mels
-
Gesamte Inhalte
158 -
Registriert seit
-
Letzter Besuch
Beiträge erstellt von mels
-
-
Hallo!
show deb
PPPoE:
PPPoE protocol events debugging is on
PPPoE protocol erros debugging is on
PPP:
PPP protocol negotiation debugging is on
Ist das richtig PPP??
Danke für Deine Hilfe
mfg
jörg
-
Hallo!
Mach ich was falsch, es kommt leider nicht mehr!
Console hab ich über das Programm Putty auf Com1 aufgebaut!
Hier das log:
01:21:29: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed sta te to up
01:21:59: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to down
01:22:06: %SEC-6-IPACCESSLOGP: list LAN_in denied udp 0.0.0.0(68) -> 255.255.255.255(67), 1 packet
01:22:29: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to up
01:22:50: %LINK-3-UPDOWN: Interface FastEthernet3, changed state to up
01:22:51: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet3, changed state to up
01:23:06: %SEC-6-IPACCESSLOGP: list LAN_in denied udp 10.177.100.253(67) -> 255.255.255.255(68), 1 packet
-
Ich hab die config jetzt noch mal geändert, und zwar so!
Ich habe das Dailer Interface aufs Ethernet1 gehängt.
Ist das jetzt so richtig oder habe ich da jetzt einen falschen Gedankengang?
interface Ethernet0
description LAN Interface intern
ip address 10.177.100.254 255.255.255.0
ip access-group LAN_in in
ip nat inside
no cdp enable
hold-queue 32 in
!
interface Ethernet1
description WAN Internet via Inode$ETH-WAN$
no ip address
ip access-group WAN_in in
ip nat outside
ip inspect myfw out
no ip route-cache
no ip mroute-cache
duplex auto
pppoe enable group global
pppoe-client dial-pool-number 1
no cdp enable
crypto map cm-cryptomap
!
interface FastEthernet1
no ip address
duplex auto
speed auto
!
interface FastEthernet2
no ip address
duplex auto
speed auto
!
interface FastEthernet3
no ip address
duplex auto
speed auto
!
interface FastEthernet4
no ip address
duplex auto
speed auto
!
interface Dialer0
ip address 62.99.165.154 255.255.255.248
ip mtu 1492
ip nat outside
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname adsl.@inode.at
ppp chap password 7 123455
ppp pap sent-username adsl.@inode.at password 7 12345
ppp ipcp dns request
ppp ipcp wins request
Vielen Bin für jeden Tip dankbar
mfg
Jörg
-
"Ié ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERM IT)
00:10:09: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing inter esting (ip PERMIT)
00:10:12: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:14: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:14: Di0 DDR: ip (s=62.99.165.154, d=192.5.41.41), 76 bytes, outgoing interesting (ip PERMIT)
00:10:16: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:19: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:19: Di0 DDR: ip (s=62.99.165.154, d=192.5.41.209), 76 bytes, outgoing interesting (ip PERMIT)
00:10:22: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:24: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:27: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:29: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:32: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:34: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:37: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:39: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:42: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:50: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:53: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:10:55: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:10:58: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:11:07: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:11:10: Di0 DDR: ip (s=62.99.165.154, d=81.223.58.1), 48 bytes, outgoing interesting (ip PERMIT)
00:11:12: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:16: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:17: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:18: Di0 DDR: ip (s=62.99.165.154, d=192.5.41.41), 76 bytes, outgoing interesting (ip PERMIT)
00:11:20: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:22: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:23: Di0 DDR: ip (s=62.99.165.154, d=192.168.0.46), 48 bytes, outgoing interesting (ip PERMIT)
00:11:23: Di0 DDR: ip (s=62.99.165.154, d=192.5.41.209), 76 bytes, outgoing interesting (ip PERMIT)
00:11:25: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:26: Di0 DDR: ip (s=62.99.165.154, d=192.168.0.46), 48 bytes, outgoing interesting (ip PERMIT)
00:11:27: Di0 DDR: ip (s=62.99.165.154, d=81.223.83.3), 48 bytes, outgoing interesting (ip PERMIT)
00:11:28: Di0 DDR: ip (s=62.99.165.154, d=192.168.0.46), 48 bytes, outgoing interesting (ip PERMIT)
00:11:29: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to down
00:11:49: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to up
00:11:50: Di0 DDR: ip (s=62.99.165.155, d=195.34.133.22), 63 bytes, outgoing interesting (ip PERMIT)
-
Hallo!
hab jetzt alles aktiviert und folgendes kommt heraus!
