Cisco router wrt54gs2 v1 need help
bought router at wal mart. girlfreind thru box away but have disc. we installed disc on her new laptop and we left my desk top hard wired. i ve got dsl. so i thought thats all we had to do. do i have to install disc on my desk top for router to work??? it worked for alil while that but now its not. and when it did work it wasnt working well. cuss i was in trouble because her game. (W.O.W) wasnt working. now im no techno guy. so i really need some help with this.
Well it seems that your router is not configured properly.
Who is your internet service provider?
In case if you are uisng cable connection then follow this link and for DSL connection follow this link .
Similar Messages
-
Belkin Router Firewall Settings - Need Help Please
Hi
I'm new to Apple and love the machine, but I am having a problem with the firewall on my router. Let me explain the setup, then the problem...
I have the following in my home network:
1 hp desktop running Windows XP Media Center Edition, SP3 (Professional)
1 Belkin wired / wireless router
1 Canon Pixma MP500 Printer set for Sharing (Connected to hp desktop through USB)
1 iMac 20" running Leopard OS
The hp desktop and the iMac are both hardwired to the router. The router's security settings are as follows:
Will NOT broadcast the SSID
Mac Filtering is ENABLED (iMac MAC address is included in list of allowed connections)
WPA-PSK Security ENABLED
Wireless connectivity is ENABLED (For Wii, PSP, and Xbox 360)
Now the problem...
Everything on the network works beautifully, except the iMac. It will not allow iChat services, will not allow sharing of the desktop with other iChat members. It does, however, connect to the internet, but will not access the hp shared folders or printer. When I attempt to even add the printer, the printer does not even show up. I DO have Bonjour installed on the hp, but when I run Bonjour, I get a message that reads something like, "There are no Bonjour enabled printers available."
I know it is the firewall built into the Belkin router because I placed the iMac into the Demilitarized Zone, and everything started working as expected. For those of you not familiar with DMZ on the router, it basically allows you to pick an IP address to place outside of the firewall, so you can keep the router firewall enabled, but you can choose an IP address (i.e., a computer) that is not behind the firewall.
After placing the iMac in the DMZ, I went to add the shared printer on iMac. Not only did it show up immediately and give me the ability to add it and print to it, but I could also browse shared folders on my hp. I was also able to connect to a friend on iChat, and we were able to share each other's desktops.
Before placing the iMac in the DMZ, I opened a couple of ports (I don't recall which ones at the moment), and I was able to get iChat AV to work properly, but could not get the shared desktop feature to work. I believe if I had a comprehensive list of ports to enable, I could get this issue resolved, but I can't seem to find such a list anywhere on Apple's web site (or any other web site for that matter). Do any of you have such a list of ports??
I can provide more information if needed, but any help on this matter would be greatly appreciated.
Thanks a lot in advance for your help.Thank you, Larry.
I found a soft copy of the Belkin router's setup instructions on-line. I am going to enable the UPnP feature, as the manual indicates that it is necessary to have this feature enabled to do the things I want to do. The manual also indicates that the router ships with this feature disabled by default. I have not had a need to enable the feature when I had two PCs, so hopefully this will solve the problem.
In either case, thanks for directing me to the common ports. If enabling the UPnP feature does not work, at least I can see which ports I need to enable. -
WRT54G Wireless Router Problem. Need Help!
I'll start with the basics of my situation and if more details are needed, I will provide to the best of my ability.
I have a comcast cable internet connection. I have 6 computers in my house. Two of them are downstairs (which is where our modem is.) The other four computers are upstairs. All of these computers are Desktop computers with the exception of one laptop.
My laptop (which is Windows XP) can pick up a random wireless signal from the room it is in. I also found out a way to share the internet connection on the computer by going into the properties of my network connection and enabling internet sharing on it. This means if I connect a network cable from my laptop to another computer, I can leech the connection from my laptop and have internet access on the other computer. I also had a switch that I used to connect the other 3 computers upstairs by means of the laptop. The problem was, the laptop was using someone else's wireless connection in the area, and it wasn't strong enough to keep up a constant connection.
I decided, if I can leech someone else's wireless connection, why not have my own. So i recently bought WRT54G Wireless Router and set it up on one of the computers downstairs (because that's where the modem is). It works fine as far as connecting my laptop to the internet from upstairs. My laptop can access the internet through the connection I set up in the LELA program.
