012 by fbcpekin version 15.1
I can telnet to the router and ping places on the inside and outside. However when I connect a laptop to the inside interface I can ping to the outside for a bit but can't open a web page and then connectivity is gone all together. At first I thought it was a NAT issue but I know I am good on that front. I have attempted to change the speeds and duplex settings on the outside interface but it does not seem to work. Again if I take the cable from the outside interface and plug it into a laptop it works fine. The thing that makes me wonder is why can I connect to the outside interface and configure it just fine?
I am facing a problem with transmitting of VoIP traffic through VPN.
I have a 1921 router in my end where two ISP's terminate and load balancing is done over the ISP'S. I also have a site-to-site IPSEC VPN connection to remote location. Also I am having to analog phones connected to the network through an ATA. My Call manager is in the peer end and has public IP assigned to it. The IP phones get registered when coonected to general inernet connection.
The loadbalancing and VPN is working fine. Now I need to transmit the VoIP traffic over the VPN. I have configured the same but seems not working. [code]
I have a 1921 K9 with a 4 port 10/100/1000 EHWIC switch.
Interface 0/1 = 192.168.1.0 EHWIC = 192.168.5.0
I have Active Directory setup on the 192.168.1.0 network. When I attempt to join the domain from 192.168.5.0 it joins but I get errors. After some troubleshooting using portqry I have found that the services related to class map DomainTrafficUDP are being reported by portqry as being filtered regardless of policy map settings (currently set to allow).
Building configuration...
Current configuration : 18833 bytes ! ! Last configuration change at 11:20:25 NewYork Thu Apr 19 2012 by dave ! NVRAM config last updated at 13:56:45 NewYork Wed Apr 18 2012 by dave !
We have 3 sets of applications. The first does not require much bandwidth but is very critical, the other two is more bandwidth consuming but less critical. I would like to know if it's possible to reflect this priorities on the router configuration. Is it possible to set the ports 10000, 10001 and 10002 of the external IP have higher priority to be handled, for example? Also, is it possible to limit the bandwidth that goes through a set of ports?
I must prevent the 2 sets of less critical applications to strugle the critical ones. What router can provide this capabilities? Is the 1921 able to do this job?
I make qos on VPN Tunnel, but i make command service-policy output name, it show the error below Traffic Shaping feature is not supported in user defined class of parent level policy.My cisco router 1921, IOS : c1900-universalk9-mz.SPA.150-1.M5.bin
We want to puchase new Cisco ISR 1921/K9 . i want to know does it support the following sample IP-SLA commands
ip sla 2icmp-echo 172.16.1.2timeout 500frequency 1ip sla schedule 2 life forever start-time now
track 10 rtr 1 reachability delay down 1 up 1 ! track 20 rtr 2 reachability delay down 1 up 1 ip route 0.0.0.0 0.0.0.0 192.168.1.2 track 10ip route 0.0.0.0 0.0.0.0 172.16.1.2 track 20
Im asking above question because we will need to enable ip-sla on the mentioned router. as i read on the cisco webside, it says Cisco-ISR-1921/K9-IP Base support only IP-SLA RESPONDER feature nothing else. If Cisco-921/K9 does not support the above commands , should i go for ordering Cisco-1921-SEC/K9 ?
I have installed a Cisco 1921 router in our company and i have stumbled upon an issue with the DNS.
We have a internal DNS server and an internal WEB server. In the DNS server there are records pointing to sites on the WEB server, this is working just fine.
The thing is when i use a public DNS such as 8.8.8.8 (googles public DNS) i cannot resolv the external IP of those sites. I do not want to access the sites and i do not want to send any packets to the sites. All i want is to query the public DNS and resolv the public IP where the site is.
I am really stuck with router requirement for one of our client. I need 891 SEC router. I think this comes with advanced IP services. What I have is 1921, with IP Base. can I upgrade 1921, so it will become alternative to 891 SEC.
I wish to use a 1921/k9 as a router on a stick. Inside interface interconnects up to 9 VLAN, and performs the routing. Does the 1921/k9 supports trunking and VLANs (I think it should support 16 VLAN, but I am not shure) or I should choose 1921-SEC-k9? Routing performance is the same both on 1921/k9 and 1921-SEC-k9? (I think I'll use static routes or RIP, it is not a large network)
We are having problems configuring NAT on our Cisco 1921 Router. Below is the running config. The problem we're having is for example our FTP server 192.168.1.16, cannot be accessed from its outside IP address, which is NATed on the router. The server is verified to be up and running and when we do a show debug ip nat, we see the router is translating outside users attempting to access the ftp server to it's correct internal IP address.
I have a 1921 with 3 interfaces. One for the LAN and the other 2 are wan each with a public address. The 2 wan interfaces are used for redundancy. I would like to know how I can static nat the same port and inside address on both wan interfaces.So if the request comes in on one or the other it works. I know if I do a static nat to one of the wan interfaces and then add the same port and inside address to the other wan interface it replaces the previous configure.
i have a cisco 1921 router and it has ge0/0 (LAN) and ge(0/1) WAN. ge 0/0 is well connected and i can ping it and the LED light is on but ge 0/1 has failed to come up.Ge0/1 is connected to an IDU and has a public IP address. The LED light also does not light on ge 0/1.Where could the problem be?
how do I monitor temperature of my 1921 router? Which commands do I need to put on router and which MIBs to use. I am using PRTG network monitor as a monitoring system.
