Improve company productivity with a Business Account.Sign Up

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 836
  • Last Modified:

Cisco 837 Config Help

Trying to get my 837 to connect to the internet, however cant seem to get it to work.

Config from ISP:
Connection Type :  PPPoE LLC
Primary IP Address :  Set to Auto  
Primary DNS :  Set to Auto
Secondary DNS :  Set to Auto

Config from router:

show run
Building configuration...

Current configuration : 4768 bytes
version 12.2
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug uptime
service timestamps log uptime
service password-encryption
hostname auswest
logging queue-limit 100
logging buffered 4096 debugging
enable secret 5 **********************8
enable password 7 ******************
username *********
username ********* password 7 *******************
clock timezone AEST 10
clock summer-time AEST recurring 4 Sun Oct 2:00 3 Sun Mar 3:00
ip subnet-zero
ip source-route
no ip domain lookup
ip domain name local
ip dhcp excluded-address
ip dhcp excluded-address
ip dhcp excluded-address
ip dhcp pool dhcppool
   import all
   update arp
no ip bootp server
ip inspect name firewall tcp
ip inspect name firewall udp
ip inspect name firewall cuseeme
ip inspect name firewall h323
ip inspect name firewall rcmd
ip inspect name firewall realaudio
ip inspect name firewall streamworks
ip inspect name firewall vdolive
ip inspect name firewall sqlnet
ip inspect name firewall tftp
ip inspect name firewall ftp
ip inspect name firewall icmp
ip inspect name firewall sip
ip inspect name firewall fragment maximum 256 timeout 1
ip inspect name firewall netshow
ip inspect name firewall rtsp
ip inspect name firewall skinny
ip audit notify log
ip audit po max-events 100
ip audit name intrusion info list 3 action alarm
ip audit name intrusion attack list 3 action alarm drop reset
vpdn enable
vpdn-group pptp
! Default PPTP VPDN group
  protocol pptp
  virtual-template 1
no ftp-server write-enable
interface Tunnel0
 no ip address
interface Ethernet0
 ip address
 ip access-group 102 in
 ip nat inside
 hold-queue 100 out
interface Virtual-Template1
 ip unnumbered Ethernet0
 peer default ip address dhcp-pool dhcppool
 ppp encrypt mppe auto
 ppp authentication ms-chap
interface ATM0
 description atm 0
 no ip address
 no atm ilmi-keepalive
 dsl operating-mode auto
interface ATM0.1 point-to-point
 pvc 0/100
  encapsulation aal5mux ppp dialer
  dialer pool-member 1
interface Dialer0
 bandwidth 640
 ip address negotiated
 ip access-group 101 in
 no ip redirects
 no ip unreachables
 ip nat outside
 ip inspect firewall out
 ip audit intrusion in
 encapsulation ppp
 dialer pool 1
 dialer-group 1
 no cdp enable
 ppp pap sent-username ************** password 7 *****************
 ppp ipcp dns request
ip nat inside source list 1 interface Dialer0 overload
ip classless
ip route Dialer0
no ip http server
no ip http secure-server
access-list 1 permit
access-list 2 permit
access-list 2 permit
access-list 3 deny
access-list 3 permit any
access-list 101 permit ip
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any
access-list 101 deny   ip any host
access-list 101 permit tcp any any eq 1723
access-list 101 permit gre any any
access-list 101 permit tcp any any eq 22
access-list 101 permit tcp any any eq telnet
access-list 101 deny   icmp any any echo
access-list 102 deny   udp any any eq 135 log
access-list 102 deny   udp any any eq netbios-ns log
access-list 102 deny   tcp any any eq 445 log
access-list 102 permit ip any
access-list 102 permit ip any host
access-list 102 deny   ip any any log
dialer-list 1 protocol ip permit
banner motd ^C

Config By Newcastle OnSite IT - Making IT Easy 0401 605 174
Authorisation is required to connect to this device.
If you are not authorised to connect to this device disconnect imediatly, Failure to do so will result in prosecution under applicable law.

line con 0
 no modem enable
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
 access-class 2 in
 password 7 **************
 login local
 transport input telnet ssh
 transport output none
scheduler max-task-time 5000
  • 3
  • 3
  • 2
1 Solution
I noticed you only have PAP authentication configured on your dialer? try setting up CHAP also. Some ISP's dont support PAP.


 interface dialer0
 ppp chap hostname ****
 ppp chap password ****
 ppp pap sent-username ************** password 7 *****************

The following debug commands are also handy when fault finding PPP dialer issues. If your telnetting to the router type "terminal monitor" at enable to send debug results to VTY line.

debug ppp negotiation
debug ppp authentication

Then try and access the net and see what you get.. authentication failure, no attempt etc. You can then turn them off (they use CPU cycles) by typing:

no debug all



Dinga84Author Commented:

I got it working late last night, there was a problem with my vti/vci settings, and the chap solution you suggested above.

Thanks for the help.
Dinga84Author Commented:
I asked this question be closed with points refunded on the 23.10.2006
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Keith AlabasterEnterprise ArchitectCommented:
OK. if no-one else comments on this the points can be refunded.
I know I didnt solve the whole problem.. But a few points would be nice as I did help a bit??. Any chance?

Dinga84Author Commented:

Your the only person who replied, it looks like we need more cisco people and you did try, so worth the points. I may need your help again in the future.
Thank you very much :). Anytime
Keith AlabasterEnterprise ArchitectCommented:
Thanks for the update :)

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

  • 3
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now