Toon posts:

Cisco 876W met RFC1483 bridging

Pagina: 1
Acties:

zondag 23 maart 2008 17:05

Acties:

Verwijderd

Topicstarter
Ik ben bezig om een Cisco 876W te ocnfigureren.

Ik heb eea zover dat ik aan de "binnenkant" van het netwerk netjes IP adressen uit kan geven en vlan's aanmaken. Later komen hier nog access lists op, maar dat is voor straks.

Waar ik nu mee bezig ben en niet verder mee kom is het operationeel krijgen van de internet verbinding. Ik heb een account bij Telfort (tot 31/12 Tiscali). De instellingen voor de ADSL verbinding (0/34) heb ik overgenomen uit mijn huidige router / modem.

Als ik deboel aansluit dan gaat het CD lampje netjes branden, en uiteindelijk na een hoop geknipper ook constant. Dat lijkt erop te duiden dat ik verbinding met de ISP heb, maar is dat ook zo ?
Ik krijg echter geen verbinding operationeel. Ik kan niet pingen naar de dns-servers van de ISP (als ik dat nu doe via de oude router dan lukt dat gewoon).

Als ik eea goed begrepen heb dan moet ik een BVI interface aanmaken dat via dhcp zijn adres krijgt. Het interface is er, krijgt ook netjes de status up/up, maar heeft geen ip adres.

Onderstaand mijn config en wat informatie die ik heb opgeduikeld met de show commando's.
code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181

version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
enable secret 5 $1$ZxR5$g6d06FMEq/0p7kHjLvwsE0
!
no aaa new-model
!
crypto pki trustpoint TP-self-signed-1830534705
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-1830534705
 revocation-check none
 rsakeypair TP-self-signed-1830534705
!
!
crypto pki certificate chain TP-self-signed-1830534705
 certificate self-signed 01
!
!
!
dot11 ssid GEUnet
   authentication open
!
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.149
!
ip dhcp pool zakelijk
   import all
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1
   dns-server 195.241.77.55 195.241.77.58
   lease 0 2
!
ip dhcp pool prive
   network 192.168.2.0 255.255.255.0
   default-router 192.168.2.1
   dns-server 195.241.77.55 195.241.77.58
   lease 0 2
!
ip dhcp pool services
   network 192.168.3.0 255.255.255.0
   default-router 192.168.3.1
   dns-server 195.241.77.55 195.241.77.58
   lease 0 2
!
ip dhcp pool wireless
   network 192.168.4.0 255.255.255.0
   default-router 192.168.4.1
   dns-server 195.241.77.55 195.241.77.58
   lease 0 2
!
!
ip cef
no ip domain lookup
!
no ipv6 cef
multilink bundle-name authenticated
!
!
username cisco privilege 15 secret 5 $1$U5zM$tVUdtTvB7r5lpF/.FNaym1
archive
 log config
  hidekeys
!
!
!
bridge irb
!
!
interface BRI0
 no ip address
 encapsulation hdlc
 shutdown
!
interface ATM0
 no ip address
 no atm ilmi-keepalive
 pvc 0/34
  encapsulation aal5snap
 !
 dsl operating-mode auto
 bridge-group 1
 bridge-group 1 spanning-disabled
!
interface FastEthernet0
 switchport access vlan 2
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
 switchport access vlan 2
!
interface Dot11Radio0
 ip address 192.168.4.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
 !
 ssid GEUnet
 !
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0
 station-role root
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
 ip address 192.168.1.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
 ip tcp adjust-mss 1452
!
interface Vlan2
 ip address 192.168.2.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
interface Vlan3
 ip address 192.168.3.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
interface Dialer0
 no ip address
!
interface BVI1
 mac-address face.face.face
 ip address dhcp
 ip access-group bvi_in in
 ip nat outside
 ip virtual-reassembly
 hold-queue 224 in
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 BVI1
!
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 100 interface BVI1 overload
!
ip access-list extended bvi_in
 permit udp any any
 permit tcp any any
 permit ip any any
!
no cdp run

!
!
!
!
control-plane
!
!
line con 0
 login local
 no modem enable
line aux 0
line vty 0 4
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000

!
webvpn cef
end



Kunnen jullie eens meekijken naar mijn config en hints en tips geven ?

