Hello everyone. I have an issue with some 1841 series routers. We have a client who needs to join 4 locations with his central office. He has purchased 6 of the 1841 routers (2 of them for the central office, 4 for the remote sites). All sites will be connected via PTP circuits, as they all have csu cards installed. My issue is this. From a workstation in remote office A, I can ping its router, and can ping the other end of the circuit. I can't ping anything on the other end inside the home office though. I have all of my static routes correct, but it almost seems like the remote office router is not broadcasting its routes. If I manually insert the routes into the windows workstation, works fine (can ping anything in the central office). Is there something that I am missing here with routing and the csu/t-1 cards? The central office's routers have their default route going out their FastE0/0, while the branch routers have their default routes going through the Serial0/0/0. Thank you in advance.....
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Routing through T-1 Interfaces w/ 1841
- Thread starter apepayne
- Start date
- Thread starter
- #2
Why are there 2 1841's at Central? Post a sh run of one of the sites and a sh run from central, and well as sh ip route from both sites (A and Central).
Can we assume that the sites are all like this...
Central---site A
Central---site B
Central---site C
Central---site D
Can we also assume that one router is for 2 sites at Central, and the second is for the other 2 sites? Are there separate VWIC/WIC cards for each ptp connection? Are these over frame relay by chance?
Burt
Can we assume that the sites are all like this...
Central---site A
Central---site B
Central---site C
Central---site D
Can we also assume that one router is for 2 sites at Central, and the second is for the other 2 sites? Are there separate VWIC/WIC cards for each ptp connection? Are these over frame relay by chance?
Burt
- Thread starter
- #4
I can post the SH tomorrow AM, but yes, each router at the main office has 2 WIC's in them. These are over digital PTP connects. I tried them in the lab using a t-1 crossover (know the cable is good) with the same results.... The line transfer is good, I just think it has something to do with the routing....
- Thread starter
- #5
attached are 2 routers, one from the main office (CFHS) and one from a remote office (Patter)..... Includes running config, sh ip int and sh int......
***Main Office***
Current configuration : 2227 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname CFHS2
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$Bn6A$cObij7Zz3f4ONpVyzeE.s0
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$67Js$5gnVrmO.0iJs/dnZ11ohZ1
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 192.168.1.3 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 3.3.3.1 255.255.255.0
ip nat inside
!
interface Serial0/1/0
ip address 4.4.4.1 255.255.255.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 permanent
ip route 172.16.12.0 255.255.252.0 Serial0/0/0 permanent
ip route 172.16.16.0 255.255.252.0 Serial0/1/0 permanent
ip route 172.16.16.0 255.255.252.0 4.4.4.2
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
--------------------------
CFHS2#sho ip int
FastEthernet0/0 is up, line protocol is up
Internet address is 192.168.1.3/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
FastEthernet0/1 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/0/0 is down, line protocol is down
Internet address is 3.3.3.1/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain inside
BGP Policy Mapping is disabled
Serial0/1/0 is up, line protocol is up
Internet address is 4.4.4.1/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
NVI0 is up, line protocol is up
Internet protocol processing disabled
-----------------------------
CFHS2#sho int
FastEthernet0/0 is up, line protocol is up
Hardware is Gt96k FE, address is 001d.70f8.f514 (bia 001d.70f8.f514)
Description: $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
Internet address is 192.168.1.3/24
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:01:43, output 00:00:02, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
117 packets input, 13683 bytes
Received 34 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
479 packets output, 42775 bytes, 0 underruns
0 output errors, 0 collisions, 3 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
FastEthernet0/1 is administratively down, line protocol is down
Hardware is Gt96k FE, address is 001d.70f8.f515 (bia 001d.70f8.f515)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto Speed, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Serial0/0/0 is down, line protocol is down
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 3.3.3.1/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:16:49, output 00:16:50, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
197 packets input, 14446 bytes, 0 no buffer
Received 156 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
156 packets output, 11315 bytes, 0 underruns
0 output errors, 0 collisions, 37 interface resets
0 output buffer failures, 0 output buffers swapped out
2 carrier transitions
DCD=down DSR=up DTR=up RTS=up CTS=down
Serial0/1/0 is up, line protocol is up
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 4.4.4.1/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:07, output 00:00:01, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
221 packets input, 17287 bytes, 0 no buffer
Received 118 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
182 packets output, 14187 bytes, 0 underruns
0 output errors, 0 collisions, 4 interface resets
0 output buffer failures, 0 output buffers swapped out
1 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
NVI0 is up, line protocol is up
Hardware is NVI
MTU 1514 bytes, BW 10000000 Kbit, DLY 0 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation UNKNOWN, loopback not set
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 output buffer failures, 0 output buffers swapped out
***** Remote Office ****
Building configuration...
