Host routes
Hello,
I am trying to figure out how to add a persistent route to the routing table on one of my Solaris servers.
On my Windows boxes I can set a persistent route to 10.10.1.25 via 10.10.1.1 by using the following command at the command line:
route add 10.10..x. mask 255.255.0.0 10.10.1.1 -p
Is there a way to do this in Solaris?
Thanks,
Mike
Hi
you can use route add on a solaris box to add the new routes in without a reboot.
If you want to make it permanent add the command into a run control script under /etc/rc3.d which will ensure that it brings the info up whenever it is rebooted aswell
Dave
Similar Messages
-
Phone unable to get Host Routing Tables
Hey,
I've been on with Rogers tech support for sometime today.
My originating issue was wireless wouldn't work and everytime i tried to scan for networks the bb would freeze and auto restart. I did a backup and wiped the device and wireless was working yet again.
But now i'm unable to get data services at all, apparently with rogers you're supposed to get EDGE and not edge. You're also supposed to have 8 entries in the Host Routing Table and i have none.
Rogers has wiped the handheld, reloaded all applications to barebones and still the issue persists.
Whenever i try to do a full restore it errors out at reloading WLAN Profiles and options.
Before all this started and it was wiped trying to view WIFI Options an error popped up "Uncaught Exception: padded byte out of range" now i remembered that from memory so the Uncaught part maybe wrong.
Really don't want to drop another $500 on a phone literally 2 years after i spent $400 for this thing.
Thanks
IanI should also add that i tried my dads sim card in my phone and same issue.
Radio Data Activation: Yes
Signal Level: -86dBm
Radio Access: EDGE
Network: Rogers Wireless
IP Address: 10.172.171.13
ICMP Ping Echo: Yes
BlackBerry Registration: No
Connected to BlackBerry: No
BlackBerry PIN-PIN: No
Server Name: GBISXNAC01S08
Email Address: <email address #1>
Connected to <email address #1>: No
Server Name: GBISXNAC01S08
Email address: <email address #2>
Connected to <email address #2>: No
PIN: 24a5d7dd
MSISDN: <my phone number>
Device Type: BlackBerry 8900
Application Version: v4.6.1.94
Platform Version: 4.2.0.69
Thanks
Ian -
Hi all. I have a blackberry curve 8310 with 4.5 operating system. I cannot access the at&t network. It searches for the network and then says no service. My sim card is fine (works in my other phone) and I have a data plan. I have service books but no host routing tables. When I try to register the hrt's is says message is queued and will be sent once data coverage is available. And again when I put my sim into another phone, everything is fine and I have a full signal. I called at&t technical support and I might as well have been speaking german. They had no suggestions whatsoever. Any way I can get the hrt's on my phone ? thanks
Hi and welcome to the forums!
A couple of places for you to visit: Blackberry 101 Tips & Tricks
Go to options-advanced options-host routing table (don't select anything here) -menu-register now
Happy to have you here!
IrwinII
Please remember to "Accept as Solution" the post which solved your thread. If I or someone else have helped you, please tell us you "Like" what we had to say at the bottom right of the post. -
HOST ROUTING TABLE IS EMPTY please HELP
HELLO THERE PLEASE HELP ME , MY HOST ROUTING TABLE IS EMPTY
WHAT DO I DO NOW?Hi and Welcome to the Community!!
With a strong carrier network signal (not WiFi), I suggest the following steps, in order, even if they seem redundant to what you have already tried (steps 1 and 2 each should result in a message coming to your BB...please wait for that before proceeding to the next step):
1) Register HRT
KB00510 How to register a BlackBerry smartphone with the wireless network
Please wait for one "registration" message to arrive to your Messages app
2) Resend Service Books
KB02830 Send the service books for the BlackBerry Internet Service
Please wait for "Activation" Messages, one per already configured email account, to arrive in your Messages. If you have no already configured email accounts, please wait 1 hour.