Poste mal das gesamte Logging, vom start weg:
System Bootstrap, Version 12.2(8r)YN, RELEASE SOFTWARE (fc1)
TAC Support: Cisco – Shortcut to Technical Support
Copyright © 2002 by cisco Systems, Inc.
C800/SOHO series (Board ID: 29-129) platform with 49152 Kbytes of main memory
program load complete, entry point: 0x80013000, size: 0x560460
Self decompressing the image : ############################################################################################################### [OK]
Cisco Internetwork Operating System Software
IOS C831 Software (C831-K9O3Y6-M), Version 12.3(2)XC, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
Synched to technology version 12.3(1.6)T
Compiled Thu 25-Sep-03 09:06 by ealyon
Image text-base: 0x800131E8, data-base: 0x80AE4BD4
CISCO C831 (MPC857DSL) processor (revision 0x300) with 44237K/4915K bytes of memory.
Processor board ID AMB080401ES (2729475442), with hardware revision 0000
CPU rev number 7
Bridging software.
2 Ethernet/IEEE 802.3 interface(s)
4 FastEthernet/IEEE 802.3 interface(s)
128K bytes of non-volatile configuration memory.
12288K bytes of processor board System flash (Read/Write)
2048K bytes of processor board Web flash (Read/Write)
ê
Í
*Mar 1 00:00:06.135: %LINK-3-UPDOWN: Interface FastEthernet1, changed state to up
*Mar 1 00:00:06.135: %LINK-3-UPDOWN: Interface FastEthernet2, changed state to up
*Mar 1 00:00:06.135: %LINK-3-UPDOWN: Interface FastEthernet3, changed state to up
*Mar 1 00:00:06.139: %LINK-3-UPDOWN: Interface FastEthernet4, changed state to up
*Mar 1 00:00:06.139: %LINK-3-UPDOWN: Interface Ethernet1, changed state to up
*Mar 1 00:00:07.219: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet1, changed state to up
*Mar 1 00:00:07.219: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet2, changed state to up
*Mar 1 00:00:07.223: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet3, changed state to up
*Mar 1 00:00:07.223: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet4, changed state to up
*Mar 1 00:00:07.223: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to up
*Mar 1 00:00:17.627: %LINK-3-UPDOWN: Interface Ethernet0, changed state to up
00:00:18: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to up
00:00:18: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to up
00:00:19: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
00:00:19: %LINK-3-UPDOWN: Interface FastEthernet2, changed state to down
00:00:19: %LINK-3-UPDOWN: Interface FastEthernet4, changed state to down
00:00:20: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet2, changed state to down
00:00:20: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet4, changed state to down
00:00:22: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to down
00:00:22: %SYS-5-CONFIG_I: Configured from memory by console
00:00:22: %FW-6-INIT: Firewall inspection startup completed; beginning operation.
00:00:24: %SYS-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS C831 Software (C831-K9O3Y6-M), Version 12.3(2)XC, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)
Synched to technology version 12.3(1.6)T
TAC Support: Cisco – Shortcut to Technical Support
Copyright © 1986-2003 by cisco Systems, Inc.
Compiled Thu 25-Sep-03 09:06 by ealyon
00:00:24: %SNMP-5-COLDSTART: SNMP agent on host coesterROUTER is undergoing a cold start
00:00:28: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up
00:00:29: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1, changed state to up
00:00:29: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1, changed state to up
-
Hallo!
Und wie komme ich jetzt an das logging heran, wo sehe ich das logging, nur im SDM
oder kann ich das so auch mitlaufen lassen.
Wie kann ich es hier hereinstellen?
Entschuldigung, das ich so viel frage, bin aber gerade erst am anfangen, und am lernen.
Danke für Deine Hilfe
mfg
jörg
-
Hallo!
Hab das ganze jetzt getestet und es funktioniert trotzdem nicht.
Was kann ich denn noch machen?
Vielen dank im voraus!
mfg
jörg
-
Hallo Leute!
