Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

I HAVE A Router Cisco 1720 and i can not to open ports

Status
Not open for further replies.
jjoleite

jjoleite

Technical User
May 7, 2004
13
PT
I HAVE A Router Cisco 1720 and i can not to open ports, i want share files en the emule and tell me Your port 4662 is not reacheable. You have a Low Id .......

Can you help me i post my configuration?
Thanks.
 
Sort by date Sort by votes
My configuration, my pc ip adress is 192.2.3.199, and i like to open 4662 tcp and 4672 udp ports to emule.
Thanks.
...
service password-encryption
!
hostname cisco_lasa
!
logging rate-limit console 10 except errors
enable password 7 xxxxxxxxxxxxxxxxxxxxxx
!
memory-size iomem 25
ip subnet-zero
no ip finger
ip name-server aaa.aaa.aaa.aaa
ip name-server bbb.bbb.bbb.bbb
!
no ip bootp server
ip inspect name wall tcp timeout 3600
ip inspect name wall udp timeout 360
ip inspect name wall ftp timeout 3600
ip inspect name wall realaudio timeout 3600
ip inspect name wall h323 timeout 3600
ip inspect name wall smtp timeout 3600
ip inspect name wall http timeout 3600
ip audit notify log
ip audit po max-events 100
no ip dhcp-client network-discovery
!
!
!
interface Ethernet0
description Ligacao a DMZ
ip address xxx.yyy.zzz.qqq 255.255.255.248
no ip unreachables
no ip proxy-arp
no ip route-cache
half-duplex
no cdp enable
!
interface FastEthernet0
description Ligacao a Rede Local
ip address aaa.bbb.ccc.ddd 255.255.255.0
no ip unreachables
no ip proxy-arp
ip nat inside
no ip route-cache
speed auto
no cdp enable
!
interface Serial0
description NNA-
no ip address
no ip unreachables
no ip proxy-arp
encapsulation frame-relay
no ip route-cache
no fair-queue
!
interface Serial0.1 point-to-point
bandwidth 224
ip address qqq. 255.255.255.252
ip access-group 111 in
no ip unreachables
no ip proxy-arp
ip nat outside
ip inspect wall out
no ip route-cache
traffic-shape rate 238000 238000 0 1000
no cdp enable
frame-relay interface-dlci 500 IETF
class SHAPE-WAN500
!
interface Serial0.1000 point-to-point
ip address ccc.ddd.eee.fff 255.255.255.0
no ip route-cache
no cdp enable
frame-relay interface-dlci 1000
!
ip nat inside source list 69 interface Serial0.1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 zzz.xxx.zzz.eee
ip route xxx. 255.255.255.128 xxx.no ip http server
!
!
map-class frame-relay SHAPE-WAN500
frame-relay traffic-rate 224000 230000
frame-relay adaptive-shaping becn
frame-relay mincir 164000
access-list 1 permit 192.2.3.199
access-list 1 permit 194.65.22.19
access-list 1 permit 194.65.147.166
access-list 1 permit 194.65.14.59
access-list 1 permit 192.2.3.6
access-list 1 permit 94.65.95.183
access-list 1 permit 194.65.19.0 0.0.0.255
access-list 1 deny any log
access-list 69 permit 192.2.3.0 0.0.0.255
access-list 111 permit icmp any any echo
access-list 111 permit icmp any any echo-reply
access-list 111 permit tcp any eq domain any eq domain
access-list 111 permit udp any eq domain any eq domain
access-list 111 permit tcp any gt 1024 any eq domain
access-list 111 permit udp any gt 1024 any eq domain
access-list 111 permit tcp any any eq smtp
access-list 111 permit tcp any any eq pop3
access-list 111 permit tcp any any eq www
access-list 111 permit tcp any any eq ftp
access-list 111 permit tcp any any eq ftp-data
access-list 111 permit ip 194.65.19.0 0.0.0.255 any
access-list 111 permit ip host 194.65.22.19 any
access-list 111 permit ip host 194.65.147.166 any
access-list 111 permit ip host 194.65.95.183 any
access-list 111 permit ip host 194.65.14.59 any
access-list 111 deny ip any any log
no cdp run
!
line con 0
password 7 xxxxxxxxxxxxxxxxxxx
login
transport input none
line aux 0
line vty 0 4
access-class 1 in
password 7 xxxxxxxxxxxxxxxx
login
!
no scheduler allocate
end
 
Upvote 0 Downvote
The following config should do it:

ip nat inside source static tcp 192.2.3.199 4662 interface Serial0.1000 4662
ip nat inside source static udp 192.2.3.199 4672 interface Serial0.1000 4672

Good luck!
 