3) Batt Pull Reboot
With power ON, remove the back cover and pull out the battery. Wait about a minute then replace the battery and cover. Power up and wait patiently through the long reboot -- ~5 minutes. See if things have returned to good operation. Like all computing devices, BB's suffer from memory leaks and such...with a hard reboot being the best cure.
Hopefully that will get things going again for you! If not, then you should contact your mobile service provider for formal support...it is, after all, your carrier network that must populate these items to your BB.
Good luck!
Occam's Razor nearly always applies when troubleshooting technology issues!
If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
Join our BBM Channels
BSCF General Channel
PIN: C0001B7B4 Display/Scan Bar Code
Knowledge Base Updates
PIN: C0005A9AA Display/Scan Bar Code -
No entries in my Host Routing table
I got the phone from Cincinnati Bell in USA and registered the phone with Etisalat Nigeria, it worked for about 7 months and stopped working and when i checked the Host routing Table i found no entries. My PIN:29BA62F7 and my IMEI No:358807040132108. Please help.
On the handset, go to:
For OS5 and 4.x
Options - Advanced Options - Host Routing Table
and click Register now, and escape back to the home page.
For OS6 and higher
in options, device , advanced, host routing table, click on menu and choose register now.
Wait 2 minutes and see if registration to network happens.
Resend your service books from your carrier BIS site:
From your handheld device: http://www.blackberry.com/btsc/KB15402
Go to the Personal Email Set Up icon and log in. Then under Help!, select Service Books, then select Send service Books.
From your desktop PC: http://www.blackberry.com/btsc/KB02830
North American Carriers - scroll down to select your carrier
WorldWide Carriers - Find your carrier on the list
3. With the BlackBerry device powered ON, remove the battery a few seconds and then reinsert the battery to reboot. This reboot, even if you have already done this, is often needed to install the service books.
Click here to Backup the data on your BlackBerry Device! It's important, and FREE!
Click "Accept as Solution" if your problem is solved. To give thanks, click thumbs up
Click to search the Knowledge Base at BTSC and click to Read The Fabulous Manuals
BESAdmin's, please make a signature with your BES environment info.
SIM Free BlackBerry Unlocking FAQ
Follow me on Twitter @knottyrope
Want to thank me? Buy my KnottyRope App here
BES 12 and BES 5.0.4 with Exchange 2010 and SQL 2012 Hyper V -
after security wipin my girlfriends old blackberry i can not set up my email cause its now BES
host routing table has no entries!
how can i change it back to being BIS instead of BES?
also i have blackberry data plan on my contractHi and Welcome to the Community!!
After any wipes, updates, etc., I always suggest the following steps, in order, even if they seem redundant to what you have already tried (steps 1 and 2 each should result in a message coming to your BB...please wait for that before proceeding to the next step...if any step does not succeed exactly as written, then stop and fall to the bottom, contacting your mobile service provider for formal support):
1) Register HRT
KB00510 How to register a BlackBerry smartphone with the wireless network
Please wait for one "registration" message to arrive to your Messages app
2) Delete and Resend Service Books
KB05000Delete the service book for the BlackBerry Internet Service email account from the BlackBerry smartphone
If you have no CMIME entry, then skip the deletion
KB02830 Send the service books for the BlackBerry Internet Service
Please wait for "Activation" Messages, one per already configured email account, to arrive in your Messages. If you have no already configured email accounts, please wait 1 hour.
3) Batt Pull Reboot
Anytime random strange behavior or sluggishness creeps in, the first thing to do is a battery pop reboot. With power ON, remove the back cover and pull out the battery. Wait about a minute then replace the battery and cover. Power up and wait patiently through the long reboot -- ~5 minutes. See if things have returned to good operation. Like all computing devices, BB's suffer from memory leaks and such...with a hard reboot being the best cure.
Hopefully that will get things going again for you! If not, then you should try deleting and re-adding your BIS configuration for the affected email accounts (likely using the carrier BIS website from a PC, or trying, from the BB Browser, www.blackberry.com/integrate). Otherwise, you should contact your mobile service provider for formal support.