Hieronder wat info over de status van interfaces enzo. Wie weet helpt dit.

code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69

yourname#sh int atm0
ATM0 is up, line protocol is up
  Hardware is MPC ATMSAR (with Alcatel ADSL Module)
  MTU 4470 bytes, sub MTU 4470, BW 721 Kbit/sec, DLY 510 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ATM, loopback not set
  Encapsulation(s): AAL5  AAL2, PVC mode
  10 maximum active VCs, 1024 VCs per VP, 1 current VCCs
  VC Auto Creation Disabled.
  VC idle disconnect time: 300 seconds
  Last input 00:00:03, output 00:00:03, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: Per VC Queueing
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 1000 bits/sec, 0 packets/sec
     204 packets input, 57200 bytes, 0 no buffer
     Received 144 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
     72 packets output, 45504 bytes, 0 underruns
     0 output errors, 0 collisions, 1 interface resets
     0 unknown protocol drops
     0 output buffer failures, 0 output buffers swapped out
yourname#



yourname#sh int bvi1
BVI1 is up, line protocol is up
  Hardware is BVI, address is face.face.face (bia 001e.be3e.818e)
  Internet address will be negotiated using DHCP
  MTU 4470 bytes, BW 4608 Kbit/sec, DLY 5000 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input never, output never, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/224/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: fifo
  Output queue: 0/0 (size/max)
  5 minute input rate 0 bits/sec, 0 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
     0 packets input, 0 bytes, 0 no buffer
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
     81 packets output, 50058 bytes, 0 underruns
     0 output errors, 0 collisions, 0 interface resets
     0 unknown protocol drops
     0 output buffer failures, 0 output buffers swapped out
yourname#

yourname#sh ip int brief
Interface                  IP-Address      OK? Method Status                Protocol
FastEthernet0              unassigned      YES unset  up                    down
FastEthernet1              unassigned      YES unset  up                    down
FastEthernet2              unassigned      YES unset  up                    down
FastEthernet3              unassigned      YES unset  up                    up
BRI0                       unassigned      YES NVRAM  administratively down down
BRI0:1                     unassigned      YES unset  administratively down down
BRI0:2                     unassigned      YES unset  administratively down down
Dot11Radio0                192.168.4.1     YES NVRAM  up                    up
ATM0                       unassigned      YES NVRAM  up                    up
Vlan1                      192.168.1.1     YES NVRAM  up                    down
NVI0                       192.168.4.1     YES unset  up                    up
Vlan2                      192.168.2.1     YES NVRAM  up                    up
Vlan3                      192.168.3.1     YES NVRAM  up                    down
Dialer0                    unassigned      YES NVRAM  up                    up
BVI1                       unassigned      YES DHCP   up                    up
yourname#

dinsdag 25 maart 2008 16:46

Acties:

Verwijderd

Topicstarter
Helaas heeft niemand mij op weg kunnen helpen. Ben maar eens van scratch af aan opnieuw begonnen, en nu werkt het wel om verbinding met internet op te bouwen. Zie onderstaand de config, wellicht dat iemand die nog eens kan gebruiken als uitgangspunt.

Kan nu weer verder de rest in te bouwen.

code:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119

!
version 12.4
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname yourhost
!
boot-start-marker
boot-end-marker
!
no aaa new-model
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.149
!
ip dhcp pool zakelijk
   import all
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1 
   dns-server 195.241.77.55 195.241.77.58 
   lease 0 2
!
ip dhcp pool prive
   import all
   network 192.168.2.0 255.255.255.0
   default-router 82.170.27.254 
   dns-server 195.241.77.55 195.241.77.58 
   lease 0 2
!
!
ip cef
no ip domain lookup
!
no ipv6 cef
multilink bundle-name authenticated
!
!
username cisco privilege 15 secret 5 $1$Nx3y$nfJwaklyF3ZW2IasA/kBT/
archive
 log config
  hidekeys
!
bridge irb
!
interface BRI0
 no ip address
 encapsulation hdlc
 shutdown
!
interface ATM0
 no ip address
 no atm ilmi-keepalive
 pvc 0/34 
  encapsulation aal5snap
 !
 bundle-enable
 dsl operating-mode auto 
 bridge-group 1
!
interface FastEthernet0
 switchport access vlan 2
!
interface FastEthernet1
 switchport access vlan 2
!
interface FastEthernet2
 switchport access vlan 2
!
interface FastEthernet3
 switchport access vlan 2
!
interface Dot11Radio0
 no ip address
 shutdown
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
 station-role root
!
interface Vlan1
 no ip address
!
interface Vlan2
 ip address 192.168.2.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
interface BVI1
 ip address dhcp
 ip nat outside
 ip virtual-reassembly
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 82.170.27.254
!
no ip http server
no ip http secure-server
ip nat inside source list 1 interface BVI1 overload
!
access-list 1 permit any
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
!
line con 0
 login local
 no modem enable
line aux 0
line vty 0 4
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
!
webvpn cef
end

vrijdag 12 juni 2009 15:29

Acties:

Verwijderd

Dat kan ik zeker voor mijn SR520W heb ik wat regeltjes geleend hartstikke bedankt.
Reageer

Apple iPhone 17 LG OLED evo G5 Google Pixel 10 Samsung Galaxy S25 Star Wars: Outlaws Nintendo Switch 2 Apple AirPods Pro (2e generatie) Sony PlayStation 5 Pro

Tweakers is onderdeel van DPG Media B.V.
Alle rechten voorbehouden - Auteursrecht © 1998 - 2026 Hosting door TrueFullstaq