Here is the part I am confused about. Everything is plugged in correctly as far as the router is concerned because the laptop can access the internet. But when I connect an ethernet cable directly to one of my other computers (which are Windows Vista, but I didn' t have a problem with it previously when I was leeching someone else's connection), the connection drops on my laptop, and the other computer still can't access the internet. A notice pops up that says its trying to identify the network, but it gives an error that says there is something wrong with the DNS. As soon as I disconnect the ethernet cable connecting my laptop to one of the other computers, the connection is fine again on the laptop. It's only when I connect the computers together that the connection drops.
I just don't understand why it wouldn't work when I created my own network if it worked with another network with no problem. My whole point in getting a wireless router was to have a router within good range to keep up a constant connection on my other computers that aren't in range of the modem downstairs. I just don't know where else to look. I'm not sure if it can be fixed on LELA, manually through my wireless settings, or if it could be a problem with one of my computers' settings. I've tried many different things and I'm not sure what else to do so any help is most definately appreciated. I feel like I've tried everything. I know it's possible because I've one it before, I just need the help because I'm not much of a networking person and I don't know what I should start with to make this work.
Thank you to anyone who can help or even point me in the right direction.Access router setup page ...Click on the Wireless tab on the Setup page- Here Wireless Network mode should be mixed- Provide any non-linksys name .... Set wireless channel to 11- And wireless SSID broadcast should be Enabled and then click on "Save Settings" >>Now Click on the Sub tab under wireless > "Wireless Security" Change the Wireless security mode to WEP/WPA ...type in the key & click save settings .... >>>>Click on Advanced Wireless settings>>Change the Beacon Interval to 75 >>Change the Fragmentation Threshold to 2304 Change the RTS Threshold to 2304 >>Click on "Save Settings" Check the connection once again & see if it works or not ...
-
Cisco MDS Kernel Error -- Need Help
#Booting bootflash:/m9100-s2ek9-kickstart-mz.4.1.3a.bin ... #
#Automatic boot of image at addr 0x00000000 #
#Starting kernel... #
# Entered kgdb_console_init:1960 #
#Oops: Exception in kernel mode, sig: 4 [#1] #
#wdt_log_count = 0: Exception in kernel mode (sig 4) #
# wdt_log_non_blocking is not defined #
How can i solve that ???Not sure what actions have been done on this switch. downgrading/upgrading may help. Better to let Cisco TAC work on that if the problem has not been solved yet
-
Netgear router & iChat AV-Need Help!
Can anybody help me with my router settings so I don't get an error message with iChat AV? Texting is fine. Not sure what to change in the router or in Apples's sharing dialog box.
Stan...
Same router here. Video used to work fine, until January 15th. Then it went kerplooey. Video kept working for some, not for others. The 'Error -8' nightmare. But, lo and behold, the Apple auto-testers were all still A-OK.
I abandoned video chatting on iChat four months ago when frustration took over, because no available online solution would work. Ports (Forwarded or Triggered), the UPnP option, Firewalls on or off. Out of the box usage...? Yeah, right.
I still see that Error -8 is as popular as ever in this forum.
If you find a solution, please, PLEASE let me know.
Thanks.
It's a WGR614v5. I went to
http://www.ralphjohnsuk.dsl.pipex.com/ContactTesters.h
tml and it worked with the test site.
I can't get it to connect with my cousin's MacBook
Pro.
I'm not sure I have correct setting in Sharing prefs
or in the Netgear setup.
Thanks
B&W w/600Mhz G4 Mac OS X (10.4.9) 1G RAM - ATI Radeon 9200 PCI Graphics Card - Pioneer 111D SuperDrive -
I setup a Cisco Home Network and Need help Logging into It
Hello, I have four 2521 routers and three 2954 switches. I connected my ISPs modem from the ethernet port and plugged it into port 24 of one of my switches. I also configured the switch for VTY access and gave it a login password. I would like to log into the switch to configure it and telnet into all the other devices from a remote location. But I am unable to ping the public address assigned to me by my ISP. So I can't even telnet to the switch. Help
With help from elsewhere, I have learned how to change the colors and figured out a few other things. I have another question, though.
I want to put a Twitter widget and a comment box on my website. I have the widget code from Twitter, but it is HTML and javascript or something. Can I just put these codes into the modules of the flash template? If you look at the template, you should see that it has modules that have editable HTML text areas, but I don't know if it is limited to text or something, or if it will function correctly if I put other HTML codes in it such as script codes, etc in it.