Current configuration : 2071 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Patterson
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$b9J0$kRya2lF8wXe15fnToZwP5.
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$7tUK$r29K/7NdsLMU8.jpEozqZ/
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 172.16.16.1 255.255.252.0
ip nat inside
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 4.4.4.2 255.255.255.0
ip nat outside
!
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0 permanent
ip route 192.168.1.0 255.255.255.0 4.4.4.1
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
-------------------------------
Patterson#sho ip int
FastEthernet0/0 is up, line protocol is up
Internet address is 172.16.16.1/22
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain inside
BGP Policy Mapping is disabled
FastEthernet0/1 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/0/0 is up, line protocol is up
Internet address is 4.4.4.2/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain outside
BGP Policy Mapping is disabled
NVI0 is up, line protocol is up
Internet protocol processing disabled
------------------------------------
Patterson#sho int
FastEthernet0/0 is up, line protocol is up
Hardware is Gt96k FE, address is 001d.70f8.f6ac (bia 001d.70f8.f6ac)
Description: $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
Internet address is 172.16.16.1/22
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:01:34, output 00:00:09, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
939 packets input, 72789 bytes
Received 19 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
930 packets output, 115863 bytes, 0 underruns
0 output errors, 0 collisions, 3 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
FastEthernet0/1 is administratively down, line protocol is down
Hardware is Gt96k FE, address is 001d.70f8.f6ad (bia 001d.70f8.f6ad)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto Speed, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Serial0/0/0 is up, line protocol is up
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 4.4.4.2/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:06, output 00:00:01, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
353 packets input, 24974 bytes, 0 no buffer
Received 314 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
447 packets output, 33636 bytes, 0 underruns
0 output errors, 0 collisions, 4 interface resets
0 output buffer failures, 0 output buffers swapped out
5 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
NVI0 is up, line protocol is up
Hardware is NVI
MTU 1514 bytes, BW 10000000 Kbit, DLY 0 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation UNKNOWN, loopback not set
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 output buffer failures, 0 output buffers swapped out
***Main Office***
Current configuration : 2227 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname CFHS2
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$Bn6A$cObij7Zz3f4ONpVyzeE.s0
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$67Js$5gnVrmO.0iJs/dnZ11ohZ1
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 192.168.1.3 255.255.255.0
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 3.3.3.1 255.255.255.0
ip nat inside
!
interface Serial0/1/0
ip address 4.4.4.1 255.255.255.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 permanent
ip route 172.16.12.0 255.255.252.0 Serial0/0/0 permanent
ip route 172.16.16.0 255.255.252.0 Serial0/1/0 permanent
ip route 172.16.16.0 255.255.252.0 4.4.4.2
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
--------------------------
CFHS2#sho ip int
FastEthernet0/0 is up, line protocol is up
Internet address is 192.168.1.3/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
FastEthernet0/1 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/0/0 is down, line protocol is down
Internet address is 3.3.3.1/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain inside
BGP Policy Mapping is disabled
Serial0/1/0 is up, line protocol is up
Internet address is 4.4.4.1/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
NVI0 is up, line protocol is up
Internet protocol processing disabled
-----------------------------
CFHS2#sho int
FastEthernet0/0 is up, line protocol is up
Hardware is Gt96k FE, address is 001d.70f8.f514 (bia 001d.70f8.f514)
Description: $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
Internet address is 192.168.1.3/24
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:01:43, output 00:00:02, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
117 packets input, 13683 bytes
Received 34 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
479 packets output, 42775 bytes, 0 underruns
0 output errors, 0 collisions, 3 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
FastEthernet0/1 is administratively down, line protocol is down
Hardware is Gt96k FE, address is 001d.70f8.f515 (bia 001d.70f8.f515)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto Speed, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Serial0/0/0 is down, line protocol is down
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 3.3.3.1/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:16:49, output 00:16:50, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
197 packets input, 14446 bytes, 0 no buffer
Received 156 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
156 packets output, 11315 bytes, 0 underruns
0 output errors, 0 collisions, 37 interface resets
0 output buffer failures, 0 output buffers swapped out
2 carrier transitions
DCD=down DSR=up DTR=up RTS=up CTS=down
Serial0/1/0 is up, line protocol is up
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 4.4.4.1/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:07, output 00:00:01, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
221 packets input, 17287 bytes, 0 no buffer
Received 118 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
182 packets output, 14187 bytes, 0 underruns
0 output errors, 0 collisions, 4 interface resets
0 output buffer failures, 0 output buffers swapped out
1 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
NVI0 is up, line protocol is up
Hardware is NVI
MTU 1514 bytes, BW 10000000 Kbit, DLY 0 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation UNKNOWN, loopback not set
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 output buffer failures, 0 output buffers swapped out
***** Remote Office ****
Building configuration...