Cisco 871
IOS-Version: 12.4(4)T7
Ich habe leider noch immer ein Problem mit meiner ADSL-Einwahl per PPPoE.
Ich hab jetzt einen ganz neuen Cisco 871 ausgepackt und den Testweise konfiguriert.
Nur ich schaffe es nicht um die Burg eine ADSL Verbindung herzustellen.
Ich habe folgende IP-Adressen vom Provider erhalten:
Verwendbare IP Adressen: 62.99.165.154 bis 62.99.165.158
Gateway: 62.99.165.153
Subnetmask: 255.255.255.248
DNS 1: 195.34.133.21
DNS 2: 195.34.133.22
Was mach ich nur falsch, hab das ganze auch schon mit einem Cisco 831 versucht, ist auch nicht gegangen.
Bin für jeden Tip dankbar.
Hier meine Konfig:
!version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
enable secret 5 $1$Zv2.$ZSsOVNzo.ML5rgEP3PAAr/
!
no aaa new-model
!
resource policy
!
ip subnet-zero
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool sdm-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
!
ip domain name yourdomain.com
ip name-server 195.34.133.21
ip name-server 195.34.133.22
!
!
crypto pki trustpoint TP-self-signed-382456680
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-382456680
revocation-check none
rsakeypair TP-self-signed-382456680
!
!
crypto pki certificate chain TP-self-signed-382456680
certificate self-signed 01
quit
username cisco privilege 15 secret 5 $1$0DgB$.IwFUwtvWmAuhQO4gfysl.
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
description $ETH-WAN$
no ip address
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
!
interface Dot11Radio0
no ip address
shutdown
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 10.10.10.1 255.255.255.248
ip tcp adjust-mss 1452
!
interface Dialer0
ip address 62.99.165.154 255.255.255.248
ip mtu 1452
ip nat inside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication pap callin
ppp pap sent-username adsl.123@inode.at password 0 12353
!
ip classless
ip route 0.0.0.0 0.0.0.0 62.99.165.153
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
access-list 23 permit 10.10.10.0 0.0.0.7
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
line con 0
login local
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
-
Hallo Leute!
Ich hab schon wieder ne frage!
Wie kann man überprüfen ob der Cisco Router versucht überhaupt die ADSL-Verbindung aufzubauen?
Kann man sich da irgendwie ein Logging aufdrehen damit man das sieht was passiert?
Habe einen Cisco 831 und versuche über PPPoE eine Verbindung aufzubauen.
Bin für jeden Tip dankbar!
mfg
jörg
-
Hallo!
Hab den Fehler gefunden mus heißen
dialer-list 1 protocol ip permit
danke!
mfg jörg
-
@wordo
Danke für die Hilfe!
wenn ich das eingebe kommt folgende Meldung
ROUTER(config)#dialer list 1 protocol ip permit
^
% Invalid input detected at '^' marker.
Also das dacherl zeigt auf "list"
was ist denn da falsch an der Eingabe?
Danke im Voraus!
mfg
jörg
-
@rob_67
Hallo, danke für Deine Hilfe,
aber wo muß ich denn das hineinschreiben
dialer list 1 protocol ip permit
stehe ein wenig auf dem schlauch,
gehört das jetzt in eine Bestehende accesslist oder muß ich eine neue machen?
Vielen dank im Voraus!
mfg
jörg
-
Hallo!
Jetzt sehe ich aber gerade das die Iso Version 12.3(2)XC ist.
Geht das dann überhaupt?
oder geht es erst ab 12.3(7)
mfg
jöerg
-
Tuschuldigung hab ich übersehen zu schreiben!