Also, if that works, does anyone know where I can get a code to put the comment box in one of the modules? I don't mean a contact box, I mean a widget where people can leave comments and the comments display on the page, like on a myspace profile. Just something simple that allows a visitor to leave a name and a text-only comment. I would also like to be able to selectively delete comments in case of spammers, etc.
I found this, which might be what I am looking for, just a simple comment box, but this one is flash:
http://activeden.net/item/commenting-with-no-database/69183?sso?WT.ac=search_item&WT.seg_1 =search_item&WT.z_author=flashBrian
Message was edited by: ESJoeProductions -
Need help for access list problem
Cisco 2901 ISR
I need help for my configuration.... although it is working fine but it is not secured cause everybody can access the internet
I want to deny this IP range and permit only TMG server to have internet connection. My DHCP server is the 4500 switch.
Anybody can help?
DENY 10.25.0.1 – 10.25.0.255
10.25.1.1 – 10.25.1.255
Permit only 1 host for Internet
10.25.7.136 255.255.255.192 ------ TMG Server
Using access-list.
( Current configuration )
object-group network IP
description Block_IP
range 10.25.0.2 10.25.0.255
range 10.25.1.2 10.25.1.255
interface GigabitEthernet0/0
ip address 192.168.2.3 255.255.255.0
ip nat inside
ip virtual-reassembly in max-fragments 64 max-reassemblies 256
duplex auto
speed auto
interface GigabitEthernet0/1
description ### ADSL WAN Interface ###
no ip address
pppoe enable group global
pppoe-client dial-pool-number 1
interface ATM0/0/0
no ip address
no atm ilmi-keepalive
interface Dialer1
description ### ADSL WAN Dialer ###
ip address negotiated
ip mtu 1492
ip nat outside
no ip virtual-reassembly in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication pap callin
ppp pap sent-username xxxxxxx password 7 xxxxxxxxx
ip nat inside source list 101 interface Dialer1 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 10.25.0.0 255.255.0.0 192.168.2.1
access-list 101 permit ip 10.25.0.0 0.0.255.255 any
access-list 105 deny ip object-group IP any
From the 4500 Catalyst switch
( Current Configuration )
interface GigabitEthernet0/48
no switchport
ip address 192.168.2.1 255.255.255.0 interface GigabitEthernet2/42
ip route 0.0.0.0 0.0.0.0 192.168.2.3Hello,
Host will can't get internet connection
I remove this configuration...... access-list 101 permit ip 10.25.0.0 0.0.255.255 any
and change the configuration .... ip access-list extended 101
5 permit ip host 10.25.7.136 any
In this case I will allow only host 10.25.7.136 but it isn't work.
No internet connection from the TMG Server. -
Need help to set up file and print sharing
i just bought my router and i needed help setting up file and print sharing i am using windows xp on both of the computers one is a desktop and the other one is a laptop
Here
Enabling File and Printer Sharing
"Sometimes your knight in shining armor is just a retard in tin foil.."-ARCHANGEL_06 -
Need help configuring Cisco/Linksys wireless router to extend wi-fi signal to living room
My U-verse wireless gateway is in the back of our house. We live in an old 1920's home with solid wood walls. For our macbooks, we get a pretty decent signal, but my wife's iPad 2 get's poor wi-fi speeds. I bought a Cisco/Linksys WRT160N wireless N broadband router. I have a wired connection in my living room (going to a 4 port switch) then connected to my DVR. I tried hooking up the new router but ended up getting no signal on the iPad. In fact, it caused other issues. I ended up disconnecting it and re-booting my gateway. All came back fine. This wireless router replaces a similar unit that went out in after a power failure, so I know this can be done, but I forget exactly how I confiured the old one. I would like it to "extend" my signal to the living room, but I am also willing to create a new network (different SSID). Do I need to turn of DHCP? Are there any web sites that can assist me in configuring the router? I wish I didn't have to deal with this. The signal from the RG is great when you are in the back room (20+ down). But my wife gets about 3 down on her iPad in the living room. Thanks in advance.
Hi ,
I was doing some research on how this can be done. It does not appear there is an option in the Cisco router to set it up as an access point, but there are several options you can do to extend your network.
The first thing you can do is just set it up as a router behind router setup, and you will just have two separate networks. Make sure the DHCP pool does not conflict with the U-verse's gateway of 192.168.1.x.
The second thing you can do is connect the Ethernet cable to one of the LAN ports on your Cisco router instead of using the internet port. This should make it work like a smart switch.