Current configuration : 2071 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Patterson
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$b9J0$kRya2lF8wXe15fnToZwP5.
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$7tUK$r29K/7NdsLMU8.jpEozqZ/
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 172.16.16.1 255.255.252.0
ip nat inside
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 4.4.4.2 255.255.255.0
ip nat outside
!
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0 permanent
ip route 192.168.1.0 255.255.255.0 4.4.4.1
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
-------------------------------
Patterson#sho ip int
FastEthernet0/0 is up, line protocol is up
Internet address is 172.16.16.1/22
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain inside
BGP Policy Mapping is disabled
FastEthernet0/1 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/0/0 is up, line protocol is up
Internet address is 4.4.4.2/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is enabled, interface in domain outside
BGP Policy Mapping is disabled
NVI0 is up, line protocol is up
Internet protocol processing disabled
------------------------------------
Patterson#sho int
FastEthernet0/0 is up, line protocol is up
Hardware is Gt96k FE, address is 001d.70f8.f6ac (bia 001d.70f8.f6ac)
Description: $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
Internet address is 172.16.16.1/22
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Full-duplex, 100Mb/s, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:01:34, output 00:00:09, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
939 packets input, 72789 bytes
Received 19 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
930 packets output, 115863 bytes, 0 underruns
0 output errors, 0 collisions, 3 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
FastEthernet0/1 is administratively down, line protocol is down
Hardware is Gt96k FE, address is 001d.70f8.f6ad (bia 001d.70f8.f6ad)
MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
Auto-duplex, Auto Speed, 100BaseTX/FX
ARP type: ARPA, ARP Timeout 04:00:00
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 watchdog
0 input packets with dribble condition detected
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Serial0/0/0 is up, line protocol is up
Hardware is GT96K with integrated T1 CSU/DSU
Internet address is 4.4.4.2/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation HDLC, loopback not set
Keepalive set (10 sec)
Last input 00:00:06, output 00:00:01, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/1/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
353 packets input, 24974 bytes, 0 no buffer
Received 314 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
447 packets output, 33636 bytes, 0 underruns
0 output errors, 0 collisions, 4 interface resets
0 output buffer failures, 0 output buffers swapped out
5 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up
NVI0 is up, line protocol is up
Hardware is NVI
MTU 1514 bytes, BW 10000000 Kbit, DLY 0 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation UNKNOWN, loopback not set
Last input never, output never, output hang never
Last clearing of "show interface" counters never
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
0 packets output, 0 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 output buffer failures, 0 output buffers swapped out
On the Central, what interface goes out to the internet? Why is there a public IP address on an ip nat inside interface? Can we assume that all sites are connecting to the internet through Central? If so, then the outgoing interface at Central needs ip nat outside, and all other interfaces, Central AND Remote, ALL need ip nat inside. You also need a NAT acl and a NAT statement in Central. The acl permits all subnets, one line at a time, ip to any, and the NAT statement need to point to the outgoing interface.
Now, if the sites individually go out to the internet, then...
