Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 457
  • Last Modified:

Cisco 1720 Router

I am never set up a Cisco router from scratch before.  I have both ethernet ports setup one with a local lan ip & the other with a public ip. When I telnet into the router, I can ping www.google.com with success.  If I set my pc to use the router as a gateway & ping google from a command prompt, it returns my routers lan ip as responding. Any clues as to what might be wrong??

Thanks in advance!
0
8lackd0g
Asked:
8lackd0g
  • 2
  • 2
1 Solution
 
plemieux72Commented:
Can you post your router config?  Also, please advise if when ping a public IP address like 198.133.219.25 from your PC you get a reply.
0
 
getzjdCommented:
You need a default Route  and NAT/PAT
For default route

Ip Route 0.0.0.0 0.0.0.0 S0  

 Assuming S0 is your internet connection.

You will also need to configure PAT
Router#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#interface ethernet0

Router(config-if)#ip nat inside

Router(config-if)#interface serial0

Router(config-if)#ip nat outside



Router(config)#ip nat inside source list 1 interface serial0 overload

Router(config)#access-list 1 permit 192.168.1.0 0.0.0.255   *** change this to suit your IP scheme to permit your network to access the interface

That should get you going.



If you have any other questions about configuring, you may want to post your config.. just makes sure to XXXX out your passwords .
0
 
8lackd0gAuthor Commented:
Thanks!! I added your two last suggestions & it works perfectly!

Router(config)#ip nat inside source list 1 interface ethernet0 overload

Router(config)#access-list 1 permit 192.168.1.0 0.0.0.255

I also have a few entries that I have not seen before:

ip virtual-reassembly
no cdp enable (if I try to enable, I get an error "service not running")
no service password-encryption (does this hide my router password?)

Should this be changed? -- snmp-server community public RO

Nice router for $300 bucks.  Came with 12.3, WIC Fast Ethernet & more memory than the 1721!
0
 
getzjdCommented:
If i were you I would issue the command
Service password-encryption  to encrypt your passwords.  

This link here will explain what the CDP means

http://www.cisco.com/en/US/products/sw/iosswrel/ps1831/products_configuration_guide_chapter09186a00800ca66d.html

The SNMP community can be changed to your liking, however you will probably never use it.  You can use SNMP to do things like monitor utilization of your interfaces from your desktop etc.

Here is an app that can do such a thing http://www.paessler.com/prtg


Virtual-Reassembly or VFR  can be used to  help against some types of attacks.  Rather than reinvent the wheel and type out a long description, I will let cisco do the explaining :)  

http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_vfrag.htm
0
 
8lackd0gAuthor Commented:
Dam! Wish I could have increase the points awarded. Thank you very much!
0

Featured Post

The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now