Cisco WAN :: How To Block Url On Router 2800 Configure
Jan 13, 2011I am using Cisco Router 2800 series. How to block url and also how to remove block url
View 1 Replies
ADVERTISEMENT
Cisco WAN :: 2800 - ACL To Block Routing?
Mar 20, 2012I have a Cisco 2800 router. I have been noticing a lot of traffic to Pandora lately. At times my pipe is 25% music streaming and my router utilization can be quite high. Our web filtering is a hosted service that does not block all traffic depending on some of the ports. It is really designed for port 80 and 443 only.
We decided we want to block access to Pandora completely on both our primary internal LAN's and our Guest wireless LANs.
When I perform the ARIN lookup, I get these results for the IP range:
NetRange: 208.85.40.0 - 208.85.47.255
CIDR: 208.85.40.0/21
The CIDR notation does not make sense to me entirely. The IP range includes 8 class C networks. The /21 is a class b subnet of 255.255.248.0 or a router broadcast address for routing tables (depending on how you want to look at it). I was not sure if I could block the address based on the router CIDR range of if I had to use the individual classful IP ranges.
Should I block "208.85.40.0 0.0.7.255" in my ACL or should I create 8 entries to block the networks like this?
208.85.40.0 0.0.0.255
208.85.41.0 0.0.0.255
Cisco Switching/Routing :: Best Way To Block Website On 2800
Nov 26, 2012I have a 2800 router and tried so many ways to block the unwanted sites on my office network.Like access list ip based, null0 routing and policy map. Faced issues with below config
1. Creating Access-list. very difficulty to block the sites with https those sites will be opend, and we cant block all the IPs
2. Creating null0 routing. it also a bit deficult the block maximum sites because we can't fiend all IPs for those sites
3. Policy map.. with policy map we can only 1site we can block, but not more than one..
I heard that port based routing or port based access-list are the best ways to stop the websites in my local network..for this one i need to map the site to unsued ports then i need to null rouging or need to create the access-list.
Cisco Switching/Routing :: How To Block Sites In 2800
Nov 23, 2012I have a cisco 2800 router.. (flash:/c2800nm-advsecurityk9-mz.151-4.M4.bin, Version 12.4(13r)T11) configured DHCP, DNS, NATING and Bandwidth restriction...And to stop some social network [URL] i configured ip route 66.220.144.0 255.255.240.0 Null0 (rang of facebook address) But still i am able to open facebook.com in my network...
ADMIN-II_2811#sh run
Building configuration...
Current configuration : 1812 bytes
!
! Last configuration change at 17:26:33 UTC Sat Nov 24 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
[code]....
Cisco Switching/Routing :: 2800 Block Some URL That Users Have Access Through LAN
Jan 30, 2012I wish to block some url that users have access through my LAN .That's i wish to block icmp,access towards such sites, i wish to block icmp because dns will resolve the domain and they can access through ip address.what i have in place is a cisco 2800 series routers,
View 7 Replies View RelatedCisco WAN :: Configure Backup Links On 2800?
Oct 16, 2011I currently admin a WAN link between two international sites. I have a 2800 at each end. The primary connection between the two sites is 20MB Ethernet PIP MPLS BGP circuit. I also have a pair of T1's in a PPP multilink that I switch over to in the event the primary circuit goes down. I currently am doing the switch over manually. It takes me about 15 minutes to complete it, but I know there must be a way to make this an automatic process.
So a couple questions:
1) Is there a way to create an "enhanced multilink" with the 2 T1's and the Ethernet circuit in the same bundle, in effect giving me 23MBps bandwidth while still being able to maintain connectivity if one of the 3 links goes down? This is my preferred solution
and if 1 is not possible then
2) Is there a way to configure the router so if the Ethernet circuit goes down, all traffic will be automatically directed over the T1's, and then come back to the Ethernet when it's back online?
Cisco :: 2800 How To Configure And Setup Routes Properly
Jul 8, 2011I have a 2811 router that I want to configure the F/E 0/0 & 0/1 to be able to communicate.FE 0/0 is configured with 192.168.16.1/24.FE 0/1 is configured with 10.10.10.10/24 Physically attached to this port is going to be a wireless router configured with 10.10.10.1.My question is how to configure and setup the routes properly and do I need to configure NAT and Access Lists.
