Hi all,
This isthe first Cisco router I have tried to install. I cannot get internet access setup, can any of you see any glaring errors? I think it must be to do with the NAT setup. When I run the test on the adsl connection it comes up as fine. Help very much appreciated!
Rob
!This is the running config of the router: 192.168.1.1
!----------------------------------------------------------------------------
!version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname hagens
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
logging console critical
enable secret 5 $1$iOBv$OFvgSQDsCUP9S7m7dotBG1
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 0
clock summer-time PCTime date Mar 30 2003 1:00 Oct 26 2003 2:00
ip subnet-zero
no ip source-route
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
!
ip dhcp pool sdm-pool1
import all
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
!
!
ip tcp synwait-time 10
no ip bootp server
ip name-server 158.152.1.58
ip name-server 158.152.1.43
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
crypto pki trustpoint TP-self-signed-4247156594
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4247156594
revocation-check none
rsakeypair TP-self-signed-4247156594
!
!
crypto pki certificate chain TP-self-signed-4247156594
certificate self-signed 01
3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323437 31353635 3934301E 170D3036 31313032 32303534
32395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32343731
35363539 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100D121 3CDACCBA A14315C3 903EFB73 015680BA 086E895B 588AE35D E71876CF
CAC510CF FBE0C8B8 9337FCEE 8A7881E0 5D36321F 6AE149B9 A819F681 43E2DEE8
A6B1190C 941A13FA 40EE4921 83EFC9D6 149970CB FBAF5AD4 1C5922CD 51215269
304201AF 54990F2F 2065710D D571527E E91236F5 B7544158 9BDBA885 64BDE81A
96D10203 010001A3 77307530 0F060355 1D130101 FF040530 030101FF 30220603
551D1104 1B301982 17796F75 726E616D 652E796F 7572646F 6D61696E 2E636F6D
301F0603 551D2304 18301680 1484E3F9 DF8AD2C5 14E8E931 78A58C0F CC879DDF
09301D06 03551D0E 04160414 84E3F9DF 8AD2C514 E8E93178 A58C0FCC 879DDF09
300D0609 2A864886 F70D0101 04050003 8181009D 24CDA4A8 5F0405CE D0EB2873
1F3F52A3 B8AE8554 B09963AC 10DB9FD2 A3E7EE7E 4BAD3173 F9C31661 F33A0144
13B664DD C7141135 E095DC31 CA02E3E7 BEE2937D 7311B484 E6CDCF5C 046994AF
3F55D62B EEC3F004 EC6BA833 67CBEEB4 4D6705E9 E64517D1 A1F3F75C 36D7E675
1DC73619 70B476C7 88DB2D02 6A2BAEC3 BE7543
quit
username mghconsulting privilege 15 secret 5 $1$QaVr$FCv8fuXrQJYLq7kf1OtnR/
!
!
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
description $ES_WAN$$FW_OUTSIDE$
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address 192.168.1.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
!
interface Dialer0
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip route-cache flow
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap callin
ppp chap hostname hagens@lon1-aj3d.demonadsl.co.uk
ppp chap password 7 022B0549050F0A791B
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 2 interface Dialer0 overload
!
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 2 remark SDM_ACL Category=2
access-list 2 permit 192.168.1.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line vty 0 4
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
This isthe first Cisco router I have tried to install. I cannot get internet access setup, can any of you see any glaring errors? I think it must be to do with the NAT setup. When I run the test on the adsl connection it comes up as fine. Help very much appreciated!
Rob
!This is the running config of the router: 192.168.1.1
!----------------------------------------------------------------------------
!version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname hagens
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
logging console critical
enable secret 5 $1$iOBv$OFvgSQDsCUP9S7m7dotBG1
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 0
clock summer-time PCTime date Mar 30 2003 1:00 Oct 26 2003 2:00
ip subnet-zero
no ip source-route
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
!
ip dhcp pool sdm-pool1
import all
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
!
!
ip tcp synwait-time 10
no ip bootp server
ip name-server 158.152.1.58
ip name-server 158.152.1.43
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
crypto pki trustpoint TP-self-signed-4247156594
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-4247156594
revocation-check none
rsakeypair TP-self-signed-4247156594
!
!
crypto pki certificate chain TP-self-signed-4247156594
certificate self-signed 01
3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 34323437 31353635 3934301E 170D3036 31313032 32303534
32395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D34 32343731
35363539 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100D121 3CDACCBA A14315C3 903EFB73 015680BA 086E895B 588AE35D E71876CF
CAC510CF FBE0C8B8 9337FCEE 8A7881E0 5D36321F 6AE149B9 A819F681 43E2DEE8
A6B1190C 941A13FA 40EE4921 83EFC9D6 149970CB FBAF5AD4 1C5922CD 51215269
304201AF 54990F2F 2065710D D571527E E91236F5 B7544158 9BDBA885 64BDE81A
96D10203 010001A3 77307530 0F060355 1D130101 FF040530 030101FF 30220603
551D1104 1B301982 17796F75 726E616D 652E796F 7572646F 6D61696E 2E636F6D
301F0603 551D2304 18301680 1484E3F9 DF8AD2C5 14E8E931 78A58C0F CC879DDF
09301D06 03551D0E 04160414 84E3F9DF 8AD2C514 E8E93178 A58C0FCC 879DDF09
300D0609 2A864886 F70D0101 04050003 8181009D 24CDA4A8 5F0405CE D0EB2873
1F3F52A3 B8AE8554 B09963AC 10DB9FD2 A3E7EE7E 4BAD3173 F9C31661 F33A0144
13B664DD C7141135 E095DC31 CA02E3E7 BEE2937D 7311B484 E6CDCF5C 046994AF
3F55D62B EEC3F004 EC6BA833 67CBEEB4 4D6705E9 E64517D1 A1F3F75C 36D7E675
1DC73619 70B476C7 88DB2D02 6A2BAEC3 BE7543
quit
username mghconsulting privilege 15 secret 5 $1$QaVr$FCv8fuXrQJYLq7kf1OtnR/
!
!
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
description $ES_WAN$$FW_OUTSIDE$
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address 192.168.1.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
!
interface Dialer0
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip route-cache flow
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap callin
ppp chap hostname hagens@lon1-aj3d.demonadsl.co.uk
ppp chap password 7 022B0549050F0A791B
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 2 interface Dialer0 overload
!
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 2 remark SDM_ACL Category=2
access-list 2 permit 192.168.1.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line vty 0 4
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end