?
Solved

problems with draytek vigor 2820

Posted on 2009-12-23
2
Medium Priority
?
3,956 Views
Last Modified: 2012-05-08
Hi
I have two separate adsl lines each with a draytek vigor 2820.
One has been used for production for about 18 months with a mixture of microsoft and linux servers and nortel phone VOIP system. The second one was installed 6 months ago and has been used for testing devices external to the network so they can contact internal services from outside.
There is a Centos linux server running an apache website. External GPRS devices send data to it and require port 80 to be pointed at the linux server. The newly installed nortel system apparently also requires port 80 for external phones to connect on. I'm told this can't be changed.
As a solution the second draytek 2820 was connected to the internal switch. On an internal PC I can connect to the admin pages of both drayteks and have compared the settings. The second router can see the ARP table on the first router, the NAT table on the second router shows external connection attempts as they happen, but I cannot connect to any internal device through the IP of the second router. The first router is fine for remote desktop, web services, and I can connect to the management screen of the Nortel switch using port redirection on 8081. The intention was that external Nortel phones will connect to port 80 on the IP of the second router.
I am able to connect to the draytek management screens from outside on the second line using port 8081. I have been able to telnet through to one of the servers and can SSH to the router. But it has not been possible to get past the router/firewall to the servers I need to access.
I have compared the firewalls, open ports and port redirection line by line. Nothing seems to be incorrect. I'v not yet tried resetting the second router to default and starting again but I suppose that may be a solution. Both routers are at the same firmware revision (3.3.0 which is Nov 2008)
0
Comment
Question by:peter_lawrie
2 Comments
 
LVL 34

Expert Comment

by:Istvan Kalmar
ID: 26118678
could you show us topology with ip adresses?

I think there is a routing problem, could you show us booth routers routing table?
0
 

Accepted Solution

by:
peter_lawrie earned 0 total points
ID: 26118860
Router-1 is on 77.44.32.211, internally 192.168.0.3, it gives dhcp but most PCs are fixed IP
Telephones: switch is 192.168.0.229 and phones on 192.168.0.201 to 228
Router-2 is on 82.133.117.199, internally 192.168.0.1, dhcp is off
All internally devices are on 182.168.0.x - no subnetting. WAN2 connections are disabled on both


router-1 (working) 77.44.32.211 connected via remote desktop
Routing table
Key: C - connected, S - static, R - RIP, * - default, ~ - private
*             0.0.0.0/         0.0.0.0 via 62.69.62.175,   WAN1
*        62.69.62.175/ 255.255.255.255 via 62.69.62.175,   WAN1
S        77.44.32.211/ 255.255.255.255 via 77.44.32.211,   WAN1
C~        192.168.0.0/   255.255.255.0 is directly connected,    LAN

ARP Cache table
IP Address         MAC Address         Netbios Name
 192.168.0.1        00-50-7F-91-D8-38    
 192.168.0.6        00-11-09-7C-A3-A1    PANTHER
 192.168.0.11       00-1E-0B-DB-DB-2C    PENGUIN
 192.168.0.12       00-1E-0B-DB-DB-2C    PENGUIN
 192.168.0.13       00-1E-0B-DB-DB-81    
 192.168.0.14       00-1E-0B-DB-DB-80    
 192.168.0.17       00-22-19-D6-2C-35    DOLPHIN
 192.168.0.25       00-25-11-04-7F-0B    ACER
 192.168.0.51       00-01-6C-9A-F3-42    ROB
 192.168.0.60       00-13-20-1F-1F-B1    COUGAR
 192.168.0.90       00-16-76-D9-3A-36    ANDY
 192.168.0.202      00-1A-7E-A5-DB-24    
 192.168.0.204      00-1A-7E-A5-DE-30    
 192.168.0.205      00-1A-7E-A5-DE-39    
 192.168.0.206      00-1A-7E-A5-DE-34    
 192.168.0.207      00-1A-7E-A5-DE-35    
 192.168.0.208      00-1A-7E-A5-DE-32    
 192.168.0.209      00-1A-7E-A5-DE-11    
 192.168.0.210      00-1A-7E-A5-DE-31    
 192.168.0.211      00-1A-7E-A5-DE-36    
 192.168.0.229      00-40-5A-29-1C-FD    
 192.168.0.253      00-13-21-C1-86-39    