View 9 Replies View RelatedCisco Switching/Routing :: Configure Routing Between 2800 And 3550
Sep 18, 2012The layer 2 switches are connected to layer 3 Switch via trunks, and routing between layer 2 switch ports with configured SVI's on 3550. All working fine. Now I'm trying to configure routing between 2800 and 3550, I tried connecting both Straight Throught and Crossover cables to the 2800 Fa0/0 and Fa0/1 ports as well as the switchports on 3550
No switchport commands are configured however, the lights do not go on for both straight through or crossover cables. I tried connecting 1750 routers but same result. My goal is to have all the VLANS routed to the internet with configuring NAT translation the router.
Cisco Firewall :: Configure 2911 ISR To Block Peer-to-peer Traffic?
Jul 25, 2011I see that Application protection - blocking peer-to-peer file sharing traffic is a capability of Cisco IOS Firewall. How do i configure my Cisco 2911 ISR to block peer-to-peer file sharing traffic?
View 1 Replies View RelatedCisco VPN :: 2800 Router - VPN Between ASA 8.3 And ASA 8.2
May 14, 2013i hace a VPN configured between two Cisco ASAs, but I have a problem to reach a network behind a router 2800.
View 7 Replies View RelatedCisco :: How To Get Into The Console Router 2800
Oct 17, 2012want to ask something about configuration ruter 2800I already have a usb to DB9 | DB9 to RJ45but i have a problem like the image below
View 19 Replies View RelatedCisco WAN :: How To Add A Wic-2t Card On Router 2800
Dec 21, 2011How to add a wic-2t card on router 2800
Had the card as follows
I want to know routr 2880, such as the following picture
Cisco WAN :: 2800 Router Certificate Key For SSH
Sep 19, 2011I am operating a 2800 series Cisco router. The router is working fine except that I am not able to SSH into the router. I have checked the running config with cisco's documentation and every line is correct. Prior to me getting this job they did an update and think they have corrupted the a certificate key for SSH.
Any command to generate just the SSH key and not all the other keys that would cause bigger connection issues.
Cisco WAN :: 2800 - Client Not Getting IP From Router
Feb 23, 2012I have 2 2800 series routers configured the same, but with different subnets. One works fine, the other the client can't obtain an IP, and hardcoded, cant ping.
I ran DHCP debug and I can see the router assigning the IP, and I see and ARP entry that matches the MAC of the client.
*Feb 24 11:33:55.915: DHCPD: Sending notification of DISCOVER:
*Feb 24 11:33:55.915: DHCPD: htype 1 chaddr 000a.e40c.d232
*Feb 24 11:33:55.915: DHCPD: remote id 020a0000ac10760101000078
[Code].....
Cisco WAN :: Firmware For 2800 Router?
Jan 4, 2013find the firmware file for 2800 series router? I need to upgrade the firmware to this router to get adsl annex M mode to work.
View 1 Replies View RelatedCisco WAN :: Traceback Messages On ISR 2800 Router?
Mar 17, 2010provide input on what these Traceback messages are and how they are caused:
*Mar 15 23:07:57.250: %SERVICE_MODULE-4-WICNOTREADY: Unit Serial0/1/0 not ready for next command -Traceback= 0x41173B5C 0x40371894 0x40371928 0x40371CE0 0x40372794 0x40369AF0 0x40382908 0x4037FEB4 0x4037FF80 0x41EF56B4 0x41EF95E4 0x41EEA51C 0x41F12B00 0x42183F44 0x42183F28*Mar 15 23:08:00.250: %SERVICE_MODULE-4-WICNOTREADY: Unit Serial0/1/0 not ready for next command -Traceback= 0x41173B5C 0x40371894 0x40371928 0x40371CE0 0x40372794 0x40369AF0 0x40382908 0x4037FEB4 0x4037FF80 0x41EF56B4 0x41EF95E4 0x41EEA51C 0x41F12B00 0x42183F44 0x42183F28*Mar 15 23:08:03.250: %SERVICE_MODULE-4-WICNOTREADY: Unit Serial0/1/0 not ready for next command -Traceback= 0x41173B5C 0x40371894 0x40371928 0x40371CE0 0x40372794 0x40369AF0 0x40382908 0x4037FEB4 0x4037FF80 0x41EF56B4 0x41EF95E4 0x41EEA51C 0x41F12B00 0x42183F44 0x42183F28.... and so on.
We recieved this for one of our routers. Rebooting it worked, so it's likely a software bug and we will upgrade the IOS soon, but I would like to understand what these log messages.
Cisco WAN :: 2800 Series Router IOS Is Not Loading?
May 7, 2013i have one cisco router 2811 now its not booting normally.
