Cisco 1751 To Sonicwall TZ180

[dbcmaster]

Hello All,

I am having no luck with going from a Cisco 1751 to a Sonicwall TZ 180. Here is my Cisco 1751 configuration:

cisco-1751-floor3#sh conf
Using 2418 out of 29688 bytes
!
version 12.2
service nagle
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime localtime
service timestamps log datetime msec localtime
service password-encryption
!
hostname cisco-1751-floor3
!
logging buffered 10000 notifications
no logging console
enable secret 5 *********************
enable password 7 ****************
!
username ********* password 7 ***********
memory-size iomem 25
clock timezone EST -5
clock summer-time EST recurring
ip subnet-zero
no ip source-route
!
!
ip tcp selective-ack
ip tcp timestamp
ip tcp path-mtu-discovery
no ip domain lookup
!
no ip bootp server
ip audit notify log
ip audit po max-events 100
ip cef
!
class-map match-any http_hack
match protocol http url "*.ida*"
match protocol http url "*cmd.exe*"
match protocol http url "*root.exe*"
match protocol http url "*readme.eml*"
match protocol http url "*SAMPLE*.exe*"
match protocol http url "*sample*.exe*"
match protocol http url "*admin.dll*"
match protocol http url "*readme2.eml*"
match protocol http url "*httpodbc.dll*"
match protocol http url "*sample.eml*"
match protocol http url "*cool.dll*"
match protocol http url "*riched20.dll*"
!
!
policy-map mark_http_hacks
description policy map that marks inbound http hacks
class http_hack
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
no ip redirects
no ip unreachables
speed auto
!
interface FastEthernet0/0.50
description : Administrative Network
encapsulation dot1Q 50
ip address 12.105.73.1 255.255.255.0
ip access-group 143 in
ip access-group 110 out
no ip redirects
no ip unreachables
no cdp enable
!
interface Serial0/0
ip address 12.119.123.174 255.255.255.252
ip verify unicast reverse-path
no ip redirects
no ip unreachables
encapsulation ppp
service-policy input mark_http_hacks
no fair-queue
!
interface Serial1/0
no ip address
shutdown
!
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0
no ip http server
ip pim bidir-enable
!
!
no logging trap
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
exec-timeout 0 0
password 7 *********
login
line vty 5 15
exec-timeout 0 0
password 7 *********
login
!
scheduler allocate 4000 1000
ntp authentication-key 1 md5 101E594D5C4544595450787A707D1766064357445A5077 7
ntp authenticate
ntp trusted-key 1
ntp clock-period 17179949
ntp server 192.168.254.57 key 1
ntp server 137.146.210.250
end



My Sonicwall TZ 180 has the WAN IP set at 12.105.73.2.

Any help would be much appreciated.

David

 

[unclerico]

are you connecting directly from the 1751 to the sonicwall??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[dbcmaster]

It's like this:


Cisco 1751 --> Fiber Transceiver --> Fiber Transceiver --> Sonicwall TZ 180

 

[unclerico]

are you able to ping from the Sonicwall WAN interface to the f0/0.50 interface??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[dbcmaster]

I am unable to ping from the interface to the router. All the lights on the transceiver are lit that need to be lit to make the connection.

 

[dbcmaster]

Does the router setup at least look right?

 

[unclerico]

does the WAN interface of the sonicwall support 802.1q?? if not then remove your subinterface on the 1751 and put the config on the physical f0/0 interface.

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[dbcmaster]

That seems to have done the trick.