I have a 1921 router with a V.2 T1 wic installed connected to a MPLS circuit. The circuit is down hard and the CD light is flashing. We reseated the WIC card and the circuit recovered for about 30 seconds, then went down and CD began flashing again on the WIC. AL is solid.
How do I access the router's web gui management? I already enabled the ip http server and ip https commands. I have a username and password configured
I open a browser session with the ip address:URL, But I do not get the management GUI. I haven't used the GUI in many years,
Cisco Systems Accessing Cisco CISCO1921/K9 "my-router" Show diagnostic log - display the diagnostic log. Monitor the router - HTML access to the command line interface at level 0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 Show tech-support - display information commonly needed by tech support. Extended Ping - Send extended ping commands.
We have a 1921 router that has WebVPN (Any connect) enabled on it as well as IPSEC. When a user logs in using IPSEC client they stay connected no issue. IF you connect using Any Connect it will disconnect you after exactly 10 minutes. Never a second more or less. I ran some “debug webvpn” and the disconnect looks to be a planned event and reports no error it just sends the disconnect command. However, if you watch the buildup you get the following message from Debug.
003960: Jun 7 09:09:06.833 NewYork: 003961: Jun 7 09:09:06.833 NewYork: 003962: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] CSTP Version recd , using 1 003963: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Allocating IP 172.18.249.50 from address-pool IPRange1 003964: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Using new allocated IP 172.18.249.50 255.255.255.255 003965: Jun 7 09:09:06.833 NewYork: [WV-TUNL-EVT]:[3318C168] Full Tunnel CONNECT request processed, HTTP reply created
[code]....
The highlighted entry is a session timeout set for exactly 10 minutes. I cannot find how to change, remove, or modify this setting. Google has failed me in my ability to find this timeout setting.
Have a cisco router 1921 ,version 15.0,configuration register is 0x2102 and did not remember the password try to solve by GW-RTR>confreg 0x2142 give error translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Bad IP address or host name translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Unknown command or computer name, or unable to find computer address also tried this GW-RTR>confreg 0x2102 give error translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Bad IP address or host name translating "confreg"....domain server (196.46.100.2) (196.46.104.2) %Unknown command or computer name, or unable to find computer address what are the way forward to get to default settings?
I have recently configured a cisco 1921 router for internal routing on my network. Here is what i am trying to accomplish:
Main network 10.65.1.0 mask 255.255.255.0- all office devies and computers. Second network 10.65.2.0 mask 255.255.255.0 - All plant equipment machinery and production lines
i have configure gig 0/0 for my company network and gig 0/1 for my plant network. I can ping the router from both networks but am unable to route traffic betwenn them. what am i missing?
i'm having some trouble setting up the correct NAT configuration of a Cisco 1921 router. The NAT is not working as I want - I think my configuration is wrong somewhere. All clients in 172.16.0.0/24 have the correct outgoing address of 1.1.1.3. But the NAT for 10.10.0.4 (and 10.10.0.5, 10.10.0.6) is partially broken: Ping and ssh from the outside world to 1.1.1.4 is "natted" to 10.10.0.4 and works as expected. But from inside (172.16.0.0/24) ssh to 1.1.1.4 should be "natted" to 10.10.0.4, but doesn't work (ping works). ssh from 172.16.0.0/24 to 10.10.0.4 (without doing NAT) works.
network design: =============== 172.16.0.0/16: network for normal use 192.168.64.0/24: network for specific clients and servers
i installed Data license(Evalutation) initally it took the license after reload, when i enter sh lic command the out put shows that Data license is installed and valid for...
But when i run sh ver command it only shws ipbase license and not the data license
I have a Cisco 1921 to replace our current router which is constantly freezing. We have a couple inside servers, one is a web server and application server which needs to be RDP'd to by a couple of clients outside of our network. I cannot get this to work no matter what. I know it's not the server's setup as when I plug the network back into the old router, it works just fine.
All clients have access to the internet, and I can successfully ping/resolve hosts from both the router and a client computer connected. I cannot, however, rdp using neither our public IP, nor our hostname. The hostname does resolve to our ISP assigned IP, but the server cannot be contacted, leading me to belive this is a NAT issue. [code]
How do I chose a router? Network has about 100+ devices across a campus with remote sites connected thru metro-e.Thinking of a 1921 to use as core router.
I am working at a client site today. This specific client has decided to replace their legacy 2600 branch office routers with newer 1921 ISR G2 routers as they move from a Legacy Frame WAN to a MPLS network with a different provider.
The backup in the former scenario was actually an ISDN solution. Moving forward, the provider has sold them a 3G backup solution. To support this, we have purchased Cisco line cards for the 3G. The part number for the cards is "EHWIC-3G-EVDO-V=".
I was asked by the client this morning if there was a way to tell what the IMEI number for the 3G card was. I performed a shew inventory, as well as a shew hardware, but I do not see this IMEI number. I also checked the label on the packaging box that the cards came in, but do not see this number. Is there a way to tell what this number is for each card?