Have you got the Enhanced Image (EI) software installed? If you've just got the standard image (SI) then you wont be able to do it.
An example of how you would do it on an EI 2950 is as follows,
access-list 1 permit x.x.x.x -(address of host or network to be rate limited)
class-map example -...
yep, RIP does not include in its updates classful routing information, that is all it will do is,
10.0.0.0
20.0.0.0
30.0.0.0 etc.
try using RIP2 or IGRP.
Config as promised.
Note: This uses TACACS+ running on Cisco ACS v3.1 for Win to authenticate users and authorise services. I configured an IP pool on the TACACS+ server. You could use a local pool instead which would be simpler.
nas1#sh run
Building configuration...
Current configuration ...
Thanks irasman but it was a problem with autobaud in the IOS. I forced it to use 38400 and now it works fine :)
I now have full WinXP Dial up Networking via PPP to a Cisco 3640 with a modem attached to the AUX port. It even works with full tacacs+ authentication, authorisation and accounting...
Ok this has me a little stumped ;-)
Has anyone successfully configured a Cisco router to enable Remote LAN Access via Windows PPP using a modem connected to the AUX port?
My scenario is this. I am testing Cisco ACS for Windows using a variety of access methods (LAN, dial, wifi etc). Currently...
Im not sure I understand what you mean.
Youre router passes all IP traffic, regardless of port using the routing table. If your NAT'ing the general rule of thumb is this,
Incoming traffic (outside to inside) - check for nat rule then pass to routing table.
Outgoing traffic - check routing...
jpeanut,
all you need on the router is a static route to the internal network on the firewall,
eg
ip route 192.168.0.0 255.255.255.0 192.168.2.2.
on your firewall you'll also need a route back to the 24 address
eg
ip route 24.0.0.0 255.0.0.0 192.168.2.1
That sorts out the routing. If...
Pugdog i think you'll a little confused.
The wan interface (wic-1t) has nothing to do with dhcp.
Its just an interface, you can assign a static address to it or sometimes you may want an address assigned dynamically to it by another device (ie a dhcp server).
You can setup your router to...
2926 is part of the 5000 series family, hence you need the 5000 series CatOS software, not IOS or 2950 software.
I found it without any problems on CCO. If you've got access to CCO for s/w downloads you should find it too.
>So besides CoS and VLANs, what else should/could I do on the Cisco switches? DSCP is supposed to be the successor to IP Precedence so I'm assuming that is what I should use on the router. Would I then map the Cos Value to the DSCP value and then send over the T1?
Yes, in theory, you should...
Your right, L2 switches can only read/mark packets with 802.1Q/P headers. Since they don't read the IP header, they cannot do anything with IP Prec, ToS or DSCP.
Echo cancellation is a feature that minimises feedback on the voice conversation. It cancels out the sound of you own voice coming...
I believe that the max throughput on the 5 in 1 sync card is 4mb. In order to run high speed wan services you typically need a hssi port. These routers do not support hssi.
To utilise the full line rate capacity of a t3 service you'll need at least a 3600 series router.
If your doing...
Find out which inside IP addresses you want to block. For example you might want to block 77.30.22.1 - 77.30.22.16
Then you can add an access list to your NAT statement on the router (I'm presuming here that your using Cisco routers).
For example,
ip nat pool testpool x.x.x.x x.x.x.x netmask...
I agree with mtashiro, VoIP and QoS isnt a simple topic that can be explained here. Depending on your environment it may require a simple or complex configuration. For example a friend of mine recently demonstrated VoIP working using a 100mb Hub (no QoS or Vlans etc) and yes there was other...
Yes, you can block ip ranges. You can only do this on the router or firewall though unless your switch(s) have Layer 3 capabilities (ie Cisco 3550 series).
How are you connecting out to the internet ? Do you use a hardware firewall of some description ?
There is another way of doing it also by...
Yes, if you use a combination of VLAN's and ACL's on a router and/or policies in a firewall.
For example if you split up your office network and assigned IP subnets and vlans by floor, you might end up with something like this...
floor 1 - Vlan10 IP network 192.168.1.0 255.255.255.0
floor 2 -...
Portfast is used for spanning tree. It tells the switch not to include that port in the spanning tree domain. You would enable it for end station connections, ie ports that connect to pc's / servers / printers etc.
I would make sure that the end station ports are hard coded for speed / duplex...
I dont see how ip redirects are relevent here.
Also a 2600 is fine for routing between VLAN's.
Never use proxy arp unless you've got a really old device that doesnt have a d/f gateway configured in its routing table.
1. Make sure all devices on each subnet have their gateway configured...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.