Question

CISCO 2600 router 2900 switch AIR-AP1242AG-A-K9 unable to connect to internet

Asked by: cyberxela

so, basically what I have here is a router on the stick configuration with a AP attached, the problem I am having is that i am not able to get a ip add for my wireless clients neither i can ping to my wi-fi clients even if I assigne a static add.   please look at my my router,switch and AP files and advise thanks alot

ROUTER FILE

version 12.3
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname PERIMERT
!
boot-start-marker
boot-end-marker
!
logging count
logging buffered 44080 debugging
logging buffered xml 40000
logging console xml
logging monitor xml
enable secret 5 $1$ORcB$MW69XoZuclvPavRaC4IUg1
enable password 7 01302F37580411062D40
!
clock timezone DPT -5
clock summer-time CDT recurring
no network-clock-participate slot 1
no network-clock-participate wic 0
no aaa new-model
ip subnet-zero
no ip source-route
ip cef
ip tcp selective-ack
!
!
ip dhcp excluded-address 10.10.10.1 10.10.10.50
ip dhcp excluded-address 192.168.80.254
ip dhcp excluded-address 192.168.80.1 192.168.80.2
ip dhcp excluded-address 192.168.20.1 192.168.20.50
!
ip dhcp pool LOCAL
   network 10.10.0.0 255.255.0.0
   dns-server 209.18.47.61 209.18.47.62
   default-router 10.10.10.1
!
ip dhcp pool WIFI
   network 192.168.80.0 255.255.255.0
   dns-server 209.18.47.61 209.18.47.62
   default-router 192.168.80.1
!
ip dhcp pool OFFICE
   network 192.168.20.0 255.255.255.0
   dns-server 209.18.47.61 209.18.47.62
   default-router 192.168.20.1
!
no ip bootp server
no ip domain lookup
no ftp-server write-enable
!
!
!
!
interface FastEthernet0/0
 no ip address
 no ip proxy-arp
 ip nat inside
 speed 100
 full-duplex
!
interface FastEthernet0/0.20
 encapsulation dot1Q 20
 ip address 192.168.20.1 255.255.255.0
 ip nat inside
!
interface FastEthernet0/0.80
 encapsulation dot1Q 80
 ip address 192.168.80.1 255.255.255.0
!
interface FastEthernet0/0.99
 encapsulation dot1Q 99
 ip address 10.10.10.1 255.255.0.0
 ip nat inside
!
interface FastEthernet0/1
 ip address dhcp
 ip access-group 103 out
 ip nat outside
 no ip route-cache cef
 no ip route-cache
 no ip mroute-cache
 duplex auto
 speed auto
 no cdp enable
!
ip nat inside source list 103 interface FastEthernet0/1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 209.18.47.61
ip route 192.168.20.0 255.255.255.0 FastEthernet0/1
ip route 192.168.80.0 255.255.255.0 FastEthernet0/1
no ip http server
!
logging history size 400
logging history notifications
no logging trap
logging 72.168.10.4
logging 172.168.10.4
access-list 101 permit tcp any any established
access-list 103 permit ip 192.168.80.0 0.0.0.255 any
access-list 103 permit ip 10.10.0.0 0.0.255.255 any
access-list 103 permit ip 0.0.0.0 255.255.255.0 any
access-list 103 permit ip 192.168.20.0 0.0.0.255 any
access-list 103 permit ip any any
access-list 188 deny   tcp any eq ftp-data any
access-list 188 deny   tcp any eq ftp any
!
line con 0
 exec-timeout 30 0
 password 7 01230717483B031D016C4D
 logging synchronous
 login
line aux 0
 password 7 05282F3C22435900150916
 login
line vty 0 4
 access-class 21 in
 password 7 12290404013B09160A0B30
 login
!
!
!
end