With both setups, you want to probably change the SSID, network key, and wireless security settings to the same thing for wireless roaming abilities. That way, anyone that configures their wireless connection will be connected to both networks. Just make sure the wireless channels are not the same, and I would suggest having them at least 5 apart.
Hope this helps.
-ATTU-verseCare -
hi all, my cisco router linksys E2000 stop working need to up date Mac OS 10.5.8 later or 10.5.8 or later or 10.6.1 or later where do i find this up date im new on mac computer please help
I just visited the Linksys e2000 page, I think you need 10.6. You can buy it here:
http://store.apple.com/us/product/MC573Z/A/mac-os-x-106-snow-leopard -
I need helping configuring RDP access to my local server from a remote location on my Cisco ASA 5505 Firewall.
I have attempted to configure rdp access but it does not seem to be working for me Could I please ask someone to help me modify my current configuration to allow this? Please do step by step as I could use all the help I could get.
I need to allow the following IP addresses to have RDP access to my server:
66.237.238.193-66.237.238.222
69.195.249.177-69.195.249.190
69.65.80.240-69.65.80.249
My external WAN server info is - 99.89.69.333
The internal IP address of my server is - 192.168.6.2
The other server shows up as 99.89.69.334 but is working fine.
I already added one server for Static route and RDP but when I try to put in same commands it doesnt allow me to for this new one. Please take a look at my configuration file and give me the commands i need in order to put this through. Also please tell me if there are any bad/conflicting entries.
THE FOLLOWING IS MY CONFIGURATION FILE
Also I have modified IP information so that its not the ACTUAL ip info for my server/network etc... lol for security reasons of course
Also the bolded lines are the modifications I made but that arent working.
ASA Version 7.2(4)
hostname ciscoasa
domain-name default.domain.invalid
enable password DowJbZ7jrm5Nkm5B encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface Vlan1
nameif inside
security-level 100
ip address 192.168.6.254 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address 99.89.69.233 255.255.255.248
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
ftp mode passive
dns server-group DefaultDNS
domain-name default.domain.invalid
object-group network EMRMC
network-object 10.1.2.0 255.255.255.0
network-object 192.168.10.0 255.255.255.0
network-object 192.168.11.0 255.255.255.0
network-object 172.16.0.0 255.255.0.0
network-object 192.168.9.0 255.255.255.0
object-group service RDP tcp
description RDP
port-object eq 3389
object-group service GMED tcp
description GMED
port-object eq 3390
object-group service MarsAccess tcp
description MarsAccess
port-object range pcanywhere-data 5632
object-group service MarsFTP tcp
description MarsFTP
port-object range ftp-data ftp
object-group service MarsSupportAppls tcp
description MarsSupportAppls
port-object eq 1972
object-group service MarsUpdatePort tcp
description MarsUpdatePort
port-object eq 7835
object-group service NM1503 tcp
description NM1503
port-object eq 1503
object-group service NM1720 tcp
description NM1720
port-object eq h323
object-group service NM1731 tcp
description NM1731
port-object eq 1731
object-group service NM389 tcp
description NM389
port-object eq ldap
object-group service NM522 tcp
description NM522
port-object eq 522
object-group service SSL tcp
description SSL
port-object eq https
object-group service rdp tcp
port-object eq 3389
access-list outside_1_cryptomap extended permit ip 192.168.6.0 255.255.255.0 object-group EMRMC
access-list inside_nat0_outbound extended permit ip 192.168.6.0 255.255.255.0 192.168.0.0 255.255.0.0
access-list inside_nat0_outbound extended permit ip 192.168.6.0 255.255.255.0 object-group EMRMC
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 host 99.89.69.334 eq pcanywhere-data
access-list outside_access_in extended permit udp 69.16.158.128 255.255.255.128 host 99.89.69.334 eq pcanywhere-status
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 host 99.89.69.334 object-group RDP
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 eq ftp
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 eq ldap
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 eq h323
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 eq telnet
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 eq www
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 host 99.89.69.334 object-group SSL
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 object-group NM522
access-list outside_access_in extended permit tcp 69.16.158.128 255.255.255.128 192.168.6.0 255.255.255.0 object-group NM1731
access-list outside_access_in extended permit tcp 173.197.144.48 255.255.255.248 host 99.89.69.334 object-group RDP
access-list outside_access_in extended permit tcp any interface outside eq 3389
access-list outside_access_in extended permit tcp host 66.237.238.194 host 99.89.69.333