Router was working without any problems but due to power loss router restarted and goes into rommon mode
I tried to boot from flash and usbfalsh with different images but no use router is in still rommon mode.
here the output of my router:
program load complete, entry point: 0x8000f000, size: 0x3117470
Error : compressed image checksum is incorrect 0x8E095E7F
Expected a checksum of 0x8E0AE77F
*** System received a Software forced crash ***
signal= 0x17, code= 0x5, context= 0x80014e20
[Code].....
Cisco WAN :: Router 2800 Install Firewall IOS
Jul 27, 2011I have Cisco router 2800 IOS and Version is (c2800nm-spservicek9-mz.124-6T5.bin) (IOS Version 12.4(6)T5).I wnt to install firewall.
View 1 Replies View RelatedCisco WAN :: 2800 Router Can't Have Tclsh But 2801 Does With Same IOS
May 10, 2011I have 5 routers. Four routers are: c2801-IPBASEK9-m v 12.4(24)T2. One router is a C2800-IPBASEK9-M v 12.4(24)T3. so, it appears that the IOS on all 5 routers is very similar, the only difference is the T3 at the end of the version and that 4 are 2801s and one is a 2800. What is very wierd is the 4 2801 have the embedded scripting language "tclsh". The 2800 does not have tclsh. If I issue the command: tclsh on the 2800, I get:
Center-GW#tclshTranslating "tclsh"
% Bad IP address or host name% Unknown command or computer name, or unable to find computer addressCenter-GW#
Cisco Firewall :: ASA 5510 And 2800 VPN Router Connectivity?
Apr 23, 2013I have been tasked to connect a 2800 router to our ASA 5510 firewall. The router will be used as a VPN router. It will terminate two different VPN connections to two different networks. I can setup the 2800 VPN config but what would I need to do to setup the firewall. I am using an extra Ethernet port(it has 4) to directly connect the router. The FW has our outside internet connection, the DMZ, and our inside LAN connection. I do not have a lot of experience with Firewalls and I do not want to create a security breach while trying to set this up!!
View 5 Replies View RelatedCisco :: 2800 Router - Voice Gateway DFM Notifications
Jun 20, 2011We have a 2800 router which is configured as a Voice Gateway. For some reason, yesterday we started getting DFM notifications like the one below. We seems to get an active messages every few 10mins or so, then a few minutes later the message will clear before becoming active again...
EVENT ID = 0009NK2
ALERT ID = 0000QTM
TIME = Tue 21-Jun-2011 16:06:50 BST
STATUS = Active
SEVERITY = Critical
MANAGED OBJECT = XXXXVG1
MANAGED OBJECT TYPE = Routers.
Cisco Switching/Routing :: Upgrade IOS On 2800 Router?
Oct 16, 2012Needing to upgrade IOS on 2800 router from c2800nm-advipservicesk9-mz.123-14.T7.bin to c2800nm-advipservicesk9-mz.124-15.T13.bin. I noticed ther are several other files on the old code that may needed for booting up router but Im running low on memory. The other existing files are ;
c2800nm-advsecurityk9-mz.124-3i.bin
securedesktop-ios-3.1.1.45-k9.pkg
sslclient-win-1.1.4.176.pkg
Do I need these files for the upgrade or can i delete them when upgrading to 124-15.T13.bin. ?
Cisco VPN :: 2800 - EzVPN And DmVPN On Same Router / Interface
Jan 20, 2012I have setup DMVPN and EAZYVPN on one router. Tunnel interface on Spoke one and Spoke two are up/up and show crypto ISakmp sa shows both tunnels are in idle. However, tunnel to Spoke one(10.10.1.1) keep bouncing on and off(see below). Every 30 sec or so, the tunnel gone back to IKE phase while tunnel for spoke two(5.5.5.1) still leave active. THe configuration on the HUB side is the same for both spoke!! show crypto ipsec sec shows both side has the same life time(IOS default). Could that be an IOS debug on the spoke one?
Hub :
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 15.1(3)T2, RELEASE SOFTWARE (fc1)
HUB#sh crypto ipsec security-association
Security association lifetime: 4608000 kilobytes/3600 seconds
Spoke one:
Cisco IOS Software, C2600 Software (C2600-ADVSECURITYK9-M), Version 12.4(8), RELEASE SOFTWARE (fc1)
[code]....
Cisco Switching/Routing :: NATing On 2800 Router Series
May 22, 2013I have Router 2800 series Global nating is configured on it.
ip nat inside source list 111 interface Dialer1 overload
!
access-list 111 deny ip 192.168.1.0 0.0.0.255 192.168.0.0 0.0.0.255
access-list 111 permit ip 192.168.1.0 0.0.0.255 any
My object is that i want give internet access only for few users ip E.g IPs addresses from range 192.168.1.0-10 can acess intenet access other all are deny.How i do this with ACL .