Cisco 831
mfg
Jörg
-
ip access-list extended dns-servers
ip access-list extended firewall
ip access-list extended group-lock
ip access-list extended idletime
ip access-list extended inacl
ip access-list extended include-local-lan
ip access-list extended key-exchange
ip access-list extended protocol
ip access-list extended save-password
ip access-list extended service
ip access-list extended timeout
ip access-list extended tunnel-password
ip access-list extended wins-servers
no cdp run
route-map NAT-RMAP permit 10
match ip address NAT-LIST1
!
banner login ^CC Zugang nur fuer authorisierte User, ansonst ist dies eine strafbare Handlung! ^C
!
line con 0
exec-timeout 120 0
no modem enable
stopbits 1
line aux 0
line vty 0 4
exec-timeout 120 0
length 0
!
scheduler max-task-time 5000
sntp server 192.5.41.41
sntp server 192.5.41.209
!
end
-
ip local pool VPN-POOL 10.177.101.1
ip local pool VPN-POOL1 10.177.101.21 10.177.101.254
ip nat translation timeout 28800
ip nat translation tcp-timeout 28800
ip nat inside source static tcp 10.177.100.4 25 interface Ethernet1 25
ip nat inside source static tcp 10.177.100.4 80 interface Ethernet1 80
ip nat inside source route-map NAT-RMAP interface Dialer0 overload
ip nat inside source static 10.177.100.4 62.99.165.155
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
ip http server
no ip http secure-server
!
!
ip access-list extended LAN_in
remark Enthernet IN LAN Ethernet0
permit tcp any any
permit icmp any any
permit udp any 10.177.101.0 0.0.0.255
permit udp any any eq domain
permit udp any any eq ntp
permit udp any eq 5631 any
permit udp any eq 5632 any
permit udp any any eq isakmp
permit ahp any any
permit esp any any
deny ip any any log
ip access-list extended NAT-LIST1
remark SDM_ACL Category=18
deny ip 10.177.100.0 0.0.0.7 192.xxx.0 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 host 81.xxx
deny ip 10.177.100.0 0.0.0.255 host 80xxx8
deny ip 10.177.100.0 0.0.0.255 10.10.192.0 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 10.177.101.0 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 192.56.14.0 0.0.0.255
permit ip 10.177.100.0 0.0.0.255 any
ip access-list extended WAN_in
remark Enthernet IN WAN Ethernet1
remark SDM_ACL Category=17
permit ahp host 81.xx host 62.99.165.154
permit esp host 81.xx host 62.99.165.154
permit udp host 81.xx host 62.99.165.154 eq isakmp
permit udp host 81.xx host 62.99.165.154 eq non500-isakmp
permit ip host 81.xx 10.177.100.0 0.0.0.255
permit ahp host 81.xx host 62.99.165.154
permit esp host 81.xx host 62.99.165.154
permit udp host 81.xx host 62.99.165.154 eq isakmp
permit udp host 81.xx host 62.99.165.154 eq non500-isakmp
permit ahp host 194.xx host 62.99.165.154
permit esp host 194.xx host 62.99.165.154
permit udp host 194.xx host 62.99.165.154 eq isakmp
permit udp host 194.xx host 62.99.165.154 eq non500-isakmp
permit ahp host 80.xx host 62.99.165.154
permit esp host 80.xx host 62.99.165.154
permit udp host 80.xx host 62.99.165.154 eq isakmp
permit udp host 80.xx host 62.99.165.154 eq non500-isakmp
permit ip host 80.xx 10.177.100.0 0.0.0.255
permit ip host 10.177.101.254 any
permit ip host 10.177.101.1 any
permit udp host 195.58.161.122 eq domain any
permit udp host 195.58.160.194 eq domain any
permit udp host 195.34.133.22 eq domain any
permit udp host 195.34.133.21 eq domain any
permit ahp any host 62.99.165.154
permit esp any host 62.99.165.154
permit udp any host 62.99.165.154 eq isakmp
permit udp any host 62.99.165.154 eq non500-isakmp
permit tcp any host 62.99.165.154 eq smtp
permit tcp any host 62.99.165.154 eq www
permit tcp any host 62.99.165.155 eq smtp
permit tcp any host 62.99.165.155 eq www
permit udp any eq domain any
permit udp any eq ntp any
permit icmp any any echo-reply
permit ip host 80.xx any
permit ip host 81.xx any
permit udp 10.177.101.0 0.0.0.255 host 10.177.100.1 eq domain
permit udp 10.177.101.0 0.0.0.255 host 10.177.100.1 range netbios-ns netbios-dgm
permit tcp 10.177.101.0 0.0.0.255 host 10.177.100.1
permit tcp 10.10.192.0 0.0.0.255 host 10.177.100.1 gt 1023
permit ip 10.10.192.0 0.0.0.255 10.177.100.0 0.0.0.255
permit ip 192.56.14.0 0.0.0.255 10.177.100.0 0.0.0.7
deny ip any any log
-
Hallo Leute!