BTW -- Enterprise always shows on all BBs inside of the Email Configuration Wizard. When a proper BIS-level data plan is provisioned, Internet/Personal are added. But, Enterprise is ALWAYS there, regardless of if the user is activated on any BES or not.
Good luck!
Occam's Razor nearly always applies when troubleshooting technology issues!
If anyone has been helpful to you, please show your appreciation by clicking the button inside of their post. Please click here and read, along with the threads to which it links, for helpful information to guide you as you proceed. I always recommend that you treat your BlackBerry like any other computing device, including using a regular backup schedule...click here for an article with instructions.
Join our BBM Channels
BSCF General Channel
PIN: C0001B7B4 Display/Scan Bar Code
Knowledge Base Updates
PIN: C0005A9AA Display/Scan Bar Code -
Nexus 7010 - redistribute host routes in to OSPF
In my Nexus 7010 infrastructure, I have a requirement to redistribute host routes in to OSPF so that the other connected sites receive the host routes through OSPF.
These hosts are part of the connected network (192.168.100.0/24) on Nexus, I dont want this network to be advertised in to OSPF but I want the hosts inside this subnet (192.168.100.11 and 192.168.100.12) to be advertised.
I tried to create a prefix list with these two hosts and added them to a route-map and then using the "redistribute direct" command called this route-map in to OSPF, but this is not working.
However, if I add the entire subnet (the connected network) in to this route-map, it shows up in OSPF.
Is there a way I could have only the hosts to be part of the OSPF database?Hello, There is no need for VDC or VRF I think. are we missing a trick here. I also just tested for my own sanity. (Or am I completely under-thinking this)
N7K-1 has vlan 24 and the host route will be to 172.25.24.20
N7K-1 Config:
conf t
ip route 172.25.24.20/32 Vlan24
ip prefix-list TEST seq 5 permit 172.25.24.20/32
route-map STATIC_TO_OSPF permit 10
match ip address prefix-list TEST
router ospf 1
bfd
router-id 192.168.101.1
redistribute static route-map STATIC_TO_OSPF
here is what I see on its neighbour N7K2:
DC1-N7K2# show ip route 172.25.24.20
IP Route Table for VRF "default"
'*' denotes best ucast next-hop
'**' denotes best mcast next-hop
'[x/y]' denotes [preference/metric]
'%<string>' in via output denotes VRF <string>
172.25.24.20/32, ubest/mbest: 1/0
*via 192.168.102.5, Eth8/1, [110/20], 00:00:07, ospf-1, type-2
DC1-N7K2#
Type-5 AS External Link States
Link ID ADV Router Age Seq# Checksum Tag
172.25.24.20 192.168.101.1 479 0x80000002 0x0eed 0
So in essence point the host routes statically to the directly connected interface.
hth.
Bilal -
Inter-VPN routing with export map for host routes
Hi,
I am trying to export host routes from a connected network from one VRF to multiple other VRFs. This is to allow the leaking specific host routes for management purposes. However, I suspect that the /32 host route(s) actually need to be present in the management VRF so the RTs are added accordingly, rather than just specified in the match clause of the MGMT VRF export map.
Ideally here, I only want to export 10.111.111.254/32 from the connected network 10.111.111.0/24 in the MGMT VRF. The only way around this I can see it to move 10.111.111.0/24 behind another device, and add specific host route(s) within the MGMT VRF for the 10.111.111.X/32 host routes (which are redistributed into the MGMT VRF), using the additional device as the next-hop.