To get out to the internet, you need a nat acl and a nat statement....for remote, it would be...
access-list 101 permit ip 172.16.16.0 0.0.3.255 any
ip nat inside source list 101 int s0/0/0 over
That will get you out from Remote to the internet---all other routes look good.
Same concept for Central, but we need to know the answers to the two questions.
Internet-routera-routerb-routerc-routerd
This topology needs ip nat outside on the outgoing interface of routera ONLY, and ALL other interfaces need ip nat inside. Routera needs an acl permitting subnets for routera inside, routerb out and in, routerc out and in, and routerd out and in. Routera also needs a nat statement pointing the acl to the outgoing interface.
For a hub and spoke topology, all sites individually need their own NAT statements, acls, and ip nat out on the outgoing interfaces and ip nat in on the LAN interfaces.
Please be a bit more specific on the topology, answer the first two questions, and please post a sh ip route for a remote site and central, not sh ip interface.
Burt
Now, if the sites individually go out to the internet, then...
To get out to the internet, you need a nat acl and a nat statement....for remote, it would be...
access-list 101 permit ip 172.16.16.0 0.0.3.255 any
ip nat inside source list 101 int s0/0/0 over
That will get you out from Remote to the internet---all other routes look good.
Same concept for Central, but we need to know the answers to the two questions.
Internet-routera-routerb-routerc-routerd
This topology needs ip nat outside on the outgoing interface of routera ONLY, and ALL other interfaces need ip nat inside. Routera needs an acl permitting subnets for routera inside, routerb out and in, routerc out and in, and routerd out and in. Routera also needs a nat statement pointing the acl to the outgoing interface.
For a hub and spoke topology, all sites individually need their own NAT statements, acls, and ip nat out on the outgoing interfaces and ip nat in on the LAN interfaces.
Please be a bit more specific on the topology, answer the first two questions, and please post a sh ip route for a remote site and central, not sh ip interface.
Burt
- Thread starter
- #7
topology for internet access would be (from the remote site)..
PC-Remote Router-Main Office Router-Pix-Internet.
Each Main office router has 2 WICS (one for each remote site).
The central office's default interface would be FE0/0, and yes, all remotes site would go through the main office for their default gateway.....
PC-Remote Router-Main Office Router-Pix-Internet.
Each Main office router has 2 WICS (one for each remote site).
The central office's default interface would be FE0/0, and yes, all remotes site would go through the main office for their default gateway.....
Both main office 1841's should have the IP of the PIX as the default route.
All remote offices should have the corresponding main router serial interface as the default route.
For the rest of the routing, I would just enable EIGRP and be done with it.
MCSE CCNA CCDA
All remote offices should have the corresponding main router serial interface as the default route.
For the rest of the routing, I would just enable EIGRP and be done with it.
MCSE CCNA CCDA
- Thread starter
- #10
- Thread starter
- #11
- Thread starter
- #13
K, I am still stumped on getting out to the web....
Here is my config for the 1841. Once again, all my subs are talking now, except the 172.16.x subs can not go out to the web...
CFHS2#sho run
Building configuration...
Current configuration : 2625 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname CFHS2
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$Bn6A$cObij7Zz3f4ONpVyzeE.s0
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$67Js$5gnVrmO.0iJs/dnZ11ohZ1
username gerente privilege 15 secret 5 $1$OH55$5gsZsPwD4C1JLYPzdg4ut0
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 192.168.1.91 255.255.255.0
ip access-group 100 in
ip access-group 100 out
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
ip access-group 100 in
ip access-group 100 out
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 3.3.3.1 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
interface Serial0/1/0
ip address 4.4.4.1 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
router eigrp 100
network 172.16.16.0 0.0.3.255
auto-summary
!
ip default-gateway 192.168.1.254
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.1.254
ip route 172.16.12.0 255.255.252.0 Serial0/0/0 permanent
ip route 172.16.16.0 255.255.252.0 Serial0/1/0 permanent
ip route 172.16.16.0 255.255.252.0 4.4.4.2
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
access-list 100 permit ip any any
access-list 101 permit ip 192.168.1.0 0.0.0.255 any
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
Here is my config for the 1841. Once again, all my subs are talking now, except the 172.16.x subs can not go out to the web...
CFHS2#sho run
Building configuration...