SWITCH FILE
version 12.1
no service pad
service timestamps debug uptime
service timestamps log uptime
service password-encryption
!
hostname PERIMERSW
!
enable secret 5 $1$4JYe$nxSBrafdBtAgoZLq0.TZJ1
!
ip subnet-zero
!
no ip domain-lookup
!
spanning-tree mode pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
!
!
!
!
interface FastEthernet0/1
 switchport mode trunk
 speed 100
 duplex full
!
interface FastEthernet0/2
 switchport trunk native vlan 99
 switchport mode trunk
 speed 100
 duplex full
!
interface FastEthernet0/3
 switchport trunk native vlan 99
 switchport mode trunk
 speed 100
 duplex full
!
interface FastEthernet0/4
 switchport trunk native vlan 99
 switchport mode trunk
 speed 100
 duplex full
!
interface FastEthernet0/5
 switchport access vlan 99
 switchport trunk native vlan 99
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/6
 switchport access vlan 80
 switchport mode access
 speed 100
 duplex half
!
interface FastEthernet0/7
 switchport access vlan 80
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/8
 switchport access vlan 80
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/9
 switchport access vlan 80
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/10
 switchport access vlan 80
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/11
 switchport access vlan 20
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/12
 switchport access vlan 20
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/13
 switchport access vlan 20
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/14
 switchport access vlan 20
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/15
 switchport access vlan 20
 switchport mode access
 speed 100
 duplex full
!
interface FastEthernet0/16
!
interface FastEthernet0/17
!
interface FastEthernet0/18
!
interface FastEthernet0/19
!
interface FastEthernet0/20
!
interface FastEthernet0/21
!
interface FastEthernet0/22
!
interface FastEthernet0/23
!
interface FastEthernet0/24
 speed 100
 duplex full
!
interface Vlan1
 no ip address
 no ip route-cache
 shutdown
!
interface Vlan99
 ip address 10.10.10.10 255.255.0.0
 no ip route-cache
!
ip default-gateway 10.10.10.1
ip http server
!
line con 0
 password 7 06360E325F7E0C0B253711
 logging synchronous
 login
line vty 0 4
 password 7 01230717483B031D016C5A
 login
line vty 5 15
 password 7 03345A18153F245E6E290D57
 login
!
!
end

ACCESS POINT FILE


version 12.3
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname KlumpNET
!
enable secret 5 $1$uYEH$yYhz9/ZQVBzW9LzIovWl0/
!
clock timezone PDT -5
clock summer-time PDT recurring
clock save interval 8
ip subnet-zero
!
!
no aaa new-model
!
dot11 ssid KlumpNET
   authentication open
   guest-mode
!
dot11 ids mfp detector
power inline negotiation prestandard source
!
!
username controlador privilege 15 password 7 03247B3B071C326D5E5B49554E53
!
bridge irb
!
!
interface Dot11Radio0
 no ip address
 no ip route-cache
 !
 encryption key 1 size 128bit 7 6175EB4BFD6C417CAF93057215AE transmit-key
 encryption mode wep mandatory
 !
 ssid KlumpNET
 !
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0
 54.0
 station-role root
 bridge-group 1
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface Dot11Radio1
 no ip address
 no ip route-cache
 shutdown
 !
 encryption key 1 size 128bit 7 58B04384F50A0E2F564CE646BBF2 transmit-key
 encryption mode wep mandatory
 !
 ssid KlumpNET
 !
 dfs band 3 block
 speed basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
 channel dfs
 station-role root
 bridge-group 1
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface FastEthernet0
 no ip address
 no ip route-cache
 duplex auto
 speed auto
 bridge-group 1
 no bridge-group 1 source-learning
 bridge-group 1 spanning-disabled
 hold-queue 160 in
!
interface BVI1
 ip address 192.168.80.254 255.255.255.0
 no ip route-cache
!
ip default-gateway 192.168.80.1
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag

!
!
control-plane
!
bridge 1 route ip
!
!
!
line con 0
 exec-timeout 900 0
 password 7 15322B3C05393805386165724A46
 logging synchronous
 login
line vty 0 4
 password 7 1239252713181F253A1F7678636C63
 login
!
end

This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.

Subscribe now for full access to Experts Exchange and get

Instant Access to this Solution

  • Plus...
  • 30 Day FREE access, no risk, no obligation
  • Collaborate with the world's top tech experts
  • Unlimited access to our exclusive solution database
  • Never be left without tech help again

Subscribe Now

Asked On
2009-11-06 at 11:33:37ID24879010
Topics

Wireless Network Cards & Adapters

,

Network Routers

,

Network Design & Methodology

Participating Experts
1
Points
0
Comments
10

Trusted by hundreds of thousands everyday for fast, accurate and reliable tech support.

  • "The time we save is the biggest benefit of Experts Exchange to Warner Bros. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange." Mike Kapnisakis, Warner Bros.
  • "Our team likes having a resource that is more secure than just using Google and most experts using this service really know their stuff. It's nice to look here first versus using Google." Dayna Sellner, Lockheed Martin
  • "Anytime that I've been stumped with a problem, 9 out of 10 times Experts Exchange has either the accepted solution or an open discussion of the potential solution to the problem." Kenny Red, eBay Inc.

See what Experts Exchange can do for you.

Got a question?

We've got the answer.

Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.

Screenshot of Experts Exchange Knowledgebase

Need individual assistance?

Our experts are ready to help.

If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.

