Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

Troubleshooting
Research
Professional Opinions
Ask a Question
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

troubleshooting Question

Cisco 1841 ios router config

Avatar of premiere1
premiere1 asked on
RoutersCisco
5 Comments1 Solution1165 ViewsLast Modified:
We are switching to a bonded t1 and changed routers. We are getting a straight ethernet handoff from our provider. The 1841 has 2 fastethernet ports. I configured 0/0 for wan and 0/1 for lan. I somewhat followed our old config that was doing a fractional t1, but there are some differences. I added vpn to this one. Please scrutinize the config and tell me if it looks ok. I am a novice at ios.

Some differences:
no ip routing
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 xxx.xxx.79.112
Not sure what the above should be, it was one less than my gateway on my other router.

archive
 log config
  hidekeys
multilink bundle-name authenticated

Thanks in advance for any help.
Building configuration...

Current configuration : 4395 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname C1841
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
no logging console
enable secret 5 xxxxxxxxxxxxxxxxxx
enable password xxxxxxxxxxxxxxxxxx
!
aaa new-model
!
!
aaa authentication ppp default local
!
!
aaa session-id common
dot11 syslog
ip source-route
no ip routing
!
!
no ip dhcp conflict logging
ip dhcp excluded-address 192.168.1.1 192.168.1.100
ip dhcp excluded-address 192.168.1.149 192.168.1.254
ip dhcp ping packets 10
!
ip dhcp pool dhcppool
   network 192.168.1.0 255.255.255.0
   dns-server 64.83.0.10 209.137.160.3 209.137.171.10
   netbios-node-type h-node
   default-router 192.168.1.5
!
!
no ip cef
no ip domain lookup
ip name-server 64.83.0.10
ip name-server 209.137.160.3
no ipv6 cef
!
multilink bundle-name authenticated
!
vpdn enable
!
vpdn-group premiere
! Default PPTP VPDN group
 accept-dialin
  protocol pptp
  virtual-template 1
!
!
!
!
!
username test password 0 pwd
archive
 log config
  hidekeys
!
!
!
!
!
!
!
!
interface FastEthernet0/0
 ip address xxx.xxx.79.113 255.255.255.240
 ip access-group outside_in in
 no ip redirects
 ip nat outside
 ip virtual-reassembly
 no ip route-cache
 duplex auto
 speed auto
 no mop enabled
!
interface FastEthernet0/1
 ip address 192.168.1.5 255.255.255.0
 no ip redirects
 no ip proxy-arp
 ip nat inside
 ip virtual-reassembly
 no ip route-cache
 duplex auto
 speed auto
!
interface Virtual-Template1
 ip unnumbered FastEthernet0/1
 peer default ip address pool defaultpool
 ppp encrypt mppe auto required
 ppp authentication ms-chap ms-chap-v2
!
ip local pool defaultpool 192.168.1.60 192.168.1.69
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 xxx.xxx.79.112
no ip http server
no ip http secure-server
!
!
ip nat translation timeout 300
ip nat inside source list 1 interface FastEthernet0/0 overload
ip nat inside source static 192.168.1.80 xxx.xxx.79.120
ip nat inside source static 192.168.1.83 xxx.xxx.79.121
ip nat inside source static 192.168.1.90 xxx.xxx.79.122
ip nat inside source static 192.168.1.92 xxx.xxx.79.123
ip nat inside source static 192.168.1.188 xxx.xxx.79.124
ip nat inside source static 192.168.1.89 xxx.xxx.79.125
ip nat inside source static 192.168.1.149 xxx.xxx.79.126
!
ip access-list extended outside_in
 permit tcp any any established
 permit udp any eq domain any
 permit icmp any any unreachable
 permit icmp any any time-exceeded
 permit icmp any any echo-reply
 permit tcp any host xxx.xxx.79.120 eq www
 permit tcp any host xxx.xxx.79.120 eq ftp
 permit icmp any any echo
 permit tcp any host xxx.xxx.79.120 eq ftp-data
 permit tcp any host xxx.xxx.79.125 eq smtp
 permit tcp any host xxx.xxx.79.125 eq pop3
 permit tcp any host xxx.xxx.79.125 eq 143
 permit udp any host xxx.xxx.79.124 eq 1723
 permit tcp any host xxx.xxx.79.124 eq 1723
 permit tcp any host xxx.xxx.79.122 eq www
 permit tcp any host xxx.xxx.79.122 eq 8011
 permit tcp any host xxx.xxx.79.122 eq 8004
 permit tcp any host xxx.xxx.79.122 eq 8443
 permit tcp any host xxx.xxx.79.120 eq 200
 permit tcp any host xxx.xxx.79.120 eq 201
 permit tcp any host xxx.xxx.79.124 eq 47
 permit udp any host xxx.xxx.79.124 eq 47
 permit tcp any host xxx.xxx.79.123 eq www
 permit tcp any host xxx.xxx.79.122 eq smtp
 permit tcp any host xxx.xxx.79.122 eq 143
 permit tcp any host xxx.xxx.79.122 eq pop3
 permit tcp any host xxx.xxx.79.122 eq ftp-data
 permit tcp any host xxx.xxx.79.122 eq ftp
 permit tcp any host xxx.xxx.79.120 eq 443
 permit tcp any host xxx.xxx.79.122 eq 443
 permit tcp any host xxx.xxx.79.123 eq 8443
 permit tcp any host xxx.xxx.79.123 eq 443
 permit udp any host xxx.xxx.79.126 eq 5566
 permit udp any host xxx.xxx.79.126 eq 5567
 permit tcp any host xxx.xxx.79.126 eq 5566
 permit tcp any host xxx.xxx.79.126 eq www
 permit gre any host xxx.xxx.79.124
 permit tcp any host xxx.xxx.79.121 eq www
 permit tcp any host xxx.xxx.79.121 eq 443
 permit tcp any host xxx.xxx.79.122 eq 8080
 deny   ip any any log
!
access-list 1 deny   192.168.1.89
access-list 1 deny   192.168.1.90
access-list 1 deny   192.168.1.92
access-list 1 deny   192.168.1.80
access-list 1 deny   192.168.1.83
access-list 1 deny   192.168.1.188
access-list 1 deny   192.168.1.149
access-list 1 permit 192.168.1.0 0.0.0.255
snmp-server community public RO
!
!
!
!
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line vty 0 4
 password xxxxxxxxxxxxx
!
scheduler allocate 20000 1000
end
ASKER CERTIFIED SOLUTION
Avatar of JFrederick29
JFrederick29Flag of United States of America image

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Most Points 2009

The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.

Commented:
This problem has been solved!
Unlock 1 Answer and 5 Comments.
See Answers
Plans and Pricing
Resources
Features
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2021 Experts Exchange, LLC. All rights reserved. Covered by US Patent