configure all 9 ports to the same subnet

This will be a really simple question to someone who knows what they are doing.

I've got a cisco 1801 with fa0 connected to a dsl router. I've assigned a valid public ip to fa0. I now need to connect some servers, all with public ip's in the same subnet as fa0 to the 8 switchports, and confure an acl on fa0 to only allow certain ports to certain public facing servers on the switchports.

I've configured fa0 with a public ip, configured a default route to point to the dsl router connected through fa0. from the cisco i can ping public ip's no problem, but when i plug a server into a switchport, i can't even ping fa0 from the server.

Should be a very simple config, i think?

Cheers
Paul
beplasAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Don JohnstonConnect With a Mentor InstructorCommented:
There's a couple things going on here.

First is that fa0 is a routed port. Fa1-8 are switched ports. They only way to get from fa0 to any of the other ports is to go through the router. Which means they will be on different networks.

If you really need to have multiple devices on the same network as your internet connection, you'll need to have the DSL modem connected to one of the switched ports. (BTW 2 - 8 are shutdown now)

The other devices will also connect to port 1-8.

With all the connections on the switchports, you won't be able to use a typical router ACL. I don't know if this platform supports VLAN ACLs but that would accomplish what you're asking.

From global config mode, try entering "vlan access-map ?" and "vlan filter ?" and see if recognizes those commands.
0
 
beplasAuthor Commented:
Forgot to add my current config for clarity

Building configuration...

Current configuration : 1312 bytes
!
version 12.4
service config
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname router
!
boot-start-marker
boot-end-marker
!
enable secret 5 <removed>
enable password 7 <removed>
!
no aaa new-model
!
resource policy
!
!
!
ip cef
!
!
!
!
!
username paul password 7 <removed>
!
!
!
!
!
!
interface Loopback0
 no ip address
!
interface FastEthernet0
 ip address 84.71.77.212 255.255.255.248
 speed auto
 full-duplex
!
interface BRI0
 no ip address
 encapsulation hdlc
 shutdown
 isdn point-to-point-setup
!
interface FastEthernet1
!
interface FastEthernet2
 shutdown
!
interface FastEthernet3
 shutdown
!
interface FastEthernet4
 shutdown
!
interface FastEthernet5
 shutdown
!
interface FastEthernet6
 shutdown
!
interface FastEthernet7
 shutdown
!
interface FastEthernet8
 shutdown
!
interface ATM0
 no ip address
 shutdown
 no atm ilmi-keepalive
 dsl operating-mode auto
!
interface Vlan1
 no ip address
 shutdown
!
ip route 0.0.0.0 0.0.0.0 84.71.77.214
!
!
ip http server
no ip http secure-server
!
access-list 1 permit any
dialer-list 1 protocol ip permit
!
!
!
!
!
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
 password 7 <removed>
 login
!
!
webvpn context Default_context
 ssl authenticate verify all
 !
 no inservice
!
end


0
All Courses

From novice to tech pro — start learning today.