Current configuration : 2625 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname CFHS2
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$Bn6A$cObij7Zz3f4ONpVyzeE.s0
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username kki privilege 15 secret 5 $1$67Js$5gnVrmO.0iJs/dnZ11ohZ1
username gerente privilege 15 secret 5 $1$OH55$5gsZsPwD4C1JLYPzdg4ut0
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 192.168.1.91 255.255.255.0
ip access-group 100 in
ip access-group 100 out
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
ip access-group 100 in
ip access-group 100 out
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 3.3.3.1 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
interface Serial0/1/0
ip address 4.4.4.1 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
router eigrp 100
network 172.16.16.0 0.0.3.255
auto-summary
!
ip default-gateway 192.168.1.254
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.1.254
ip route 172.16.12.0 255.255.252.0 Serial0/0/0 permanent
ip route 172.16.16.0 255.255.252.0 Serial0/1/0 permanent
ip route 172.16.16.0 255.255.252.0 4.4.4.2
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
access-list 100 permit ip any any
access-list 101 permit ip 192.168.1.0 0.0.0.255 any
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
privilege level 15
login local
transport input telnet
!
end
You need NAT to get out to the internet, plain and simple.
Is the config you just posted for one of the Central office routers?
Can the 192.168.1.0/24 subnet get out to the internet?
You need ip nat inside on ALL router interfaces---all 6 routers, all interfaces---ip nat inside. Then you need the PIX to do the NAT---the nat acl MUST allow ALL subnets! I would take out the eigrp config, also. This is all assuming that there are private ip addresses on the serial interfaces connecting the T1 circuits. Is this the case???
Burt
Is the config you just posted for one of the Central office routers?
Can the 192.168.1.0/24 subnet get out to the internet?
You need ip nat inside on ALL router interfaces---all 6 routers, all interfaces---ip nat inside. Then you need the PIX to do the NAT---the nat acl MUST allow ALL subnets! I would take out the eigrp config, also. This is all assuming that there are private ip addresses on the serial interfaces connecting the T1 circuits. Is this the case???
Burt
- Thread starter
- #15
Just to be clear, these routers are not the gateway for the network. There is currently an Allied 415s that is doing the nat just fine. Anyone on the 192.168.1 sub can get out fine, its everyone on the 172.x subs. They can only ping to the LAN port of the Allied.
- Thread starter
- #18
Yes, the 172.16.x routers have a default gateway of the other end of the PTP line, and they can ping all the way to the LAN interface of the allied (which means the Allied has a return route statement going back, otherwise, there would be no traffic between the 2)....
here is the config for the 172.x routers..
Current configuration : 2312 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Patterson
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$b9J0$kRya2lF8wXe15fnToZwP5.
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username test privilege 15 secret 5 $1$7tUK$r29K/7NdsLMU8.jpEozqZ/
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 172.16.16.1 255.255.252.0
ip access-group 100 in
ip access-group 100 out
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 4.4.4.2 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
ip default-gateway 4.4.4.1
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0 permanent
ip route 192.168.1.0 255.255.255.0 4.4.4.1
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 101 interface Serial0/0/0 overload
!
access-list 100 permit ip any any
access-list 101 permit ip 172.16.16.0 0.0.3.255 any
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
here is the config for the 172.x routers..
Current configuration : 2312 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Patterson
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$b9J0$kRya2lF8wXe15fnToZwP5.
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
!
!
ip domain name CFHS.DOM
!
username test privilege 15 secret 5 $1$7tUK$r29K/7NdsLMU8.jpEozqZ/
!
!
!
interface FastEthernet0/0
description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$$ETH-LAN$
ip address 172.16.16.1 255.255.252.0
ip access-group 100 in
ip access-group 100 out
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface Serial0/0/0
ip address 4.4.4.2 255.255.255.0
ip access-group 100 in
ip access-group 100 out
!
ip default-gateway 4.4.4.1
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/0/0 permanent
ip route 192.168.1.0 255.255.255.0 4.4.4.1
!
ip http server
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 101 interface Serial0/0/0 overload
!
access-list 100 permit ip any any
access-list 101 permit ip 172.16.16.0 0.0.3.255 any
!
control-plane
!
!
line con 0
login local
line aux 0
line vty 0 4
- Thread starter
- #20
- Status
Similar threads
- Locked
- Question