You will need to Trunk the Gig port to pass more than 1 vlan.
Enter the command below on the gig interface of both switches.
interface GigabitEthernet0/1
switchport multi vlan 1,1000
switchport mode trunk
If you do this you will be able to add and use Vlans on both swithes.
the " Router on a stick " requires the router ro have a Fast ethernet port. 2620 or 2621. you must have a fast ethernet to do trunking.
you could also place both on the same layer 2 network and use the router as the layer 3 and use the secondary command...
example:
interface e0
ip...
you are correct,
ip route 0.0.0.0 0.0.0.0 s1
ip route 0.0.0.0 0.0.0.0 s2 100
if the first interface fails, it will remove the default route from the routing table...
One issue is, what ip addresses are routed from the upstream providers? is it the same upstream provider on both t1's if so...
Remember allowing port 20 and 21 will allow PASSIVE ftp only. not active FTP...
Here is why.
Passive,
client >1023 to 21 Server
Client >1023 to 21 server
Active
client >1023 to 21 Server
server 21 to >1023 client
in active the server actually establishes the return connection.
This is all...
route-map is a way to direct traffic based on a specfied list
VPN is a name for this item
Permit 20 is a priority
you should see somthing like this...
in the interface somthing like...
interface Serial5/0:13
description VPN
ip address 1.2.3.4 255.255.255.255
encapsulation ppp
ip...
When these user login do they "login to network" if so, you could create a login script with thier profile to preform this action.
Good Luck...
There is so much more information needed, but here is a rule. make informed decisions before un informed decisions.
Run MRTG on your Switches to see what is actually hapening. do you need a little more bandwith, or ALOT? if it is just a little more, you can Etherchannel 100baseT ports...
If i were to make an guess, it is a timing issue. what end is providing clocking. One end should be Line the other should be Internal on each T1. I reccomend the 3600 T1 Interfaces be set to internal and the remote ends set to Line.
PS... Reset all of the CSU's back to factory default...
If i were to make an guess, it is a timing issue. what end is providing clocking. One end should be Line the other should be Internal on each T1. I reccomend the 3600 T1 Interfaces be set to internal and the remote ends set to Line.
Have Fun...
More information is needed. If you have a block of static public addresses, it is a non issue, put in a hub and allow each network to put in thier own firewall and infastructure running off of one of those public addresses.
However, if you went on the cheap and orderd a line with one dynamic...
look at your topology, is the blocking in the correct place.. Make your decision based up on where you want your blocking to be.. Remember this can be done per Vlan. you can have diffrent vlans take diffret paths depending on what switch you designate as root. if you have a large network, i...
you can do it any way you want, as long as when you are finished the wire mapping is this..
12345678
36145278
looking at a connector wire down tab facing away from you.
Per Cisco, in order to trunk it must be a Fast Ethernet or Gig port. So that part is good. A trunk port is a layer 2 port, you can not use it as a layer 3 port. Create a vlan and put your layer 3 on the vlan.
access the console interface of the router. enter Enable (Privlaged mode) type "clear start" this clears the startup config. reboot the router. it will ask you if you want to save your config. answer NO!
However if you dont know the Enable password, you will need to break into it...
My suggestion is to run NAT. if you need items to come from the internet to the inside network, you can use port maping. You can then restrict even further with an access list. I find this works the best for me. If you want to do statefull inspection, then yes you should use the ip firewall...
just create an script in notepad and pase it into your terminal session.
I would STRONGLY advise against automating it further rhan that.
Reason, if there is an issue, you will only cause issues to one switch at a time and not kill every thing
Have Fun
I am asuming this is just an office to office T1. Wide open no access lists?
If you are running TCP/IP ONLY you are in the clear with the Two Routers. If you are runing IPX or appletalk you are in need of the upgrade.
Your t1 will be
ESF ( Extended Supper Frame)
B8ZS ( i have no clue )
24...
Here would be a sample NAT config.
interface Ethernet0
ip address 192.168.X.X 255.255.255.X
ip nat inside
!
interface Ethernet1
ip address 205.X.X.X 255.255.255.X
ip nat outside
!
ip nat inside source list 5 interface Ethernet1 overload
ip nat inside source static 192.168.1.X 205.X.X.X
ip...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.