Ich habe jetzt die Config geändert damit man über PPPoE eine Internet verbindung aufbauen kann, aber irgenwie hab ich da was falsch gemacht und ich komm einfach nicht auf den Fehler.
Ich poste hier mal die Config!
Vieleicht hat ja wer ne idee was ich falsch habe,
vielen dank im voraus!
!
version 12.3
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname ROUTER
!
no logging buffered
clock timezone UTC1 1
aaa new-model
!
ip name-server 195.34.133.21
ip name-server 195.34.133.22
!
!
ip inspect name myfw cuseeme timeout 3600
ip inspect name myfw ftp timeout 3600
ip inspect name myfw rcmd timeout 3600
ip inspect name myfw realaudio timeout 3600
ip inspect name myfw smtp timeout 3600
ip inspect name myfw tftp timeout 30
ip inspect name myfw udp timeout 15
ip inspect name myfw tcp timeout 3600
ip inspect name myfw h323 timeout 3600
ip inspect name myfw icmp
ip audit notify log
ip audit po max-events 100
no ftp-server write-enable
!
!
interface Ethernet0
description LAN Interface intern
ip address 10.177.100.254 255.255.255.0
ip access-group LAN_in in
ip nat inside
pppoe enable group global
pppoe-client dial-pool-number 1
no cdp enable
hold-queue 32 in
!
interface Ethernet1
description WAN Internet via Inode$ETH-LAN$
no ip address
ip access-group WAN_in in
ip nat outside
ip inspect myfw out
no ip route-cache
no ip mroute-cache
duplex auto
no cdp enable
crypto map cm-cryptomap
!
interface FastEthernet1
no ip address
duplex auto
speed auto
!
interface FastEthernet2
no ip address
duplex auto
speed auto
!
interface FastEthernet3
no ip address
duplex auto
speed auto
!
interface FastEthernet4
no ip address
duplex auto
speed auto
!
interface Dialer0
ip address 62.99.165.154 255.255.255.248
ip mtu 1492
ip nat outside
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication pap callin
ppp pap sent-username User password 7 1234555
ppp ipcp dns request
ppp ipcp wins request
!
-
Hallo!
Danke für Deine Hilfe,
werd ich gleich mal ausprobieren!
mfg
Jörg
-
Hallo!
Weißt Du vieleicht auch wo ich vieleicht eine Beispiel Konfiguration finde?
ADSL-Einwahl mit Fixer IP-Adresse über PPPoE?
Vielen Dank im Voraus!
mfg
jörg
-
Hallo!
ZB. Cisco 831, Ciso 851, 871
Vielen Dank im Voraus!
mfg
Jörg
-
Hallo!
Danke für Deine Antwort.
Ab welcher IOS-Version wird den PPPoE unterstützt?
Vielen dank im Voraus!
mfg
Jörg
-
Hallo Leute!
Ich hab da jetzt mal ne verständnisfrage!
Normaler weiße braucht man ja um eine ADSL-Verbindung über einen Cisco-Router zu
machen ein ADSL-Interface (Cisco 836).
Geht das aber auch über eine Ethernet Schnittstelle?
Also ich meine ich hab ja von der Post ein ADSL-Modem bekommen mit Ethernet Schnittstelle,
Kann man jetzt dem Cisco-Router sagen das er eine ADSL-Verbindung über eine Ethernet Schnittstelle zu machen (zB. Cisco 851, 871)
Kann ich die Befehle die ich für die ADSL-Verbindung verwende auch für eine Ethernet-Schnittstelle verwenden?
zB. pp authentication chap callin
ppp chap hostname adsl.xxx
ppp chap password 7 123456679
Wenn ich zB. einen Netgear Router hernehme mit einer Ethernet Schnittstelle, kann ich über diesen die ADSL-Verbindung aufbauen.
Bin für jeden Tip dankbar
mfg
Jörg
-
Hallo @wordo!
Danke werd ich dann gleich testen!
melde mich dann!
lg
mels
-
Hallo!
Also hinaus soll eigentlich alles gehen, herein nur bestimmte Ports!