NAT Sessions table (Note 192.168.0.60 is collecting data from GPRS devices
    Private IP :Port #Pseudo Port         Peer IP :Port  Interface
-------------------------------------------------------------------------------
    192.168.0.6    25           25    98.93.43.128 61744    WAN1
   192.168.0.17   123        49460    81.20.144.33   123    WAN1
    192.168.0.6    25           25  116.121.114.59  7284    WAN1
   192.168.0.14 35002        35002   89.193.228.81  1556    WAN1
    192.168.0.6    25           25    89.7.226.207  2406    WAN1
   192.168.0.51  1138        50509   65.54.172.176  1863    WAN1
    192.168.0.6    25           25  109.79.171.228 11384    WAN1
    192.168.0.6  9612        58938  217.114.173.81    25    WAN1
    192.168.0.6  9615        58941  213.171.218.57    25    WAN1
   192.168.0.60  9599        58979    87.68.67.196 28474    WAN1
   192.168.0.60  9599        58979 140.118.107.232 56481    WAN1
   192.168.0.60  9599        58979   61.27.225.144 12784    WAN1
   192.168.0.60  9599        58979   86.56.209.211  1261    WAN1
   192.168.0.60  9599        58979     70.110.8.56 28225    WAN1
   192.168.0.60  9599        58979  161.53.248.213 39882    WAN1
   192.168.0.60  9599        58979    84.228.164.2 40383    WAN1
   192.168.0.60  9599        58979    82.41.90.162 64743    WAN1
   192.168.0.60  9599        58979    116.83.39.51 28719    WAN1
   192.168.0.60  9599        58979  115.184.118.13 37411    WAN1
   192.168.0.60  9599        58979    93.97.108.18 15229    WAN1
   192.168.0.60  9599        58979    84.73.197.36 42110    WAN1
   192.168.0.60  9599        58979  74.136.196.167 58044    WAN1
   192.168.0.60  9599        58979   111.255.9.185 62261    WAN1
   192.168.0.60  9599        58979   59.171.72.105  4038    WAN1
   192.168.0.60  9599        58979 118.171.194.224 20617    WAN1
   192.168.0.60  9599        58979     86.9.124.68 32124    WAN1
   192.168.0.60  9599        58979   217.162.75.26 14635    WAN1
   192.168.0.60  9599        58979 128.135.138.249 23493    WAN1
   192.168.0.60  9599        58979   216.15.100.14  5453    WAN1
   192.168.0.60  9599        58979    96.10.245.84 18508    WAN1
   192.168.0.60  9599        58979     75.87.65.59 62577    WAN1
   192.168.0.60  9599        58979 128.173.191.249 55692    WAN1
   192.168.0.60  9599        58979     67.83.1.119 64284    WAN1
   192.168.0.60  9599        58979  190.188.24.110 63070    WAN1
   192.168.0.60  9599        58979   83.179.10.139  7513    WAN1
   192.168.0.60  9599        58979   130.132.66.49 26328    WAN1
   192.168.0.60  9599        58979  77.122.146.147 34135    WAN1
   192.168.0.60  9599        58979   81.192.32.217 35060    WAN1
   192.168.0.60  9599        58979    59.189.51.54  9445    WAN1
   192.168.0.60  9599        58979    85.179.146.6 35535    WAN1
   192.168.0.60  9599        58979   71.194.216.14 25833    WAN1
   192.168.0.60  9599        58979   98.185.53.138  5297    WAN1
   192.168.0.60  9599        58979  140.115.65.183 48122    WAN1
   192.168.0.60  9599        58979   112.52.249.80 65535    WAN1
   192.168.0.60  9599        58979 200.227.211.233 21493    WAN1
   192.168.0.60  9599        58979 202.156.231.187 30401    WAN1
   192.168.0.60  9599        58979   219.70.58.161 38430    WAN1
   192.168.0.60  9599        58979    76.25.98.204 51934    WAN1
   192.168.0.60  9599        58979   76.108.49.248 46530    WAN1
   192.168.0.60  9599        58979  119.236.235.22  9066    WAN1
   192.168.0.60  9599        58979   72.46.201.157  8674    WAN1
   192.168.0.60  9599        58979  68.187.228.228 57049    WAN1
   192.168.0.60  9599        58979    93.123.70.29  3790    WAN1
   192.168.0.60  9599        58979      77.58.26.8 14569    WAN1
   192.168.0.60  9599        58979 131.188.192.158 56978    WAN1
   192.168.0.60  9599        58979  88.112.108.101 19967    WAN1
   192.168.0.60  9599        58979   82.33.168.193  8458    WAN1
   192.168.0.60  9599        58979  193.68.221.251 33316    WAN1
   192.168.0.60  9599        58979    188.17.41.32 41417    WAN1
   192.168.0.60  9599        58979   75.155.111.65 40891    WAN1
   192.168.0.60  9599        58979   168.28.91.119 29691    WAN1
   192.168.0.60  9599        58979  77.236.165.248 27327    WAN1