Upvote 0 Downvote
Sorry, but can you tell me how to insert this lines? And, how to close if i want to close.

Thanks a lot.

p.S: I don´t need to make nothing in the access lists?
 
Upvote 0 Downvote
Ok you need to connect to the router telnet or console and then issue the following commands:

en
conf t
ip nat inside source static tcp 192.2.3.199 4662 interface Serial0.1000 4662
ip nat inside source static udp 192.2.3.199 4672 interface Serial0.1000 4672
end
wr

You should not need to make any other changes.
 
Upvote 0 Downvote
Thanks a lot. its ok.
If i wanto to close this ports, could you tell me how?

Tahnks a lot.
 
Upvote 0 Downvote
Thanks by the answer, but to close i put " no" in the end like this :

ip nat inside source static tcp 192.2.3.199 4662 interface Serial0.1000 4662 no
ip nat inside source static udp 192.2.3.199 4672 interface Serial0.1000 4672 no

Its correct?

thanks.
 
Upvote 0 Downvote
Not quite, you need to do the following:

enable
conf t
no ip nat inside source static tcp 192.2.3.199 4662 interface Serial0.1000 4662
no ip nat inside source static udp 192.2.3.199 4672 interface Serial0.1000 4672
end
wr
 
Upvote 0 Downvote
I have to put the configuration, but tell me the same low id, maybe i put the ip adress of isp???

Coul help me? Thanks.

interface Ethernet0
description Ligacao a DMZ
ip address 62.48.185.177 255.255.255.248
no ip unreachables
no ip proxy-arp
no ip route-cache
half-duplex
no cdp enable
!
interface FastEthernet0
description Ligacao a Rede Local
ip address 192.2.3.10 255.255.255.0
no ip unreachables
no ip proxy-arp
ip nat inside
no ip route-cache
speed auto
no cdp enable
!
interface Serial0
description NNA-
no ip address
no ip unreachables
no ip proxy-arp
encapsulation frame-relay
no ip route-cache
no fair-queue
!
interface Serial0.1 point-to-point
bandwidth 224
ip address 62.48.186.42 255.255.255.252
ip access-group 111 in
no ip unreachables
no ip proxy-arp
ip nat outside
ip inspect wall out
no ip route-cache
traffic-shape rate 238000 238000 0 1000
no cdp enable
frame-relay interface-dlci 500 IETF
class SHAPE-WAN500
!
interface Serial0.1000 point-to-point
ip address 172.31.201.173 255.255.255.0
no ip route-cache
no cdp enable
frame-relay interface-dlci 1000
!
ip nat inside source list 69 interface Serial0.1 overload
ip nat inside source static tcp 192.2.3.199 4662 interface Serial0.1000 4662
ip nat inside source static udp 192.2.3.199 4672 interface Serial0.1000 4672
ip classless
ip route 0.0.0.0 0.0.0.0 62.48.186.41
ip route 172.31.250.0 255.255.255.128 172.31.201.1
no ip http server
!
!
map-class frame-relay SHAPE-WAN500
frame-relay traffic-rate 224000 230000
frame-relay adaptive-shaping becn
frame-relay mincir 164000
access-list 1 permit 192.2.3.199
access-list 1 permit 194.65.22.19
access-list 1 permit 194.65.147.166


its
 
Upvote 0 Downvote
Not sure what you mean by "low ID", don't know jack about Emule, sorry!
 
Upvote 0 Downvote
low id, its means your port xxxx is not reacheable.
Can help me?
 
Upvote 0 Downvote
Can you try one more thing:

conf t
int s0.1000
ip nat out
end

Let me know if this helps.
 
Upvote 0 Downvote
only this, or with the others commands " ip nat .....".

Thanks.
 
Upvote 0 Downvote
is not enough, its incrible i can not open.
What is the problem?

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
230
bdk76
bdk76
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
214
madwok
madwok
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
210
Jared R
Jared R
Hayden09
  • Locked
  • Question
Cisco Sg-300 Flapping?
Replies
0
Views
215
Hayden09
Hayden09
JMarine0811
  • Locked
  • Question
CISCO VG450 Factory reset
Replies
1
Views
271
whykap
whykap

Part and Inventory Search

Sponsor

Back
Top