Screenshot of Experts Exchange Knowledgebase

Want to learn from the best?

Read articles from industry experts.

Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.

Screenshot of an Article

Working on a long term project?

Store your work and research.

Save solutions to your questions, answers you’ve discovered through searching plus helpful articles in your personal knowledgebase for easy future access.

Screenshot of Experts Exchange Knowledgebase

Access the answers to your technology questions today.

Subscribe Now

30-day free trial. Register in 60 seconds.

What Makes Experts Exchange Unique?

Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Trusted by the world's most respected brands.

image of each brand's logo

Faithfully serving IT professionals since 1996.

Experts Exchange Logo

Try it out and discover for yourself.

Subscribe Now

30-day free trial. Register in 60 seconds.

Related Solutions

  1. Cisco AP 1240AG
    Quick config question. I'm pretty sure my problem is a Windows config error, but just wanted to rule out any config error. Here is what I'm trying to accomplish. 2 SSIDs (for now) guest-ap (VLAN 2) that is completely open and is broadcast out (later will be broadcast, but...
  2. Basic Cisco AP config using WPA
    Does anyone have a basic config for a Cisco 1131? I want to setup WPA on it, but am not familiar with setting up a Cisco AP, just the Linksys AP's.
  3. Creating Guest VLAN for wireless Cisco 1100
    I have a Cisco AP1100 with one SSID and puts all users onto VLAN 1of the 2950 switch to which it is connected. I would like to create a guest VLAN that would put guests onto another VLAN - say VLAN 111. I am seeking the basic steps required at the switch and AP to add a gue...
  4. aironet 1121 vlan issues
    Hi all, I have an aironet 1121 ap connected to cisco 1710 router via 2950 switch. Problem: WiFi clients do not have any connection to the network when ap is using multiple vlans (one management + those for ssid). However when I reconfigure so that wifi clients are in th...
  5. Cisco VLANs
    Hello, I have a network here, that i did not do the configuration of, that has a Cisco 3550 as its core switch. On this switch are 6 VLANs VLAN 5 is the infrastructure VLAN and VLAN4 is for guest wireless. VLAN 5 has an IP address of 10.5.255.254 255.255.0.0 VLAN4 has an ...
  6. Cisco 2960 vlan connecting to vlan on the router
    I have configured the the vlan on the cisco 2960 switch to be vlan 5 and created a vlan on the router to vlan 5, I have put all of the relevant ports into the vlan 5. i have created trunk between the two devices, and set the native vlan to be 5, and also checked to make su...

Free Tech Articles

  1. WARNING: 5 Reasons why you should NEVER fix a computer for free.
    It is in our nature to love the puzzle. We are obsessed. The lot of us. We love puzzles. We love the challenge. We thrive on finding the answer. We hate disarray. It bothers us deep in our soul. W...
  2. SCCM OSD Basic troubleshooting
    SCCM 2007 OSD is a fantastic way to deploy operating systems, however, like most things SCCM issues can sometimes be difficult to resolve due to the sheer volume of logs to sift through and the dispe...
  3. Migrate Small Business Server 2003 to Exchange 2010 and Windows 2008 R2
    This guide is intended to provide step by step instructions on how to migrate from Small Business Server 2003 to Windows 2008 R2 with Exchange 2010. For this migration to work you will need the fo...
  4. Create a Win7 Gadget
    This article shows you how to create a simple "Gadget" -- a sort of mini-application supported by Windows 7 and Vista. Gadgets can be dropped anywhere on the desktop to provide instant information, ...
  5. Outlook continually prompting for username and password
    There have been a lot of questions recently regarding Outlook prompting for a username and password whilst using Exchange 2007. There are a few reasons why this would happen and I will try to cover t...
  6. Backup Exchange 2010 Information Store using Windows Backup
    There seems to be quite a lot of confusion around the ability to backup Exchange 2010 using the built in Windows Backup feature. This stems from the omission of this feature prior to Exchange 2007 s...

