Ok I have a remote office that connects via two Alvarion wireless radios 30mbs bridged with 128wep . The office is on our subnet and it works great. Now another office in the same building wants connect to one of our servers via through our network (they currently vpn into it over their DSL). No big deal I have two old cisco 1700’s. I config them in house , everything connects works great. That is until I take one of the routers to remote site. I can see the router from their network, but I can’t see it on my net work unless I disconnect the wireless uplink. As soon as I pull the radio’s patch cable out of the switch I can ping the router ( I’m also connected straight into the switch) reconnect the wireless patch cable and I lose the router. Any ideas?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Cisco 1700 over Alvarion radios
- Thread starter slick007
- Start date
- Thread starter
- #3
Here's config for router here, other router is still off site. Remote router is fine, it's this router that drops off the network when ever the it's plugged into the switch along with the Alvarion(wireless radio), remove the Alvarion and it works great.
************************************************************
jckrouter28#sh config
Using 3313 out of 29688 bytes, uncompressed size = 6717 bytes
Uncompressed configuration from 3313 bytes to 6717 bytes
!
! Last configuration change at 15:24:09 PCTime Fri Jun 16 2009 by *****
! NVRAM config last updated at 09:33:38 PCTime Thu Jun 10 2009 by *****
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
service compress-config
!
hostname jckrouter28
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 ******************************
!
username ***** privilege 15 view root secret 5 ********************.
clock timezone PCTime -6
clock summer-time PCTime date Jun 16 2009 16:00
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
!
!
!
!
ip domain name *************
ip name-server 32.72.47.99
!
!
!
!
no spanning-tree vlan 1
!
!
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp key ******* address 172.16.0.2
!
!
crypto ipsec transform-set TOC esp-3des esp-sha-hmac
!
crypto map TOC ipsec-isakmp
description Tunnel to172.16.0.2
set peer 172.16.0.2
set transform-set TOC
match address 100
!
!
!
interface FastEthernet0
description $ETH-LAN$$FW_OUTSIDE$
ip address 172.16.0.1 255.255.255.248
ip access-group 100 in
ip verify unicast reverse-path
ip inspect LOW out
duplex auto
speed auto
no cdp enable
crypto map TOC_CMAP_1
!
interface FastEthernet1
no ip address
no cdp enable
!
interface FastEthernet2
no ip address
no cdp enable
!
interface FastEthernet3
no ip address
no cdp enable
!
interface FastEthernet4
no ip address
no cdp enable
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
ip address 32.72.46. 255.255.254.0
ip access-group 104 in
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
interface Async1
no ip address
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0 permanent
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 5 life 86400 requests 10000
!
!
!
access-list 100 remark ACL Category=4
access-list 100 remark IPSec Rule
access-list 100 permit ip 32.72.46.0 0.0.1.255 host 192.168.1.0
************************************************************
jckrouter28#sh config
Using 3313 out of 29688 bytes, uncompressed size = 6717 bytes
Uncompressed configuration from 3313 bytes to 6717 bytes
!
! Last configuration change at 15:24:09 PCTime Fri Jun 16 2009 by *****
! NVRAM config last updated at 09:33:38 PCTime Thu Jun 10 2009 by *****
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
service compress-config
!
hostname jckrouter28
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 ******************************
!
username ***** privilege 15 view root secret 5 ********************.
clock timezone PCTime -6
clock summer-time PCTime date Jun 16 2009 16:00
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
!
!
!
!
ip domain name *************
ip name-server 32.72.47.99
!
!
!
!
no spanning-tree vlan 1
!
!
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp key ******* address 172.16.0.2
!
!
crypto ipsec transform-set TOC esp-3des esp-sha-hmac
!
crypto map TOC ipsec-isakmp
description Tunnel to172.16.0.2
set peer 172.16.0.2
set transform-set TOC
match address 100
!
!
!
interface FastEthernet0
description $ETH-LAN$$FW_OUTSIDE$
ip address 172.16.0.1 255.255.255.248
ip access-group 100 in
ip verify unicast reverse-path
ip inspect LOW out
duplex auto
speed auto
no cdp enable
crypto map TOC_CMAP_1
!
interface FastEthernet1
no ip address
no cdp enable
!
interface FastEthernet2
no ip address
no cdp enable
!
interface FastEthernet3
no ip address
no cdp enable
!
interface FastEthernet4
no ip address
no cdp enable
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
ip address 32.72.46. 255.255.254.0
ip access-group 104 in
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
interface Async1
no ip address
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0 permanent
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 5 life 86400 requests 10000
!
!
!
access-list 100 remark ACL Category=4
access-list 100 remark IPSec Rule
access-list 100 permit ip 32.72.46.0 0.0.1.255 host 192.168.1.0
access-list 100 permit ip 32.72.46.0 0.0.1.255 host 192.168.1.0
192.168.1.0 cannot be a host.
That is a network address.
/
tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
Hi Burt,
I could be, if it was using subnet mask /32.Here in Europe some ISP use this method with public address,so as to be able to use all 256 address because of the limited amount of addresses we have ,as compare to you Americans.
In any case it's strange to see this method use with private address.So the best bet is that it's a mistake.
Regards
I could be, if it was using subnet mask /32.Here in Europe some ISP use this method with public address,so as to be able to use all 256 address because of the limited amount of addresses we have ,as compare to you Americans.
In any case it's strange to see this method use with private address.So the best bet is that it's a mistake.
Regards
The /31 can only be used as ppp, /32 is a host address. I have never seen a /32 as a .o address...
/
tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
/
tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
I believe you, just never have I seen this...
Minue---when have I ever doubted you?
/
tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
Minue---when have I ever doubted you?
/
tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
- Status