Cisco 871 new setup

[sjjustina]

This is a totally new router and my first cisco router. We had a 870 that my predicessor setup just before he left. Some bad weather came through and ZIPPPP all kind of stuff is toast including the 2 month old router.

I used the CLI Excel template from the 870 for the 871 and it's working fine except that I can't get into it with the SDM and being new to cisco routers, I'm more comfortable with a GUI than the command line.

I can access the router from the serial port and hyperterm but can't hyperterm to it over the network. The SDM tries to launch, either from my computer or the server that has the cable to the serial port, but tells me it that the IP is invalid or that HTTP is not enabled (not using HTTPS).

The reason that I need to get into the router is to setup port forwarding for RDP and another computer that has security cameras.

At one point the error that I got gave me a help file to configure HTTP which I did only there's one command that it errors on. After getting in and enable bla bla, I get to this command:

line vty 0 4
privilege level 15
login local (this is the line that errors, it errors on the L of local)

This is my current configuration below, thanks in advance for your help. I erased the memory before I started but I have no idea where the 10.10.10 network got in there but that's not the ip range we use.

Sarah


Current configuration : 6504 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname ciscosomething
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
enable secret 5 $1$wGlC$.Ovdv.M95e63Jd62oN6cz.
enable password 7 095C4F1A0A1218000F
!
aaa new-model
!
!
aaa authentication login default local
aaa authorization exec default local
--More--  !
!
aaa session-id common
!
crypto pki trustpoint TP-self-signed-2644455569
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2644455569
revocation-check none
rsakeypair TP-self-signed-2644455569
!
!
crypto pki certificate chain TP-self-signed-2644455569
certificate self-signed 02
3082024E 308201B7 A0030201 02020102 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32363434 34353535 3639301E 170D3032 30333035 32333434
34315A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 36343434
35353536 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100D847 0F6C7C17 82C21073 4BEA8495 7702DF44 63F4BA4D 7DD699A0 FE3A071E
11FD9B96 FCB73F99 152C9DCB 4988E659 F1817627 069AE9C7 A6CBD9EC 62B8A6C4
65E76CB1 6A9FF7ED 5FB01D63 E3DE5A38 E0E127DA AA28E3C1 C697B729 3F0CF39E
2DF56860 453F54A6 5004643E FBB3F544 63813D82 6C8D5ADA 686C8D61 3D99168E
--More--   BE270203 010001A3 76307430 0F060355 1D130101 FF040530 030101FF 30210603
551D1104 1A301882 16636973 636F726F 75746572 2E636973 636F722E 636F6D30
1F060355 1D230418 30168014 5C76295F C8F765CF B22FC3B9 8C07B506 C7CFB272
301D0603 551D0E04 1604145C 76295FC8 F765CFB2 2FC3B98C 07B506C7 CFB27230
0D06092A 864886F7 0D010104 05000381 81000D62 0B2E7836 04D51342 B1833B53
6BC2F72A B62693F7 B06A848E 79033B90 006AF541 5EB20551 525DA42B C400D233
8D508BF2 D81A52C5 5D48A6BC 8EF7857D FA075078 680F3715 E2CC58FD 00093FD6
C633A51E 2E12A974 0EF9A057 43AA5BEF 0A2049FA 96428B56 85F1CCC6 A01857C2
025D7AF4 E66FB3BB 2F035FBB 55F08F6E A002
quit
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.XXX.1 192.168.XXX.99
ip dhcp excluded-address 192.168.XXX.1 192.168.XXX.99
!
ip dhcp pool sdm-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
--More--  !
ip dhcp pool Internal-net
import all
network 192.168.XXX.0 255.255.255.0
default-router 192.168.XXX.1
dns-server 216.115.6.170 216.83.236.227
domain-name ciscor.com
lease 4
!
ip dhcp pool VLAN20
import all
network 192.168.XXX.0 255.255.255.0
default-router 192.168.XXX.1
dns-server 216.115.6.170 216.83.236.227
domain-name ciscor.com
lease 4
!
!
no ip domain lookup
ip domain name ciscor.com
ip inspect name MYFW tcp
ip inspect name MYFW udp
ip auth-proxy max-nodata-conns 3
--More--  ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
username username privilege 15 password 7 121A0B14151915
!
!
archive
log config
hidekeys
!
!
!
bridge irb
!
!
interface FastEthernet0
spanning-tree portfast
!
interface FastEthernet1
spanning-tree portfast
!
--More--  interface FastEthernet2
spanning-tree portfast
!
interface FastEthernet3
spanning-tree portfast
!
interface FastEthernet4
ip address 208.115.6.170 255.255.255.252
ip access-group Internet-inbound-ACL in
ip nat outside
ip inspect MYFW out
ip virtual-reassembly
ip tcp adjust-mss 1460
duplex auto
speed auto
no cdp enable
!
interface Vlan1
description Internal Network
ip address 10.10.10.1 255.255.255.248
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
--More--   bridge-group 1
bridge-group 1 spanning-disabled
!
interface BVI1
description Bridge to Internal Network
ip address 192.168.XXX.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 208.115.6.XXX
!
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface FastEthernet4 overload
!
ip access-list extended Guest-ACL
deny ip any 192.168.XXX.0 0.0.0.255
permit ip any any
--More--  ip access-list extended Internet-inbound-ACL
permit icmp any any echo
permit icmp any any echo-reply
permit icmp any any traceroute
permit gre any any
permit esp any any
!
access-list 1 permit 192.168.XXX.0 0.0.0.255
access-list 1 permit 192.168.XXX.0 0.0.0.255
access-list 23 permit 10.10.10.0 0.0.0.7
no cdp run
!
!
!
!
control-plane
!
bridge 1 route ip
banner exec ^C

 

[burtsbees]

Looks like it's already set up...

Burt

 

[sjjustina]

I figured it out, thanks

 

[burtsbees]

What was it?

Burt