I'm trying to block two URL's over the entire network via my E4200. I'm having a heck of a time doing this, I loginto my router via the browser (the web setup) (because I think Cisco Connect on the Mac is about the worst software ever written.) And I go to the Access Restrictions page. There I understand I'll have to use the Internet Access Policy pane to make some more advanced settings than the Parental Control.
I enter a name for my rule, so far so good. Enable it. Go to the applied PC page. Open the page to enter MAC adresses and IP's. I go to the IP Address Range field and entere in the box numbered 01; 192.168.2.2 to 192.168.2.51 which in my case is the enitre network. Save the setttings and close that window.
I don't set Access Restriction to deny becasue that seems to block the entire network.
So I go the the Website Blocking by URL Address option and enter the URL I want to block.
I don't do anything wiht the the Blocked Applications since I don't want to block a specific service or application. So I click Save Settings.
And yet when I go to the URL I want to block it doesn't work! [URL]
I have an E4200 functioning with a new Comcast/XFinity cable modem on the public IP (Internet) port. That modem provides a DHCP address to the router (currently 50.129.x.x./255.255.254.0) The problem is that this new setup is leaking COMCAST DHCP responses through the E4200 to my WiFi clients. Most of the clients (newer iPODs, laptops) are smart enough to behave correctly and use Wifi Protected Setup. This problem means that one older iPOD seems to be receiving the Comcast DHCP (as 192.168.33.0/24 range) instead of E4200 Wifi DHCP range (as 192.168.1.0/24 range). I imagine the most direct solution is to pull the public connection briefly and allow the iPOD to fetch a valid WiFi DHCP from the remaining DHCP server on board the E4200. HOWEVER, I'd like to configure the router to suppress all DHCP packets from the Comcast network - or otherwise make sure the WiFi clients only receive DHCP from the router and not the Comcast modem.
On E4200 Firmware Version: 1.0.03, I managed to successfully set up "Internet Access Policy" (not the "Parental Controls") to set up the times when internet access is disabled for various IPs on my network.
But I could't setup a policy to block facebook.com. What I am doing wrong? See the attached screen shot. I did click the "Edit List" and apply this polity to the IP Address Range 192.168.1.2 to 192.168.1.254.
I have noticed that after the new Firmware Update, the EA4500 will not change to a new public address. I have check my logs and my IP Address is the same going back to a 03/25/2012. I changed my router back to my old E4200V1 and it changes to a new addresses when the old one expires.
I've been keeping an eye on my IPS report tab lately and have been watching a large number of ICMP_SMURF and DOS attacks originating from chinese ip address's. I know I can probably block the offending ip's through the ip based acl tab in the firewall settings, but I'm kind of a newbie how I can block certain ip's from touching my router?
I have configured my e4200 to block traffic at certian times uses both the Parental Controls and the Intenet Access Polices. Neither one seems to work though. [code] I have the same MAC addresses specified in each rule. Initally I had only the first two rules. Those didn't work, so I added rule 3 and 4 (they do the same thing as rules 1 and 2 but from the opposite direction). There are no compliaints, but they don't stop any traffic.
I started with the Parental Controls, they didn't work either. The page in there that lets you pick which machines you want to block seemed next to worthless. I have about four rows listed as "Network Device." REALLY LAME! As the MAC addresses are accesible and these weren't working I went to the IAP.
I have a 6 month old Cisco e-4200 router that is updated to the latest firmware, connected to a Motorola surfboard modem on Sudden-link in Midland, TX.
I previously used this exact same setup on Cox Cable in Wichita, KS with no problems. Upon setting it up down here I cannot get the router to pickup an IP address. I have Power-cycled everything multiple times, did a complete reset and re-installation of the router software and still no luck. The Sudden-link techs have no idea what is wrong. They said that the modems signal is strong and everything should be working.
Actually I did get it to work once for a couple of days, however when redoing the surround sound system I had to unhook the cable line and it quit working and I haven't gotten it to work again since. I have tried unhooking everything. Turning it all off. Waiting for 5+minutes, and then reconnecting in order: First the modem, then an ethernet cable to the computer which will usually work. But as soon as I unplug the cable from the computer and plug it into the router it stops working.
I just bought the Cisco e4200 v2 router, I did all the installations as the Cisco connect software instructed me and everything went fine.After the installation I configured the router on the WAN settings as (Automatic Configuration - DHCP), like my old router (Linksys WRT54GL) and I saw that my router doesn't get the WAN address from cable modem from my ISP(it stays on 0.0.0.0), it doesn't renew the IP address.
I have been looking into this router, I would like to know if I can enable Parental controls or access restrictions to block a MAC or IP address; from 03:00 AM - 06:00 AM ?Instead of Midnight to 6:00 am.My E4200 works just fine, Just would like to know if the EA6500 Can do that ?
