Hey guys, I have the following:
============================================================
Problem: When I connect though the cable modem using a 2621 router, I can authenticate to my cisco vpn concentrator at work and then to my local homeoffice lan. However, I can't seem to ping anything on the network at the homeoffice even tho I do get an IP address. Do I have to specify ipsec to pass though the 2621 router? Here is my basic current config.
============================================================
ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Router uptime is 2 weeks, 1 day, 18 hours, 52 minutes
System returned to ROM by reload
System image file is "flash:c2600-io3-mz.122-10b.bin"
cisco 2621 (MPC860) processor (revision 0x200) with 53248K/12288K bytes of memory.
Router#sh config
Using 1479 out of 29688 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname Router
!
boot system flash c2600-io3-mz.122-10b.bin
enable secret 5 xyz
username root password 7 xyz
clock timezone EST -5
ip subnet-zero
no ip source-route
!
!
ip name-server 68.82.0.6
ip name-server 68.82.0.5
!
ip audit notify log
ip audit po max-events 100
!
!
!
interface FastEthernet0/0
description Outside int. to CableModem
ip address dhcp
ip nat outside
no keepalive
duplex auto
speed auto
no cdp enable
!
interface Serial0/0
no ip address
shutdown
!
interface FastEthernet0/1
description Inside interface NAT
ip address 172.16.10.1 255.255.248.0
ip nat inside
no keepalive
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
!
ip nat inside source list 1 interface FastEthernet0/0 overload
ip nat inside source static tcp 172.16.10.201 110 68.xx.x.xxx 110 extendable
ip nat inside source static tcp 172.16.10.25 23 68.xx.xxx.xxx 23 extendable
ip nat inside source static tcp 172.16.10.201 25 68.xx.xxx.xx 25 extendable
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0
ip route 0.0.0.0 0.0.0.0 68.xx.xx.xxx 254
no ip http server
ip pim bidir-enable
!
logging 172.16.10.4
access-list 1 permit 172.16.10.0 0.0.0.255
!
line con 0
line aux 0
line vty 0 3
password 7 xyz
login local
line vty 4
password 7 xyz
login local
!
end
============================================================
Any ideas?
============================================================
Problem: When I connect though the cable modem using a 2621 router, I can authenticate to my cisco vpn concentrator at work and then to my local homeoffice lan. However, I can't seem to ping anything on the network at the homeoffice even tho I do get an IP address. Do I have to specify ipsec to pass though the 2621 router? Here is my basic current config.
============================================================
ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Router uptime is 2 weeks, 1 day, 18 hours, 52 minutes
System returned to ROM by reload
System image file is "flash:c2600-io3-mz.122-10b.bin"
cisco 2621 (MPC860) processor (revision 0x200) with 53248K/12288K bytes of memory.
Router#sh config
Using 1479 out of 29688 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname Router
!
boot system flash c2600-io3-mz.122-10b.bin
enable secret 5 xyz
username root password 7 xyz
clock timezone EST -5
ip subnet-zero
no ip source-route
!
!
ip name-server 68.82.0.6
ip name-server 68.82.0.5
!
ip audit notify log
ip audit po max-events 100
!
!
!
interface FastEthernet0/0
description Outside int. to CableModem
ip address dhcp
ip nat outside
no keepalive
duplex auto
speed auto
no cdp enable
!
interface Serial0/0
no ip address
shutdown
!
interface FastEthernet0/1
description Inside interface NAT
ip address 172.16.10.1 255.255.248.0
ip nat inside
no keepalive
duplex auto
speed auto
!
interface Serial0/1
no ip address
shutdown
!
ip nat inside source list 1 interface FastEthernet0/0 overload
ip nat inside source static tcp 172.16.10.201 110 68.xx.x.xxx 110 extendable
ip nat inside source static tcp 172.16.10.25 23 68.xx.xxx.xxx 23 extendable
ip nat inside source static tcp 172.16.10.201 25 68.xx.xxx.xx 25 extendable
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0
ip route 0.0.0.0 0.0.0.0 68.xx.xx.xxx 254
no ip http server
ip pim bidir-enable
!
logging 172.16.10.4
access-list 1 permit 172.16.10.0 0.0.0.255
!
line con 0
line aux 0
line vty 0 3
password 7 xyz
login local
line vty 4
password 7 xyz
login local
!
end
============================================================
Any ideas?