access-list outside_access_in extended permit tcp host 66.237.238.194 host 99.89.69.333 object-group rdp
access-list outside_access_in extended permit tcp any host 99.89.69.333 object-group rdp
access-list out_in extended permit tcp any host 192.168.6.2 eq 3389
pager lines 24
logging enable
logging asdm informational
mtu inside 1500
mtu outside 1500
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-524.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list inside_nat0_outbound
nat (inside) 1 0.0.0.0 0.0.0.0
static (inside,outside) tcp 99.89.69.334 3389 192.168.6.1 3389 netmask 255.255.255.255
static (inside,outside) tcp interface 3389 192.168.6.2 3389 netmask 255.255.255.255
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 99.89.69.338 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
http server enable
http 192.168.6.0 255.255.255.0 inside
http 0.0.0.0 0.0.0.0 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto map outside_map 1 match address outside_1_cryptomap
crypto map outside_map 1 set peer 68.156.148.5
crypto map outside_map 1 set transform-set ESP-3DES-MD5
crypto map outside_map interface outside
crypto isakmp enable outside
crypto isakmp policy 10
authentication pre-share
encryption 3des
hash md5
group 1
lifetime 86400
crypto isakmp policy 30
authentication pre-share
encryption 3des
hash md5
group 2
lifetime 86400
telnet timeout 5
ssh timeout 5
console timeout 0
dhcpd auto_config outside
tunnel-group 68.156.148.5 type ipsec-l2l
tunnel-group 68.156.148.5 ipsec-attributes
pre-shared-key *
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
service-policy global_policy global
prompt hostname context
Cryptochecksum:f47dfb2cf91833f0366ff572eafefb1d
: end
ciscoasa(config-network)#Unclear what did not work. In your original post you include said some commands were added but don't work:
static (inside,outside) tcp interface 3389 192.168.6.2 3389 netmask 255.255.255.255
and later you state you add another command that gets an error:
static (inside,outside) tcp 99.89.69.333 3389 192.168.6.2 3389 netmask 255.255.255.255
You also stated that 99.89.69.333 (actually 99.89.69.233, guessing from the rest of your config and other posts) is your WAN IP address.
The first static statement matches Cisco's documentation, which states that a static statement must use the 'interface' directive when you are trying to do static PAT utilizing the IP address of the interface. Since 99.89.69.333 is the assigned IP address of your WAN interface, that may explain why the second statement fails.
Any reason why you are using static PAT (including the port number 3389) instead of just skipping that directive? Static PAT usually makes sense when you need to change the TCP port number. In your example, you are not changing the TCP port 3389. -
Do you need a cisco router at remote sites when using VRF BGP?
Hello.....
If you could refer to the attached document and read the following... I need to know if a CISCO router is required for each of the sites. OR does the ISP (Provider) provide the only required Router in the private cloud?
We want to replace the Cisco 891 with a PepLink but I don't know if we can do that. Can anyone jump in and help me understand?
When we hear about VRF, its almost synonymous to MPLS VPN. Virtual Routing and Forwarding is commonly used by Service Providers to provide services within an MPLS cloud with multiple customers. The most interesting feature of this is that, VRF allows creation of multiple routing tables within a single router. This means that overlapping use of IP addresses from different customers is possible. Some enterprises use VRF to seggrate their services like VOIP, wireless, geographical location and other varieties.Whether you can replace the 891 device with another device boils down to a single question: Do you need to run BGP with the Service Provider in order to use their service. If you need to run a routing protocol with your service provider, your service is likely a L3VPN (IP VPN) solution ( i.e. you inject your site's routes into the providers L3VPN session, they use MP-BGP+VRF for segmentation within their network).
If, however, they just drop you a L2 connection and provide L2 emulated services ( e.g. L2VPN or VPLS ) across their network, then your device can be whatever you want it to be.
From your device's perspective, it is not VRF aware. That is, it does not know about how the service provider segments your service from another customers. In the L3VPN case, your device is routing-protocol aware. In the L2VPN case, your device is not routing protocol aware and does not need to form adjacency with the service provider's equipment.
HTH.
Rate if helpful. -
Help with Remote access VPN on Cisco router 3925 via Dialer Interface
Hi Everybody,
I need help for my work now, I appreciate if someone can fix my problem.I have a Cisco router 3925 and access Internet via PPPoE link. I want config VPN Remote Access and using software Cisco VPN client. But it doesn't work.. Here my config router :
HUNRE#show running-config
Building configuration...