ip vrf MGMT
rd 1:1
export map MGMT-EXPORT-MAP
route-target export 1:1
route-target import 1:1
route-target import 1:1001
ip vrf CUST-B
rd 1:2
export map CUSTOMERS-EXPORT-MAP
route-target export 1:2
route-target import 1:2
route-target import 1:1000
interface FastEthernet0/0.100
encapsulation dot1Q 100
ip vrf forwarding MGMT
ip address 10.111.111.1 255.255.255.0
interface FastEthernet0/0.200
encapsulation dot1Q 101
ip vrf forwarding CUST-B
ip address 10.96.2.1 255.255.254.0
router bgp 65000
bgp router-id 1.1.1.1
no bgp default ipv4-unicast
bgp log-neighbor-changes
address-family ipv4 vrf CUST-B
redistribute connected
no synchronization
exit-address-family
address-family ipv4 vrf MGMT
redistribute connected
no synchronization
exit-address-family
ip prefix-list CUSTOMERS seq 5 permit 10.96.2.0/23
ip prefix-list ONPREMISE seq 5 permit 10.111.111.0/24
ip prefix-list ONPREMISE seq 10 permit 10.111.111.254/32
route-map CUSTOMERS-EXPORT-MAP permit 10
match ip address prefix-list CUSTOMERS
set extcommunity rt 1:1001 additive
route-map MGMT-EXPORT-MAP permit 10
match ip address prefix-list ONPREMISE
set extcommunity rt 1:1000 additive
Cheers,
MattHi Matt
Yes the X/32 routes needs to be present in the VRF Routing-Table and if they are to be learnt statically then the MP-iBGP config for that particular VRF address-family has to redistribute static routes as well.
Regards
Varma -
WRT1900AC integration with Linksys Hosted Router Management?
I recently purchased a new WRT1900AC. When I first started it up, I was prompted to set things up with a preconfigured Router Name and network Names, did so, and then quickly realized that I had made a mistake since everything on the wired portion of my network was already configured and working with the router that had just died and was being sent to router hell for its' sins. I got everything working the way I wanted it, including working wireless access via the Android support app that lets me administer the router from my Samsung Galaxy IV smart phone. The one limitation I face now is that the Linksys hosted web site that took my setup information initially, no longer knows about my router, so I can't log in to it from the network at my local community college where I'm working out at the fitness center and connected to the internet via their wireless network, or when I'm using Verizon's 4g network in my car. I have some security concerns about giving the Linksys hosting site access to my router that were raised initially when I tried logging into their site via my 64bit Internet Explorer 11 with Norton Internet Security running which told me that the site certificate was being hosted somewhere other than where I was trying to log in, or was an invalid certificate and blocked me.
I relly don't know how to most quickly and securely resolve this problem since I do not want to mess with my current router configuration, I just need to get the smart phone app which works fine within my local wireless network to be able to contact the router over the internet without having to set up my own VPN service or something like that so that I can come in to the network first, and then access the router. I believe that everything is set up except that the MAC address information registered on the administration site is associated with the default network names, and my attempt to set up the software there after I had congigured the network the way I wanted it got blocked by my own network security during the attempt. At any rate, I'm stuck, and do not know quite how to best go about correcting my difficulties without starting over from scratch by resetting the router, which is a real **bleep**.
I'm also not completely sure that the out of the box software and procedure for using it has not been compromised or open to some kind of compromise that would open up my network to unauthorized snooping or worse via the standard site. if you understand the issues, please advise. should I just be content with using my cell phone within range of my own router to administer things? If I'm not, since the administration site knows me but does not seem to know my router unless I'm in my own network, how do I go about reconnecting to the linksys smart wifi administration site to my router?All you need to do is to create a Linksys Smart Wi-Fi account and associate the router so you may access it wherever you are.
Here's a link that will help: http://kb.linksys.com/Linksys/GetArticle.aspx?docid=12e0e8fa76f340739d0cb72037819ca9_Creating__activ...