Cisco WAN :: 2800 Series Router With 28VDC Power Source
Oct 3, 2011Any problem/issue with using 28VDC to power the 2811 router. The spec calls for a 24VDC power.
View 1 Replies View RelatedCisco :: 2800 - Upload An IOS File To A Router Or Switch To Be Installed
Nov 1, 2011I want to download the iOS update to my Cisco 2800 Series Routers and Cisco Catalyst 2960 Series Switches and leave them there till im ready to install them. Is this possible?
View 1 Replies View RelatedCisco WAN :: How To Config Other 7 IP Address On Web Server In Router 2800 Series
Jan 10, 2011i have Router 2800 series we are using leased line Connection 8 Pubilc IP.One IP Config in Router FE0/0 IP 101.102.148.91 and FE0/1 192.168.0.0 Local IP.I have 6 Web Server. How to Config other 7 IP address on Web server in the router 2800 series.
View 6 Replies View RelatedCisco WAN :: Connect Comcast Modem To 2800 Series Router?
Jun 29, 2011I have a comcast business class cable modem and am trying to connect it to my cisco 2821 to route only certain types of traffic.
View 3 Replies View RelatedCisco Switching/Routing :: 2800 - Securing Router From Outside Access
Aug 19, 2012I have 2800 series router which is directly connected to ISP. How can secure the router from outside access; I am totally new to the security concepts.
View 2 Replies View RelatedCisco Switching/Routing :: 2800 Router Physical And Sub Interface
Oct 25, 2012I have a pair of router Cisco 2800 running in HSRP, now I want to configure one sub interface with another sub net, Will my current IP on physical interface work or do I need to create two Sub interfaces for each network. Do i must need encapsulation on sub interface
Current Config:-
Router 1:-
interface FastEthernet0/1description Connect to LAN_SW1 Gi1/0/1ip address 192.168.1.13 255.255.255.0no ip redirectsduplex autospeed autostandby 1 ip 192.168.1.1standby 1 priority 90standby 1 preempt
Router 2:-
interface FastEthernet0/1description Connect to LAN_SW2 Gi1/0/1ip address 192.168.1.3 255.255.255.0no ip redirectsduplex autospeed autostandby 1 ip 192.168.1.1standby 1 priority 110standby 1 preempt
For second network I do not require HSRP
Router 1:-
interface FastEthernet0/0description Connect to LAN_SW1 Gi1/0/1no ip addressduplex fullspeed 100
[ code]...
Router 2:-
interface FastEthernet0/0description Connect to LAN_SW2 Gi1/0/1no ip addressduplex fullspeed 100
[Code]...
Cisco Switching/Routing :: 2800 - Router Will Only Forward With Host Routes
Jan 1, 2013we have a 2800 series router functioning as our internet router and it will only forward packets to addresses with host entries in the routing table even if the network is directly connected.
View 18 Replies View RelatedCisco WAN :: 2800 Setup Router To Resolve Both Internal / External DNS Requests
Jun 3, 2012I have a 2800 with one Gigabit interface connection to our Lan and the other interface connected to the internet with a public IP address. Now I'd like to setup the router to resolve both internal and external DNS requests. Thus requests like www.google.co.za and LocalLanPcName should be resolved to their public and private IP's respectively. [code] When I ping any name the only DNS server that is ever queried is 192.168.1.200 (it does resolve internal name correctly though).
None of the other servers are attempted to resolve the name. It does not matter if I specify a FQDN or not.
How do I setup the router so that my internal resolution is handled by 192.168.1.200 and .201, while external resolution is handled by 41.160.36 and .37. Or alternatively, how do I configure it to at least try all 4 specified name-servers for resolution, and not fail after trying the first one unsuccessfully.
Cisco Switching/Routing :: Module To Add Gig Interfaces To 2800 Series Router
Aug 16, 2012I am trying to add WCCP to be configured for websense. My first option seems to be either purchase an IPServices license for the stack of 3750E switches, but i am thinking this will require us to license all three switches in the stack. The second option i am looking at is to do the WCCP configuration on the 2800 router we have on the edge. The problem is both Gig ports are in use, one going to the firewall and the second going to the ISP. My first question would be, which option is better in terms of manging as well as cost of implementing it.The second question is, if WCCP on the router is a better option, what is the add on module i should be looking to get to add the additional ports to hook up the Websense cache.
View 8 Replies View Related