Current configuration : 5515 bytes
! No configuration change since last restart
version 15.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname HUNRE
boot-start-marker
boot-end-marker
enable secret 5 $1$vEFw$rLfvLglzUgddCVwXDx03K.
enable password cisco
aaa new-model
aaa session-id common
crypto pki trustpoint TP-self-signed-1050416327
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1050416327
revocation-check none
rsakeypair TP-self-signed-1050416327
crypto pki certificate chain TP-self-signed-1050416327
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31303530 34313633 3237301E 170D3134 30393235 31313534
31395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 30353034
31363332 3730819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100CC79 74FCFABE 81183B70 5A9F4A53 EB609754 7D5F8587 9150B76E 3207A86E
5B65F9E9 6CDAC21A 6D69221D 1FF61632 14763308 43B2A1CC 8EE5ABAC EF07530E
3F0D35FE F08C955B 60B52B92 F8F54D53 DD6DD623 01F83493 02F9C49A F0C3483D
3B48A008 8D96700E 88924BFE DE00201B DE5965DE 32898CAD 9012AB55 76B6F39B
2D470203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
551D2304 18301680 14C3418C BC35F3D9 B26B2475 2BB5F826 060525AB B3301D06
03551D0E 04160414 C3418CBC 35F3D9B2 6B24752B B5F82606 0525ABB3 300D0609
2A864886 F70D0101 05050003 81810070 AC7C26C6 4606A551 1A3FD6C5 2A5AEAE8
35DAC86E F8885E26 51F6EEAE 7565D3AA D532C8F3 55F6656F D103F38C 8FBDE7F1
83E77143 76469040 7FEA41E8 14963DB3 F7F28EA0 C5F2F42C B186B75C AAB04900
15F9CB38 A16964F5 4E7B4378 35041AA8 AE8EC181 D58D6A62 676E286A 7B9D80E6
35A0B9FB FB76E976 3D2A19D7 006078
quit
ip name-server 210.245.1.253
ip name-server 210.245.1.254
ip cef
no ipv6 cef
multilink bundle-name authenticated
vpdn enable
vpdn-group 1
vpdn-group 2
license udi pid C3900-SPE100/K9 sn FOC1823839B
license boot module c3900 technology-package securityk9
username cisco privilege 15 secret 5 $1$aAjB$D3iLyPFTE7O1bHPnKSJcH0
username kdhong privilege 15 secret 5 $1$nfyX$FO1BPTabCUaE6uKQwpLT.1
redundancy
track 1 ip sla 1 reachability
track 2 ip sla 2 reachability
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
crypto isakmp client configuration group VPN-HUNRE
key hunre
dns 8.8.8.8
domain hunre
pool IP-VPN
acl 199
max-users 100
crypto ipsec transform-set encrypt-method-1 esp-3des esp-sha-hmac
mode tunnel
crypto dynamic-map DYNMAP 1
set transform-set encrypt-method-1
crypto map VPN client configuration address respond
crypto map VPN 65535 ipsec-isakmp dynamic DYNMAP
interface Embedded-Service-Engine0/0
no ip address
shutdown
interface GigabitEthernet0/0
ip address 192.168.1.1 255.255.255.0
ip mtu 1492
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
duplex auto
speed auto
interface GigabitEthernet0/1
description FPT
no ip address
ip tcp adjust-mss 1412
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
interface GigabitEthernet0/2
description Connect to CMC
no ip address
ip mtu 1442
ip nat outside
ip virtual-reassembly in
ip tcp adjust-mss 1412
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 2
no cdp enable
interface Dialer1
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname [USERNAME]
ppp chap password 0 [PASSWORD]
ppp pap sent-username [USERNAME] password 0 [PASSWORD]
ppp ipcp dns request
crypto map VPN
interface Dialer2
description Logical ADSL Interface 2
ip address negotiated
ip mtu 1442
ip nat outside
ip virtual-reassembly in
encapsulation ppp
ip tcp adjust-mss 1344
dialer pool 2
dialer-group 2
ppp authentication chap pap callin
ppp chap hostname [USERNAME]
ppp chap password 0 [PASSWORD]
ppp pap sent-username [USERNAME] password 0 [PASSWORD]
ppp ipcp address accept
no cdp enable
ip local pool IP-VPN 10.252.252.2 10.252.252.245
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip nat inside source list 10 interface Dialer1 overload
ip nat inside source list 11 interface Dialer2 overload
ip nat inside source static 10.159.217.10 interface Dialer1
ip nat inside source list 199 interface Dialer1 overload
ip nat inside source static tcp 10.159.217.10 80 210.245.54.49 80 extendable
ip nat inside source static tcp 10.159.217.10 3389 210.245.54.49 3389 extendable
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 10.159.217.0 255.255.255.0 192.168.1.8
ip sla auto discovery
ip sla responder
dialer-list 1 protocol ip permit
dialer-list 2 protocol ip permit
access-list 10 permit any
access-list 11 permit any
access-list 101 permit icmp any any
access-list 199 permit ip any any
control-plane
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
password cisco
transport input all
line vty 5 15
password cisco
transport input all
scheduler allocate 20000 1000
ntp master
end
However, I cannot ping interfac Dialer 1. I using Cisco vpn client software ver 5.0.07.0290.