With regards to the browser, I sometimes have a challenge with IE11 so I use Chrome which works all the time. Hope that helps! -
Received response from host (router IP address) with invalid source port 32784
I replaced my old wireless router with a Cisco Linksys E4200, running firmware version 1.0.02 build 13 May 24, 2011. About once a minute the router sends an unsolicited DNS message to the IPV4 multicast address 01:00:5e:00:00:fb with a destination IP address of 224.0.0.251. The unsolicited message is a DNS response with source port 32784, transaction ID 0, flags 0x8400 (standard query response, no error), questions 0, answer RRs 2, authority RRs 0 and additional RRs 1. The two answers both relate to the router itself: one has Name Cisco18738.local, type A (host address), class 1 (IN), cache flush true, time to live 1 minute, data length 4, and the address of the router. The other is the reverse of the same address. The additional record is for Cisco18738.local, type NSEC, class IN, cache flush true, time to live 1 minute, data length 5, next domain name Cisco18738.local, RR type A (host address).
When my desktop computer receives these messages it logs an error, for example: "Jun 23 07:39:22 sauterws02 avahi-daemon[1067]: Received response from host 10.146.9.1 with invalid source port 32784 on interface 'eth0.0'" The 10.146.9.1 is the router's IP address. I also see these messages on the wireless link from my laptop.
I suppose the E4200 is generating these DNS messages in a misguided attempt to make sure there is no old information about its name. Is there a way to turn them off? If not, is there a way to report this to Cisco as a bug?
Solved!
Go to Solution.gv wrote:
1. To contact Linksys, call support.
2. From the internet draft: "Multicast DNS implementations MUST
silently ignore any Multicast DNS Responses they receive where the
source UDP port is not 5353." Your avahi-daemon does not comply with this draft.
Thank you for the reference. For the sake of others who may read this thread, the current draft of multicast DNS is at http://www.ietf.org/id/draft-cheshire-dnsext-multicastdns-14.txt.
Here is the whole paragraph from which you quoted, from section 6 (Responding): "The source UDP port in all Multicast DNS Responses MUST be 5353 (the well-known port assigned to mDNS). Multicast DNS implementations MUST silently ignore any Multicast DNS Responses they receive where the source UDP port is not 5353."
Thus, it appears that there are two errors here: the Cisco E4200 is not using 5353 as the source port, and the logger is not silently ignoring it.
The message appears to be an announcement rather than an actual response to a query. In section 8.3 (Announcing) I found this paragraph: "A Multicast DNS Responder MUST NOT send announcements in the absence of information that its network connectivity may have changed in some relevant way. In particular, a Multicast DNS Responder MUST NOT send regular periodic announcements as a matter of course." Thus, it appears that there are three errors here. -
Bad host routes making websites inaccessible!?
After months without any issues, I suddenly started having problems accessing some specific web based resources. The connectivity issue is isolated to my MAC on my home wireless network. I have a windows based system on the same wireless network with no issues. I have a wired windows based system on the same network with no issues. I did a lot of research and saw that many people have seen these types of issues, but none of the fixes posted help me. So I went to check the routing table on my MAC and found what I believe are my issues:
Results for a problem sites:
Keiths-MacBook-Pro:~ keith$ route -n get x.x.x.x
route to: x.x.x.x
destination: default
mask: 0.0.0.104
interface: en1
The mask is not DEFAULT or 0.0.0.0?
route to: X.X.104.130
destination: X.X.104.130
NO MASK
interface: en1
The destination is the same as the target host, as opposed to DEFAULT? Also, there is NO MASK entry?
Results for a good site:
route to: 72.21.215.232
destination: default
mask: default
gateway: 10.0.0.1
interface: en1
This is what it should look like.
I'm using a standard, simple home LAN configuration, meaning access to remote resources on all devices on my LAN point to the default gateway. There are no host specific routes on any of my devices. I also tested connectivity on a celluar wireless service and I'm seeing similar results.
Can anyone help with this issue? Thanks.Please read this whole message before doing anything.
This procedure is a diagnostic test. It’s unlikely to solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
The purpose of the test is to determine whether the problem is caused by third-party software that loads automatically at startup or login, by a peripheral device, or by corruption of certain system caches.
Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards. Boot in safe mode and log in to the account with the problem. Note: If FileVault is enabled on some models, or if a firmware password is set, or if the boot volume is a software RAID, you can’t do this. Ask for further instructions.
Safe mode is much slower to boot and run than normal, and some things won’t work at all, including sound output and Wi-Fi on certain iMacs. The next normal boot may also be somewhat slow.
The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin. Test while in safe mode. Same problem? After testing, reboot as usual (i.e., not in safe mode) and verify that you still have the problem. Post the results of the test. -
Host Routing table empty, will not register with network and BIS
I wiped out my BlackBerry 9900 and thereafter, it gave me an error code 507. I reloaded the OS through suggested software from the Blackberry Desktop device software and it was sussuccful. But since then, I could not surf the internet with my phone despite having BIS suubscription with my network provider (Glo Nigeria). I checked the Host Routine table and found it empty. I registered it several times and even removed the battery and replaced it, I also did network diagnostics test and didnt get any form of change. I called my service provider and they checked and confirmed that my SIM and subscription status is ok, I inserted my SIM card into another BlackBerry device and it worked well. I have tried different suggestions on the forum but non of them solved the problem. Please kindly assist me.
Solved!
Go to Solution.I've seen this happen when people upgrade to 7.1.
Go back to OS 7.0
1. First locate your carrier and the OS file you wish to use.
http://na.blackberry.com/eng/support/downloads/download_sites.jsp
2. It doesn't hurt to do a manual backup of your device first, using Desktop Manager > Backup. Close Desktop Manager upon completion and unplug BlackBerry. You can get BlackBerry Desktop Software here http://us.blackberry.com/apps-software/desktop/
3. Download the OS file from step 1 to the PC then install it to the PC by running (double clicking) the file you downloaded.
4. Go to c:\program files\common files\research in motion\apploader and delete the file named "vendor.xml." Also check the following locations for vendor.xml files and delete any instances of the file:
On Windows Vista/7 navigate to C:\Users\YOUR_USER\AppData\Roaming\Research In Motion\BlackBerry\Loader XML (Where "YOUR_USER" is your username)
On Windows XP navigate to C:\Documents and Settings\YOUR_USER\Application Data\Research In Motion\BlackBerry\Loader XML (Where "YOUR_USER" is your username)
5. If you're simply updating the OS to a newer version skip this step. If doing a clean OS reload use BBSAK from BBSAK.org and wipe the device (after doing a complete backup) then after you get the error 507 (no OS installed) then proceed to next step.
6. Plug in BlackBerry and double click on "Loader.exe." It's located in c:\program files\common files\research in motion\apploader
1. Please thank those who help you by clicking the "Like" button at the bottom of the post that helped you.
2. If your issue has been solved, please resolve it by marking the post "Solution?" which solved it for you! -
i have my cisco E1000 as a router at the moment, just bought airport express for an extender.
is it possible to do it? thx guysNo, not unless you connect the two with an Ethernet cable and configure the Express as a bridge.
Consider replacing the Cisco router with the Express. The Express conveys advantages over the E1000. -
Problem with Cisco 861W router and outgoing VPN
We have a Cisco 861W router that is blocking an outgoing PPTP on the internal access point only. The outgoing VPN works when the traffic is through a wired connection or the connection is on another access point. We fail to make a connection only when connection to the 861W's internal Access Point.
Here is the Access Point Configuration:
Current configuration : 2100 bytes
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname obap
enable secret 5 $1$.1RF$go1D7WITXUn3s8TUaw3tC.
no aaa new-model
dot11 syslog
dot11 ssid OLIVER
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 0 XXXXXXXXXXX
username XXXXXX privilege 15 secret 5 $1$Wc0K$OzcQDDQfjHP6La31eXMoG/
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm tkip
ssid OLIVER
antenna gain 0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
description the embedded AP GigabitEthernet 0 is an internal interface connecti
ng AP with the host router
no ip address
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address 192.168.0.2 255.255.255.0
no ip route-cache
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
bridge 1 route ip
banner login ^CC
% Password change notice.