Cloud Class Webinars

  1. Avoiding Bugs in Microsoft Access
    Alison Balter takes and in-depth look at avoiding bugs in Access. In this webinar you will learn about using the immediate window to debug your applications, invoking the debugger, using breakpoints to troubleshoot, stepping through code, setting the next statement to execute, ...
  2. Top 10 Best New Features in Visio 2010
    Scott Helmers gives live demonstrations of the top 10 new features in Visio 2010. This webinar will teach you how to create compelling diagrams by adding shapes to the page with a single click, linking the shapes in a diagram to data in Excel (or SQL Server, or SharePoint), ...
  3. IT Consultant Business Secrets Revealed
    Michael Munger, Experts Exchange tech pro and IT consultant, pulls back the curtain on his very successful businesses and answers question on every IT consultant and business owner should know about. He shares secrets on what he did to solve the 5 most common problems in IT, ...
  4. Disaster Recovery and Business Continuity
    Quest CTO, Mike Billon, gives an overview of the steps involved in building a dunamic disaster recovery plan. Through case studies and an examination of software/hardware tooles for monitoring and testing, you'll gain a better understandin of where you are, where you want ...
  5. Organize Your Visio Diagrams with Containers and Lists
    Scott Helmers uses cross functional flowcharts, wireframe diagrams, data graphic legends and seating charts to teach you: how to ustilize all three new structured diagram components in Visio 2010, the best practices for organizeing shapes in previous version of Visio, how to organize ...
  6. How to Us Objects, Properties, Events and Methods in Microsoft Access
    Alison Dalter gives an in-depbth look at objects, properties, events and methods in Microsoft Access. In this webinar you will learn about using the object browser, referring to objects, working with properties and methods, working with object variables, understanding the ...

Join the Community

Give a Little. Get a Lot.

Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.

Join the Community

Answers

 

by: rochey2009Posted on 2009-11-06 at 11:47:43ID: 25762430

Hi,

Please post

show int trunk

from the switch.

Which port connects to the router and which port connects to the AP?

 

by: cyberxelaPosted on 2009-11-06 at 12:02:55ID: 25762543

here is the result, also what i notice is this: i didn't have the "ip nat inside" assigned to the 0/0.80 interface at the router side.

interface FastEthernet0/0.20
 encapsulation dot1Q 20
 ip address 192.168.20.1 255.255.255.0
 ip nat inside
!
interface FastEthernet0/0.80
 encapsulation dot1Q 80
 ip address 192.168.80.1 255.255.255.0
!
interface FastEthernet0/0.99
 encapsulation dot1Q 99
 ip address 10.10.10.1 255.255.0.0
 ip nat inside


PERIMERSW#sh int trunk

Port        Mode         Encapsulation  Status        Native vlan
Fa0/1       on           802.1q         trunking      1

Port      Vlans allowed on trunk
Fa0/1       1-4094

Port        Vlans allowed and active in management domain
Fa0/1       1,20,80,99

Port        Vlans in spanning tree forwarding state and not pruned
Fa0/1       1,20,80,99

 

by: rochey2009Posted on 2009-11-06 at 12:04:43ID: 25762565

Yes, you'll need ip nat inside on interface Fa0/0.80

So port fa0/1 goes to the router?

 

by: cyberxelaPosted on 2009-11-06 at 12:05:21ID: 25762571

thats right

 

by: rochey2009Posted on 2009-11-06 at 12:10:01ID: 25762612

which port goes to the access point?

 

by: rochey2009Posted on 2009-11-06 at 12:21:57ID: 25762710

can you ping 192.168.80.254 from the router?

 

by: cyberxelaPosted on 2009-11-06 at 16:31:24ID: 25764335

yes i can ping 192.168.80.254, i guess asoon as the IP NAT INSIDE got assigned to the subinterface .80, pings and internet access was available

 

by: cyberxelaPosted on 2009-11-06 at 16:33:37ID: 25764347

the access point is connected to 0/6 on the switch

 

by: rochey2009Posted on 2009-11-07 at 04:01:14ID: 25765937

Is everything working now?

 

by: cyberxelaPosted on 2009-11-07 at 07:34:32ID: 25766601

yes everything is working,I will close the question now.

20120131-EE-VQP-002

3 Ways to Join

30-Day Free Trial

The Experts

98% positive feedback on 31,087 answers since March 2000. angeliii is a Microsoft Most Valuable Professional for his work with MS SQL Server & Develoment.

He has also proven his knowledge of Visual Basic Programming, PHP Scripting and Oracle Databases.

The Experts

97% positive feedback on 10,752 answers since July 2000. lrmoore has more than 18 years experience in the networking industry.

The six-time Mircosoft MVPs specialties include firewalls, virtual private networking, and network management.

Testimonials

"...and excellent source for support... Kind of like having your very own IT dept." Electriciansnet

Testimonials

"I was apprehensive at signing up at first. However... it has already made my life as an IT administrator much easier." JaCrews

Testimonials

"WOW! You guys have great, active, and knowledgeable people on here." moore50

Business Clients

Business Clients

In the Press

"If you’ve got a question... Experts Exchange can supply an answer.”

In the Press

"...an invaluable aid for both IT professionals and those who require tech support."

In the Press

"where IT professionals provide quick answers on just about any topic"

Business Account Plans

Loading Advertisement...