Hopeful for your answers !
ThanksHi David Castro,
Thanks for your answer,
I configed following your guide, but it have not worked yet. I saw that I cannot ping IP gateway Internet . I using ADSL Internet and config PPPoE and my router receive IP from ISP. Here show ip int brief :
GigabitEthernet0/0 192.168.1.1 YES NVRAM up up
GigabitEthernet0/1 unassigned YES NVRAM up up
GigabitEthernet0/2 unassigned YES NVRAM up up
Dialer1 210.245.54.49 YES IPCP up up
Dialer2 101.99.7.73 YES IPCP up up
NVI0 192.168.1.1 YES unset up up
Virtual-Access1 unassigned YES unset up up
Virtual-Access2 unassigned YES unset up up
Virtual-Access3 unassigned YES unset up up
But I cannot ping Interface Dialer 1, so may be VPN is does not worked. Do you have some ideal ?
Thanks very much ! -
Problem with routing - Need help
Hello,
I need a little direction with what I think is a routing problem. Any help will be appreciated. My setup is as follows:
Cable Modem
27.177.21.9
WAN - Gi0/0
27.177.21.10
Cisco 2901
LAN - Gi0/1
192.168.1.250
Client
192.168.1.10
The Problem
Router can ping LAN interface
Router cannot ping WAN interface -X
Router can ping Cable Modem
Client
Client can ping LAN interface
Client can ping WAN interface
Client cannot ping Cable Modem -X
Here is my routing table:
Gateway of last resort is 27.177.21.9 to network 0.0.0.0 (this is my cable modem)
S* 0.0.0.0/0 [1/0] via 27.177.21.9
is directly connected, GigabitEthernet0/0
27.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C 27.177.21.8/30 is directly connected, GigabitEthernet0/0
L 27.177.21.10/32 is directly connected, GigabitEthernet0/0
192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks
C 192.168.1.0/24 is directly connected, GigabitEthernet0/1
L 192.168.1.250/32 is directly connected, GigabitEthernet0/1
Here is a portion of my configuration:
interface GigabitEthernet0/0
description Cable Internet$FW_OUTSIDE$$ETH-WAN$
ip address 27.177.21.10 255.255.255.252
zone-member security out-zone
duplex auto
speed auto
interface GigabitEthernet0/1
description hbc_staff$FW_INSIDE$$ETH-LAN$
ip address 192.168.1.250 255.255.255.0
zone-member security in-zone
duplex auto
speed auto
no mop enabled
ip default-gateway 27.177.21.9
ip forward-protocol nd
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 600 life 86400 requests 10000
ip route 0.0.0.0 0.0.0.0 27.177.21.9
ip route 192.168.1.0 255.255.255.0 27.177.21.9
Thanks in advanceHello Jon,
I continue to try different configurations to get my router to connect without success. I am now trying NAT and this is where we stand now. Any help will be much appreciated.