My wife accidently reset the password on our E4200 wireless router and did not write it down. I have tried to reset the router as well as run the set up CD - no luck. How can I recover and get my wireless network back in operation?
After an indeterminate period my E4200 (firmware version 1.0.03) stops renewing the Internet IP address. This happens in both router mode and bridge mode.In router mode the E4200 is set for DHCP and connected to the cable modem, in bridge mode it is connected to a Dell switch with DHCP being provided by my Win2008R2 server.It appears that the device stops recognizing the existence of the Internet port - no lights come on when a cable is plugged in - whether connected to the cable modem or my Dell switch. Plugging the same cable into one of the 4 lan ports and that port lights up immediately (i.e. it is not a patch cable problem).If the E4200 is left switched off for some time (possibly days) it will work properly again for a while.
Frameware version: 1.0.03. Environment: Internet (external IP say 24.x.x.x) ISP provided modem+router (192. 168. 1.x/ 24 IPTV network) E4200 (192.168.0.x/24 my home network).
The DDNS option page did report update succefully and shown the external IP address correctly on the page, however when I login to dynDNS it shows 192.168.1.x, which is the E4200 IP dhcp from the ISP's router.I know that it's double NAT, but the 192.168.1x/24 subnet is the IPTV subnet, and my old Dlink router did support and update the dynDNS entry properly.
I replaced my old wireless router with a Cisco Linksys E4200, running firmware version 1.0.02 build 13 May 24, 2011. About once a minute the router sends an unsolicited DNS message to the IPV4 multicast address 01:00:5e:00:00:fb with a destination IP address of 22.214.171.124. The unsolicited message is a DNS response with source port 32784, transaction ID 0, flags 0x8400 (standard query response, no error), questions 0, answer RRs 2, authority RRs 0 and additional RRs 1. The two answers both relate to the router itself: one has Name Cisco18738.local, type A (host address), class 1 (IN), cache flush true, time to live 1 minute, data length 4, and the address of the router. The other is the reverse of the same address. The additional record is for Cisco18738.local, type NSEC, class IN, cache flush true, time to live 1 minute, data length 5, next domain name Cisco18738.local, RR type A (host address).
When my desktop computer receives these messages it logs an error, for example: "Jun 23 07:39:22 sauterws02 avahi-daemon: Received response from host 10.146.9.1 with invalid source port 32784 on interface 'eth0.0'" The 10.146.9.1 is the router's IP address. I also see these messages on the wireless link from my laptop.I suppose the E4200 is generating these DNS messages in a misguided attempt to make sure there is no old information about its name. Is there a way to turn them off? If not, is there a way to report this to Cisco as a bug?
I've got threeLinux Boxes (running Centos 6). They were all connected to my cheap WRT54GL-- DHCP worked every time.Absolutely no problems. Both the LInux boxes and the WRT54GL had MTU set to manual, 1492.I replaced the WRTt54GL with the expensive E4200. I set the new router's MTU to manual, 1492. NONE of my Linux boxes ever receive a DHCP address. I look at the logs, and they do DHCPDISCOVER, get DHCPNACK, try several different intervals, and then fail the interface and quit.ALL I did was unhook cables from the WRT54GL and plug into the E4200. Yes, the WRT54GL was powered off. NOTHING was changed in the Linux configs. Yes, DHCP is enabled, address-range assigned, etc. BTW-- one box is dual boot with Win7-- in Win7 (using the same card, obviously), DHCP works just fine. But, Linux doesn't work.
I can give the boxes static IP's, and all is well. Just can't get DHCP to work. I evfen tried putting in DHCP reservations (via MAC assignments) for the E4200-- still doesn't work. The new E4200 is on the 02 firmware (which I believe is cuurent). If I can't iron this simple task out, in a couple of days I'm taking the E4200 back, and getting a refund. I'll stay with my old WRT54GL... it works. Hate to give up on some of the new E4200 features, though.
I've tried to cascade two Linksys routers, but It hasn't worked for me. The first one (which has cable-modem connection) is the brand new E4200, and the second one is the old WRT54GCv3.[code] However, the WRT54GCv3 doesn't get the IP address from the E4200's DHCP. I've also tried to connect them directly (without the PLC), even specifing an static IP on the second router, but I got the same results.I've to state I don't want to change the first router IP/gateway parameters because I have a web and game home server working with an static IP and I don't want to put it offline temporarily because of readjusting network parameters.
I have E4200 with fixed ip 192.168.1.2, DHCP off connected through LAN ports to FIOS ActionTec as 192.168.1.1. When connecting through wireless network off the E4200, I can obtain and connect fine under Guest network and WEP security, but for any other security setting, WPA, WPA2, Mixed mode, etc. I get the message "Aquiring network address" forever, and I never get a connection.