Default username/password setup on AP is cisco/cisco with priv¾ilege level 15.
It is strongly suggested that you create a new username with privilege level
15 using the following command for console security.
username <myuser> privilege 15 secret 0 <mypassword>
no username cisco
Replace <myuser> and <mypassword> with the username and password you want to
use. After you change your username/password you can turn off this message
by configuring "no banner login" and "no banner exec" in privileged mode.
^C
line con 0
privilege level 15
login local
no activation-character
line vty 0 4
login local
cns dhcp
end
obap#
Here is the Router's Configuration:
Current configuration : 5908 bytes
! No configuration change since last restart
version 15.0
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
hostname obrouter
boot-start-marker
boot-end-marker
logging buffered 51200
logging console critical
enable secret 5 $1$i9XE$DjxFVAEC9nC4/r6EQKCd6/
no aaa new-model
memory-size iomem 10
clock timezone PCTime -5
clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
crypto pki trustpoint TP-self-signed-1856757619
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1856757619
revocation-check none
rsakeypair TP-self-signed-1856757619
crypto pki certificate chain TP-self-signed-1856757619
certificate self-signed 01
3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31383536 37353736 3139301E 170D3036 30313032 31323030
34345A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 38353637
35373631 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100B1A4 FB786547 3D582260 03DB768D 116BDE9A 309FBA04 B53F77B0 BFE32344
7C3439B3 97192B36 760A9411 1D5C7549 8D86F532 ABA44F53 0D08B7F4 A9A747D5
071330C3 65BF25A8 927F3596 29BB5A80 90C8D169 22268476 3B8DDE1E FDB7170D
B4820D03 5580A849 A92C7E76 9AC10867 505A2FEE 64360741 7F9DBDBF 3D79982C
F81D0203 010001A3 75307330 0F060355 1D130101 FF040530 030101FF 30200603
551D1104 19301782 156F6272 6F757465 722E6272 75736868 6F672E63 6F6D301F
0603551D 23041830 168014D8 5BC2FFB2 967A4C7B 11B44122 5C8D31F7 749B9230
1D060355 1D0E0416 0414D85B C2FFB296 7A4C7B11 B441225C 8D31F774 9B92300D
06092A86 4886F70D 01010405 00038181 005901F1 C239074B B8213567 CF7B65BF
DAFE4557 69B2A3B1 5F2593C7 A54B9598 23FD5E7A 563AA6E0 AFB25801 FA0061E8
F9545372 DB600B3A BE68AE65 1EDA593E 6A0C96B8 5A4136AF 393F9AAC 651E1C36
B8B7C6C0 47936C24 D2ECE9A5 9446EE32 FC7461FA AD8CF1CE A7FBF341 07E9C3C6
505AB88D 0E7FCAFC 5792298A E5E4D1FE CC
quit
no ip source-route
ip dhcp excluded-address 192.168.0.1 192.168.0.99
ip dhcp pool ccp-pool1
import all
network 192.168.0.0 255.255.255.0
dns-server 216.49.160.10 216.49.160.66
default-router 192.168.0.1
ip cef
no ip bootp server
ip domain name brushhog.com
ip name-server 216.49.160.10
ip name-server 216.49.160.66
license udi pid CISCO861W-GN-A-K9 sn FTX155281FY
username tech38 privilege 15 secret 5 $1$d/4Z$n/23EsXbzfHF5XfJ8Nv.y0
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
interface FastEthernet0
interface FastEthernet1
interface FastEthernet2
interface FastEthernet3
interface FastEthernet4
description $ES_WAN$$FW_OUTSIDE$
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
duplex auto
speed auto
pppoe-client dial-pool-number 1
interface wlan-ap0
description Service module interface to manage the embedded AP
ip unnumbered Vlan1
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
arp timeout 0
interface Wlan-GigabitEthernet0
description Internal switch interface connecting to the embedded AP
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address 192.168.0.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1412
interface Dialer0
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1452
ip flow ingress
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname XXXXXXXXXXXXX
ppp chap password 7 XXXXXXXXXXXXXXXX
ppp pap sent-username XXXXXXXXXXXXXX password 7 XXXXXXXXXXX
no cdp enable
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source static tcp 192.168.0.25 80 interface Dialer0 80
ip nat inside source list 1 interface Dialer0 overload
ip route 0.0.0.0 0.0.0.0 Dialer0
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 192.168.0.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run
control-plane
banner exec ^C
% Password expiration warning.
Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.
It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.
username <myuser> privilege 15 secret 0 <mypassword>
Replace <myuser> and <mypassword> with the username and password you
want to use.
^C
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line 2
no activation-character
no exec
transport preferred none
transport input all
line vty 0 4
privilege level 15
login local
transport input telnet ssh
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
Any help would be appreciatedHello,
i have the same problem with router CISCO861W-GN-E-K9. Version 12.4(22r)YB5, RELEASE SOFTWARE (fc1)
Can someone help?
Thank you.
Here is my config for internal AP and router. -
Using ACE RHI to inject a default route
I think I posted this onto the wrong Forum. Anyone able to advise here?
SteveK.
Posted by: stevek1 - Network Administrator, Dept Natural Resources and Mines
Apr 18, 2008, 12:04am PST
Hi Folks,
I need to provide internal devices with active-active access to our clustered firewall which sits across 2 data centres.
I need to allow internal hosts to reach external/unknown networks via a default route.
We have ACE modules in our internal network aggregation 6513s at each site.
I aim to achieve this using RHI...ie...device at site 1 reaches the internet via firewall at site 1, device at site 2 reaches internet via firewall at site 2 (due to better route). If the firewall is inaccessible from site 2, ACE at site 2 removes the route from the MSFC using RHI and site 2 device traffic is re-routed to the site 1 exit point.
Has anyone out there done this before?
Regards, Steve.
| Outline | Subscribe | E-Mail this Message
Replied by: stevek1 - Network Administrator, Dept Natural Resources and Mines - Apr 20, 2008, 6:48pm PST
Hi Folks,
It's Steve here again. I haven't had a response to my query as yet, but basically I need to know the validity of using ACE RHI to inject a default route as opposed to a host route.
Can anyone please advise?
Best Wishes, Steve.Thanks so much for your response Zahoor.
The solution you have provided is more complicated than I had in mind. For example we had not intended using FWSM (we don't have these modules). I just want to use our existing ACEs at each Data Centre to provide the injection of a default route to our internal EIGRP process based on the result of a probe to our Checkpoint FW. What do you think?
Steve.
Maybe you are looking for
-
Logical System not appearing in SLD
Hello Friends, Logical System of SAP R/3 system is not appearing in SLD. The logical system is available in backend ABAP System. I have even run the RZ70 data collection programs as well. However, I am not able to populate the logical system names in
-
Problems on Installing Sun ONE Studio 5 update1, Standard Edition
I'm on a win x64 rig(amd x2 4400) with both 32 bit and 64 bit versions of the latest 1.5 jdk's + the runtime ofcourse. On startup of the installer I get: A suitable JVM could not be found. Please run the installer again using the option -is:javahome
-
Why is my mac mail program freezing? I use an imac running os 10.7.2. My freezes occur when I'm not using mail but have it open. After a while I realize no new mail has been downloaded. If I try to close mac mail, nothing happens, so I do a "forc
-
Could I erased my Macbook Air SSD?
connected to my intel Mac Mini, USB Port? Thanks, in advance....
-
I just updated my all system . I even bought Tom's book... and started my new project. I have captured several clips fine and then 3 time in a row the capture stopped after 9' 25" 15 with the message " The capture has stopped due to a lack of space d