The problem
Router now pings everything by ip address or name
Client PC from inside the LAN cannot ping modem or Internet
Relevant parts of configuration:
ip domain name mydomain.org
ip name-server 24.247.15.53
ip name-server 66.189.0.100
interface GigabitEthernet0/0
description Internet$FW_OUTSIDE$ETH-WAN$
ip address 27.177.21.10 255.255.255.252
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
interface GigabitEthernet0/1
description hbc_staff$FW_INSIDE$$ETH-LAN$
ip address 192.168.1.250 255.255.255.0
ip nat inside
ip virtual-reassembly in
zone-member security in-zone
duplex auto
speed auto
no mop enabled
ip nat pool HBC-I 27.177.21.10 27.177.21.10 prefix-length 24
ip nat inside source list 7 pool HBC-I overload
ip route 0.0.0.0 0.0.0.0 27.177.21.9
ip route 192.168.1.0 255.255.255.0 GigabitEthernet0/1
access-list 7 permit 192.168.1.0 0.0.0.255
#show ip route
Gateway of last resort is 27.177.21.9 to network 0.0.0.0
S* 0.0.0.0/0 [1/0] via 27.177.21.9
27.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C 27.177.21.8/30 is directly connected, GigabitEthernet0/0
L 27.177.21.10/32 is directly connected, GigabitEthernet0/0
192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks
C 192.168.1.0/24 is directly connected, GigabitEthernet0/1
L 192.168.1.250/32 is directly connected, GigabitEthernet0/1
When pinging the modem from a client inside the LAN this is what I get from NAT translations and statistics:
#sho ip nat translations ver
Pro Inside global Inside local Outside local Outside global
icmp 27.177.21.10:40709 192.168.1.8:40709 27.177.21.9:40709 27.177.21.9:40709
create 00:00:05, use 00:00:00 timeout:60000, left 00:00:59, Map-Id(In): 1,
flags:
extended, use_count: 0, entry-id: 4, lc_entries: 0
#sho ip nat statistics
Total active translations: 2 (0 static, 2 dynamic; 2 extended)
Peak translations: 2, occurred 00:00:04 ago
Outside interfaces:
GigabitEthernet0/0
Inside interfaces:
GigabitEthernet0/1
Hits: 104 Misses: 0
CEF Translated packets: 104, CEF Punted packets: 0
Expired translations: 7
Dynamic mappings:
-- Inside Source
[Id: 1] access-list 7 pool HBC-I refcount 2
pool HBC-I: netmask 255.255.255.0
start 27.177.21.10 end 27.177.21.10
type generic, total addresses 1, allocated 1 (100%), misses 0
Total doors: 0
Appl doors: 0
Normal doors: 0
Queued Packets: 0 -
Need help with setting up VPN on a Cisco EPC3925 Modem
Hi everyone,
I need help setting VPN on Cisco EPC3925 modem (I tried using Help and I have read the entire section in the manual but the manual is not the same as the window I get in my settings. For example in the manual they say I can choose "all" under Remote Secure Gateway but there is no option like that).
When I go to the VPN section this is what I get:
1. Does this mean that I can connect to my modem via VPN from some other location? I would like to be able to connect to this modem when I am not at home from some remote location from my computer in order to be able to use NAS-Storage.
2. If the answer on the first question is yes, what settings I need to enter for the:
Local Secure Group
Remote Secure Group
Remote Secure Gateway
My ISP is using dynamic IP but I have DDNS.
My router local IP is 192.168.0.1
Subnet: 255.255.255.0
Starting IP Address: 192.168.0.10
Here is how the advanced settings looks like:
Thanks in advance for your help!My problem similar too this. I create a tunnel between two epc3925 but impossible to send data between them.
The status is connected. What can I do? UPC tell me this router has only vpn client so i will doesn't work.
Maybe you are looking for
-
Hello, I have took a copy of the SendEmail.java program, compiled it successfully in my local computer. When sending a email, I fail. Here is the source : // File Name SendEmail.java import java.util.*; import javax.mail.*; import javax.mail.internet
-
PDF XFA form/internet browser/JAVA application/Drag and Drop
Hi guys, I need to be able to open a PDF XFA form (a PDF document where I have some input controls and javascripts for validation) inside a JPanel. If this is not doable am thinking if i can open this pdf form in a web browser by launching it from my
-
Poster frames are failing for Mpeg1 assets - thumbnails show up as all white.
I have Mpeg1 encoded files that are created by compressor, they are mpeg1 320x240 @ 1,800kbps with 192kbps mpeg1-L2 audio When Final Cut Server analyses them, the poster frame job simply fails without any decent info on what went wrong. The thumbnail
-
FF4 crashes after a minute or so after update 10.6.7
Updated to 10.6.7 today, everytime i open FF4 it works ok but after about 30-50 seconds it stops responding and i have to force-quit the app. Fonts are checked and ok, installed a beta Flash-version... nothing works...
-
Camera problems, with warranty can Apple replace my unit
I have an iPhone 5 with some camera problems, have two or more black dots, looks like plastic particules and in some cases the camera freezes with half screen in purple, i am from Argentina and here there is no iphone service, how i can do a warranty