I have changed from a DSL internet service to a Comcast cable system. I have setup my E4200v1 router as an Access Point, to extend coverage in my building. It works fine, but I can no longer log on to the unit using its' IP address 192.168.1.1. The browser returns the message "Internet Explorer cannot display the webpage." If I want to tweak the settings the only thing I can think to do is to push the reset plug, back to factory settings and go through the whole process. Is there a way to discover the new IP address of the reconfigured router? I left the default address as it was when I made the changes to AP status.
Is it possible to create a service which will forward public port 9010 to an internal IP address with port 23?First of all, I do not like to open the public Telnet port to the inside so I would use another public port and second my ISP does not allow some public ports beneath port 80?
I have a WAG160Nv2 and I want to block specific external ip addresses from trying to get at our server that uses the WAG160Nv2 as an internet gateway. It's not immediately obvious if this can be done from looking through the config pages.
I have a public IP and I want to be able to view my three systems connected to a linksys router from the internet. How can configure the router to see three systems with just one Public IP address whenever I am on the internet?
I'm really bad on networking so I have a question about NAT. I got two public IP addresses from my ISP: 92.x.x.252 - 92.x.x.254. 92.x.x.254 is configured as secondary on external interface and clients will use it two connect (vpn) it from outside through cisco 1841 to zywall p1 with wan ip address 92.x.x.253. Is this configuration (look at picture) allowed? How can I route traffic from 92.x.x.254 to zywall p1, if posible?
We are looking into the possibility of putting in some public wireless access in the public areas of our organization. Its a fairly small building in terms of public access and it needs to span 3 rooms in total. We have a spare BT line into the building - ADSL 2+ - and so will utilize that instead of putting them on our network. We would like to run some router based content filtering on the router - but would use open dns if this isn't possible.I could do to find a good wireless router that will cover the 3 areas . Its not a large budget project as there isn't going to be very highly utilized. We are looking Cisco kit - and have drawn up a few options. Initially we were going to go with the 1140's - but these are access points and as per my understanding aren't going to work with the phone line - as it needs to be a wireless router.
The next area was the Linksys E series (E4200) - they do look really good, and they have the content filtering which we like. What the power and range of the E series is? The only issue we might have is its a fairly old building and so some of the walls are pretty thick - one of which is wooden lined.It has the 3x3 mimo antennas and so guess it would provide some pretty good range/power. If the hardware is cheap enough then we may be able to setup the routers in repeater mode - however I'm not sure if the home devices can work that way? - I think max would be £300 - but that will be decided when I have some better numbers.
I have a Thompson ST546 Router and I want to give it a public ip address and give two servers behind it public ip addresses as well.Now I am having great trouble getting this set in the web interface.
My router IP address is 126.96.36.199 with .66 and .67 will be the two servers. What is the subnet for these ips? Is it 255.255.255.248?
I have assigned my server the public address but if I try to ping it I am getting no response as if the ip is only a local address. My server is windows server 2008, is there a setting to turn ping on/off that I might have missed? I know the server is pingable internally.
Just to make it clear my ISP has assigned me IPs x.65 to x.70 for my use
My web server is out of public IPs. I requested more from my ISP and I got a different range with a different gateway. How do I handle the configuration on my Cisco ASA? Without any configuration changes to the firewall I saw the traffic hitting it and being blocked. I added an access rule to allow the traffic. I added a virtual interface on the ASA. I added a virtual interface on the web server. Using "Packet Tracer" the traffic flows from the outside interface to the new virtual interface. But I'm unable to access my web server and I don't see any traffic on that IP reaching the web server.Using Cisco ASA 5510.
My ISP insists on using a /30 IP WAN block to connect to its equipment even though it is an ethernet handoff. They wil then route a /27 public IP block to my firewall. I would have liked to skip the WAN block and connect my PIX directly to the interface but now have to deal with two sets of IP blocks and routing between them but I still want to avoid having to use a router in between their equipment and my firewall.Is it possible to use one of the switch ports on the PIX and configure it as a separate VLAN to handle the WAN block and then route internally to another VLAN with the public block and still be able to use NAT, ACL and IPSec on the PIX?
Imagine AS65200 anouncing block 10.10.0.0/22 to the internet.Now for some reason we need to announce block 10.10.2.0/24 from AS65333.How should routes from AS65200 be announced now?
Can I maintain the whole /22 block since 10.10.2.0/24 from AS65333 is more specific? Or should I now break AS65200 announcement into smaller prefixes completelly excluding .2.0/24 ?( .0.0/23 and .3.0/24)