Cisco 2801 Configuration Help

I'm running CISCO2801 SEC/K9  (Role will be vpn router single connection)

Cisco 2801 (revision 7.0) with 238592K/23552K bytes of memory.
Processor board ID FTX1137W115
2 FastEthernet interfaces
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
125440K bytes of ATA CompactFlash (Read/Write)
*configuration register is set to 0x2102*

I need config help to connect & configuration to a non cisco (clear access)  adsl modem - bridge mode and static ip : SSS.SSS.SSS.214 sub 255.255.255.192 gw GGG.GGG.GGG.193

(modem) fe 0/0 SSS.SSS.SSS.214 sub 255.255.255.192
(router) fe 0/1 10.10.25.100 255.255.255.0

This router will connect to a R-45 patch panel and connect directly to a single workstation.
The workstation will use IBM Host PCOMM for mainframe client access.

What are the commands to set up my configuration?
Do I have to use the console RJ45 to DB-9 to manage this router every single time? (my laptop has no serial connection)
How do I program this device for VPN?

encoremdjAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

John MeggersNetwork ArchitectCommented:
There's a lot of information on Cisco's web site about basic configurations.  For starters, take a look at http://www.cisco.com/en/US/docs/routers/access/1800/1801/software/configuration/guide/routconf.html

Basic console connection instructions:
http://www.cisco.com/en/US/tech/tk801/tk36/technologies_tech_note09186a0080094465.shtml

Once you have a basic configuration on the router you can set up telnet or SSH access to the device so you don't have to set up the serial connection every time.  Just be aware that you can easily change parameters that will break your access to the router, whether it's because of routing issues or permissions. A console connection is the safest way to do configurations because you're much less likely to lose the connection.
0
encoremdjAuthor Commented:
hypothetically, say I accidentally lock myself  out of the router is there a reset procedure?
0
John MeggersNetwork ArchitectCommented:
0
John MeggersNetwork ArchitectCommented:
Encoremdj:
I'm sorry if you were dissatisfied with the pointers I provided.  Your questions are the foundation of basic Cisco configuration and CCNA / CCNP certification, for which there is a lot of information available and people spend weeks or months learning.  This is not something that can be answered in a few sentences, and it didn't seem like you had made any effort to "RTFM" and have specific questions when something wasn't working.  There are entire chapters on how to set up a VPN, and it involves a variety of options that aren't easily addressed in this type of forum.  Also sorry I was the only person who even attempted to answer the question, which I attribute to the broad range of what was being asked.  

So let's try again.....

For the interface:
Interface fastethernet0/0
ip address SSS.SSS.SSS.214 255.255.255.192
no shut

interface fastethernet0/1
ip address 10.10.25.100 255.255.255.0
no shut

ip route 0.0.0.0 0.0.0.0 GGG.GGG.GGG.193

Not sure what to tell you about the IBM Host PCOMM as I've never used that.  As long as the traffic is routeable I wouldn't expect a problem.

As for the console cable, you really just need that for the first time you connect.  After that you will be able to get to the router over telnet or SSH depending on what you set up.  For telnet access:

line vty 0 4
password <password required>
transport input telnet

Again, there are a lot of options depending on how you want to authenticate a user (AAA server; local account; no specific user, just a general password) or where you want to allow telnet from (inside subnet only, etc.).  See http://www.cisco.com/en/US/products/sw/iosswrel/ps1818/products_configuration_example09186a0080204528.shtml

If you do manage to lock yourself out, then you will need to use your console cable again.

As for the VPN question, too many options.  Let me know what you're trying to do and maybe we can get more specific (site to site, remote access, SSL portal, etc.).



0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.