Hi All,
I'm very new to cisco equipment and am looking for a basic config to get 2 cisco 831 (IOS 12.4 5c) routers linked via a VPN.
R1 (Branch) has a dynamic IP assign via a Cable internet connection
R2 (HQ) has a Static IP assigned via a PPPOE DSL Connection
I'm just looking to get the 192.168.0.0/24 network and the 192.168.1.0/24 networks communicating over the VPN.
Here are the configs without any VPN attempt so far.
R2 HQ
-------
!
version 12.4
no parser cache
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname R2
!
boot-start-marker
boot-end-marker
!
enable password 7 XXXXXXXXXXXXXXXX
!
no aaa new-model
!
resource policy
!
!
!
ip cef
vpdn enable
!
!
!
!
username XXX privilege 15 password 7 XXXXXXXXXXXXXXXXXX
!
!
!
!
!
interface Ethernet0
description My LAN Interface
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no cdp enable
!
interface Ethernet1
description Physical ADSL Interface (Facing the ISP)
no ip address
no ip mroute-cache
duplex auto
pppoe enable
pppoe-client dial-pool-number 1
no cdp enable
!
interface Ethernet2
no ip address
!
interface FastEthernet1
duplex auto
speed auto
!
interface FastEthernet2
duplex auto
speed auto
!
interface FastEthernet3
duplex auto
speed auto
!
interface FastEthernet4
duplex auto
speed auto
!
interface Dialer1
description Logical ADSL Interface
ip address negotiated
ip access-group 102 in
ip access-group 101 out
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp adjust-mss 1452
no ip mroute-cache
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname XXXXXXXXXXXXXXXXX
ppp chap password 7 XXXXXXXXXXXXXX
ppp pap sent-username XXXXXXXXXXXXXX password 7 XXXXXXXXXXXXXXXX
ppp ipcp dns request accept
ppp ipcp route default
ppp ipcp address accept
!
no ip http server
no ip http secure-server
!
ip nat inside source list 10 interface Dialer1 overload
!
access-list 10 permit 192.168.1.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
exec-timeout 0 0
login local
length 0
!
scheduler max-task-time 5000
end
R1 Branch
----------
!
version 12.4
no parser cache
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname R1
!
boot-start-marker
boot-end-marker
!
enable password 7 xxxxxxxxxxxxxxxx
!
no aaa new-model
!
resource policy
!
!
!
ip cef
!
!
!
username xxx privilege 15 password 7 xxxxxxxxxxxxxxxxxxx
!
!
!
!
!
interface Ethernet0
description Facing my LAN
ip address 192.168.0.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no cdp enable
!
interface Ethernet1
description Facing the ISP (the WAN)
ip address dhcp
ip access-group 102 in
ip access-group 101 out
ip nat outside
ip virtual-reassembly
no ip mroute-cache
duplex auto
no cdp enable
!
interface Ethernet2
no ip address
!
interface FastEthernet1
duplex auto
speed auto
!
interface FastEthernet2
duplex auto
speed auto
!
interface FastEthernet3
duplex auto
speed auto
!
interface FastEthernet4
duplex auto
speed auto
!
no ip http server
no ip http secure-server
!
ip nat inside source list 10 interface Ethernet1 overload
!
access-list 10 permit 192.168.0.0 0.0.0.255
no cdp run
!
control-plane
!
!
line con 0
exec-timeout 0 0
password 7 xxxxxxxxxxxxxxxxxxx
logging synchronous
login
no modem enable
stopbits 1
line aux 0
password 7 xxxxxxxxxxxxxxxxxxxxxx
login
line vty 0 4
exec-timeout 0 0
password 7 xxxxxxxxxxxxxxxxxxxx
login
length 0
!
scheduler max-task-time 5000
end
Thanks very much for the help!
I'm very new to cisco equipment and am looking for a basic config to get 2 cisco 831 (IOS 12.4 5c) routers linked via a VPN.
R1 (Branch) has a dynamic IP assign via a Cable internet connection
R2 (HQ) has a Static IP assigned via a PPPOE DSL Connection
I'm just looking to get the 192.168.0.0/24 network and the 192.168.1.0/24 networks communicating over the VPN.
Here are the configs without any VPN attempt so far.
R2 HQ
-------
!
version 12.4
no parser cache
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname R2
!
boot-start-marker
boot-end-marker
!
enable password 7 XXXXXXXXXXXXXXXX
!
no aaa new-model
!
resource policy
!
!
!
ip cef
vpdn enable
!
!
!
!
username XXX privilege 15 password 7 XXXXXXXXXXXXXXXXXX
!
!
!
!
!
interface Ethernet0
description My LAN Interface
ip address 192.168.1.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no cdp enable
!
interface Ethernet1
description Physical ADSL Interface (Facing the ISP)
no ip address
no ip mroute-cache
duplex auto
pppoe enable
pppoe-client dial-pool-number 1
no cdp enable
!
interface Ethernet2
no ip address
!
interface FastEthernet1
duplex auto
speed auto
!
interface FastEthernet2
duplex auto
speed auto
!
interface FastEthernet3
duplex auto
speed auto
!
interface FastEthernet4
duplex auto
speed auto
!
interface Dialer1
description Logical ADSL Interface
ip address negotiated
ip access-group 102 in
ip access-group 101 out
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp adjust-mss 1452
no ip mroute-cache
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname XXXXXXXXXXXXXXXXX
ppp chap password 7 XXXXXXXXXXXXXX
ppp pap sent-username XXXXXXXXXXXXXX password 7 XXXXXXXXXXXXXXXX
ppp ipcp dns request accept
ppp ipcp route default
ppp ipcp address accept
!
no ip http server
no ip http secure-server
!
ip nat inside source list 10 interface Dialer1 overload
!
access-list 10 permit 192.168.1.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
exec-timeout 0 0
login local
length 0
!
scheduler max-task-time 5000
end
R1 Branch
----------
!
version 12.4
no parser cache
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname R1
!
boot-start-marker
boot-end-marker
!
enable password 7 xxxxxxxxxxxxxxxx
!
no aaa new-model
!
resource policy
!
!
!
ip cef
!
!
!
username xxx privilege 15 password 7 xxxxxxxxxxxxxxxxxxx
!
!
!
!
!
interface Ethernet0
description Facing my LAN
ip address 192.168.0.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no cdp enable
!
interface Ethernet1
description Facing the ISP (the WAN)
ip address dhcp
ip access-group 102 in
ip access-group 101 out
ip nat outside
ip virtual-reassembly
no ip mroute-cache
duplex auto
no cdp enable
!
interface Ethernet2
no ip address
!
interface FastEthernet1
duplex auto
speed auto
!
interface FastEthernet2
duplex auto
speed auto
!
interface FastEthernet3
duplex auto
speed auto
!
interface FastEthernet4
duplex auto
speed auto
!
no ip http server
no ip http secure-server
!
ip nat inside source list 10 interface Ethernet1 overload
!
access-list 10 permit 192.168.0.0 0.0.0.255
no cdp run
!
control-plane
!
!
line con 0
exec-timeout 0 0
password 7 xxxxxxxxxxxxxxxxxxx
logging synchronous
login
no modem enable
stopbits 1
line aux 0
password 7 xxxxxxxxxxxxxxxxxxxxxx
login
line vty 0 4
exec-timeout 0 0
password 7 xxxxxxxxxxxxxxxxxxxx
login
length 0
!
scheduler max-task-time 5000
end
Thanks very much for the help!