   192.168.0.60  9599        58979 122.102.223.221 15301    WAN1
   192.168.0.60  9599        58979     86.12.58.16 59846    WAN1
   192.168.0.60  9599        58979     94.3.101.15  9695    WAN1
   192.168.0.60  9599        58979   86.17.162.106 30872    WAN1
   192.168.0.60  9599        58979   188.24.51.106 62645    WAN1
   192.168.0.60  9599        58979  212.57.109.125 41594    WAN1
   192.168.0.60  9599        58979   86.130.33.150 31267    WAN1
   192.168.0.60  9599        58979   86.145.195.67 24216    WAN1
   192.168.0.60  9599        58979 118.161.193.167 45123    WAN1
   192.168.0.60  9599        58979   85.204.184.23 50175    WAN1
   192.168.0.60  9599        58979  213.231.39.195 61206    WAN1
   192.168.0.60  9599        58979    85.9.236.241 38667    WAN1
   192.168.0.60  9599        58979   193.90.169.30 57757    WAN1
   192.168.0.60  9599        58979    188.2.80.224  8805    WAN1
   192.168.0.60  9599        58979    82.158.7.209 46703    WAN1
   192.168.0.60  9599        58979     86.14.59.53 26836    WAN1
   192.168.0.60  9599        58979   201.51.31.191  4781    WAN1
   192.168.0.60  9599        58979   90.199.84.221 23438    WAN1
   192.168.0.60  9599        58979  190.173.90.167 59140    WAN1
   192.168.0.60  9599        58979  94.168.156.245 11829    WAN1
   192.168.0.60  9599        58979   81.111.99.228  2934    WAN1
   192.168.0.60  9599        58979     160.99.9.69 19046    WAN1
   192.168.0.60  9599        58979  98.250.126.104 29242    WAN1
   192.168.0.60  9599        58979   72.28.172.225 21322    WAN1
   192.168.0.60  9599        58979   116.15.146.82 11316    WAN1
   192.168.0.14  3389         3397  92.236.229.142  1277    WAN1
   192.168.0.14   445          445    77.37.141.55  3522    WAN1
   192.168.0.51  2173        51544  209.85.227.106    80    WAN1
   192.168.0.14   445          445    68.157.103.4 56827    WAN1
   192.168.0.51  2183        51554  209.85.227.113    80    WAN1
   192.168.0.51  2185        51556   74.125.79.102    80    WAN1
   192.168.0.51  2275        51646  209.85.227.104    80    WAN1
   192.168.0.51  2276        51647   74.125.77.102    80    WAN1
   192.168.0.60  2393        51773    77.68.54.254 64818    WAN1
   192.168.0.51  2403        51774    66.102.9.104    80    WAN1
   192.168.0.51  2404        51775  209.85.227.113    80    WAN1
   192.168.0.51  2405        51776    66.102.9.147    80    WAN1
   192.168.0.51  2426        51797   75.125.120.80   443    WAN1
   192.168.0.51  2427        51798   75.125.120.80   443    WAN1
   192.168.0.60  2653        52033  95.144.162.150  4404    WAN1
   192.168.0.60  2779        52159    72.249.46.22  3306    WAN1
   192.168.0.90 27358        44000    87.113.21.17 61732    WAN1
   192.168.0.90 27358        44000      77.58.26.8 14569    WAN1
   192.168.0.90 27358        44000   79.74.248.190 15625    WAN1
   192.168.0.90 27358        44000  190.188.24.110 63070    WAN1
   192.168.0.90 27358        44000    82.23.56.186 12379    WAN1
   192.168.0.90 27358        44000   121.210.16.40  9149    WAN1
   192.168.0.90 27358        44000  217.216.116.81 51381    WAN1
   192.168.0.90 27358        44000    77.76.30.115 33066    WAN1
   192.168.0.90 27358        44000    82.41.90.162 64743    WAN1
   192.168.0.90 27358        44000   74.222.216.31 36979    WAN1
   192.168.0.90 27358        44000 126.114.219.250 44556    WAN1
   192.168.0.60  2780        52160    77.44.32.211  3306    WAN1
   192.168.0.60  2781        52161    93.181.6.157  5672    WAN1
   192.168.0.60  2789        52169    192.168.1.69 11316    WAN1
   192.168.0.51 53034        36869   79.74.248.190 15625    WAN1
   192.168.0.51 53034        36869  68.197.105.217 30728    WAN1
   192.168.0.51 53034        36869 121.246.148.203  8287    WAN1
   192.168.0.51 53034        36869    76.85.150.44 13441    WAN1
   192.168.0.51 53034        36869   130.64.68.217  1113    WAN1
   192.168.0.51 53034        36869  68.192.227.102 10678    WAN1
   192.168.0.51 53034        36869   201.17.112.55 10780    WAN1
   192.168.0.51 53034        36869  80.218.156.138 46229    WAN1
   192.168.0.51 53034        36869   139.91.190.40 38139    WAN1
   192.168.0.51 53034        36869   189.38.198.11 58165    WAN1
   192.168.0.51 53034        36869  123.220.243.45 27108    WAN1