Ich bin das Standart Setup durchlaufen und das is rausgekommen!
Was muß ich machen?
Ist die Konfig so falsch, soll ich den Router neu aufsetzen?
Vielen dank im Voraus für Deine Hilfe!
lg
mels
Cisco 831 - ADSL over PPPoE - Config Problem
in Cisco Forum — Allgemein
Geschrieben
Hallo!
Ich poste jetzt noch mal meine aktuelle config, die Verbindung wird derzeit immer noch nicht
aufgebaut, hab ich noch irgendwo einen anderen Fehler?
!version 12.3
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
no service dhcp
!
hostname ROUTER
!
no logging buffered
clock timezone UTC1 1
aaa new-model
!
aaa authentication login default local
aaa authorization exec default local
aaa authorization network vpn_group_1 local
aaa session-id common
ip subnet-zero
ip host COE-E0 62.99.165.154
!
ip inspect name myfw cuseeme timeout 3600
ip inspect name myfw ftp timeout 3600
ip inspect name myfw rcmd timeout 3600
ip inspect name myfw realaudio timeout 3600
ip inspect name myfw smtp timeout 3600
ip inspect name myfw tftp timeout 30
ip inspect name myfw udp timeout 15
ip inspect name myfw tcp timeout 3600
ip inspect name myfw h323 timeout 3600
ip inspect name myfw icmp
ip audit notify log
ip audit po max-events 100
no ftp-server write-enable
!
interface Ethernet0
description LAN Interface intern
ip address 10.177.100.254 255.255.255.0
ip access-group LAN_in in
ip nat inside
no cdp enable
hold-queue 32 in
!
interface Ethernet1
description WAN Internet via Inode$ETH-WAN$
no ip address
ip access-group WAN_in in
ip nat outside
ip inspect myfw out
no ip route-cache
no ip mroute-cache
duplex auto
pppoe enable group global
pppoe-client dial-pool-number 1
no cdp enable
crypto map cm-cryptomap
!
interface FastEthernet1
no ip address
duplex auto
speed auto
!
interface FastEthernet2
no ip address
duplex auto
speed auto
!
interface FastEthernet3
no ip address
duplex auto
speed auto
!
interface FastEthernet4
no ip address
duplex auto
speed auto
!
interface Dialer0
ip address negotiated
ip access-group WAN_in in
ip mtu 1492
ip nat outside
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname adsl.@inode.at
ppp chap password 7 1234
ppp pap sent-username adsl.@inode.at password 7 1234
ppp ipcp dns request
ppp ipcp wins request
!
ip local pool VPN-POOL 10.177.101.1
ip local pool VPN-POOL1 10.177.101.21 10.177.101.254
ip nat translation timeout 28800
ip nat translation tcp-timeout 28800
ip nat inside source route-map NAT-RMAP interface Dialer0 overload
ip nat inside source static tcp 10.177.100.4 80 interface Ethernet1 80
ip nat inside source static tcp 10.177.100.4 25 interface Ethernet1 25
ip nat inside source static 10.177.100.4 62.99.165.155
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
ip http server
no ip http secure-server
!
ip access-list extended LAN_in
remark Enthernet IN LAN Ethernet0
remark SDM_ACL Category=17
permit tcp any any
permit icmp any any
permit udp any 10.177.100.0 0.0.0.255
permit udp any any eq domain
permit udp any any eq ntp
permit udp any eq 5631 any
permit udp any eq 5632 any
permit udp any any eq isakmp
permit ahp any any
permit esp any any
deny ip any any log
ip access-list extended NAT-LIST1
remark SDM_ACL Category=18
deny ip 10.177.100.0 0.0.0.7 192.56.xxx 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 host 81.xxx
deny ip 10.177.100.0 0.0.0.255 host 80.xxx
deny ip 10.177.100.0 0.0.0.255 10.10.192.0 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 10.177.101.0 0.0.0.255
deny ip 10.177.100.0 0.0.0.255 192.56xxx 0.0.0.255
permit ip 10.177.100.0 0.0.0.255 any
permit ip 10.177.100.0 0.0.0.255 host 62.99.165.153
permit ip 10.177.100.0 0.0.0.255 host 62.99.165.154
permit ip 10.177.100.0 0.0.0.255 host 62.99.165.155