router-2 (problems) 82.133.117.199 with me directly connected externally from 92.236.229.142
Routing table
Key: C - connected, S - static, R - RIP, * - default, ~ - private
*             0.0.0.0/         0.0.0.0 via 212.74.102.15,   WAN1
S      82.133.117.199/ 255.255.255.255 via 82.133.117.199,   WAN1
C~        192.168.0.0/   255.255.255.0 is directly connected,    LAN
*       212.74.102.15/ 255.255.255.255 via 212.74.102.15,   WAN1

NAT Active sessions while (unsuccessfully) trying to connect to nortel on port 80
 192.168.0.229    80           80  92.236.229.142  1194    WAN1

ARP Cache
IP Address         MAC Address         Netbios Name
 192.168.0.3        00-50-7F-93-FF-68    
 192.168.0.6        00-11-09-7C-A3-A1    PANTHER
 192.168.0.11       00-1E-0B-DB-DB-2D    PENGUIN
 192.168.0.12       00-1E-0B-DB-DB-2D    PENGUIN
 192.168.0.13       00-1E-0B-DB-DB-81    
 192.168.0.14       00-1E-0B-DB-DB-80    
 192.168.0.17       00-22-19-D6-2C-35    DOLPHIN
 192.168.0.25       00-25-11-04-7F-0B    ACER
 192.168.0.51       00-01-6C-9A-F3-42    ROB
 192.168.0.60       00-13-20-1F-1F-B1    COUGAR
 192.168.0.90       00-16-76-D9-3A-36    ANDY
 192.168.0.202      00-1A-7E-A5-DB-24    
 192.168.0.204      00-1A-7E-A5-DE-30    
 192.168.0.205      00-1A-7E-A5-DE-39    
 192.168.0.206      00-1A-7E-A5-DE-34    
 192.168.0.207      00-1A-7E-A5-DE-35    
 192.168.0.208      00-1A-7E-A5-DE-32    
 192.168.0.209      00-1A-7E-A5-DE-11    
 192.168.0.210      00-1A-7E-A5-DE-31    
 192.168.0.211      00-1A-7E-A5-DE-36    
 192.168.0.229      00-40-5A-29-1C-FD    
 192.168.0.253      00-13-21-C1-86-39    

0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Shadow IT is coming out of the shadows as more businesses are choosing cloud-based applications. It is now a multi-cloud world for most organizations. Simultaneously, most businesses have yet to consolidate with one cloud provider or define an offic…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question