| Author |
Message |
jsandlin0803
Guest
|
 Posted:
Wed Nov 23, 2005 5:20 pm Post subject:
Cisco 1750 cant connect to ISP... |
|
|
Hey. i am trying to connect a 1750 to a fractional T1 internet service.
I cannot get it to work. This is the first time i have set one of these
up, but i know my way around the router, and i know what everything
means pretty much. I just need a basic config to get me connected to
the internet. Below is the info from my isp.
Please help with a basic config to get me started.
IP address: 162.40.148.0/29
sm: 255.255.255.248
dns: 166.102.165.11, 166.102.165.13
Thanks for your help. I need help asap!!!
Thanks
Jason |
|
| Back to top |
|
 |
Merv
Guest
|
|
| Back to top |
|
|
jsandlin0803
Guest
|
| Posted:
Wed Nov 23, 2005 11:54 pm Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
That site does not help much.
I have a device that will do nat other than the cisco.
What encapsulation do i use on serial0?
Do i put in the DNS servers?
what static routes do i need to ping the internet from the router? From
Lan?
Please help.
THanks
Jason |
|
| Back to top |
|
|
jsandlin0803
Guest
|
| Posted:
Thu Nov 24, 2005 3:36 am Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
Anyone have a fractional T1 that can post a setup? I mainly need to
know what encapsulation, and the routes.
Thanks
Jason |
|
| Back to top |
|
|
garrisb
Guest
|
| Posted:
Thu Nov 24, 2005 7:20 am Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
maybe I skipped it but is this a FR or Point-to-Point connection? if
you don't know, let me know the carrier.....
Tell me that and I'll write you a config template....
jsandlin0803 wrote:
| Quote: | Anyone have a fractional T1 that can post a setup? I mainly need to
know what encapsulation, and the routes.
Thanks
Jason |
|
|
| Back to top |
|
|
jsandlin0803
Guest
|
| Posted:
Thu Nov 24, 2005 7:50 am Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
Alltel is the carrier. I am not sure of the PPP or not. I appreciate
your help very much. If you have any questions, let me know and i will
try my best to answer them.
Thanks again.
Jason |
|
| Back to top |
|
|
jsandlin0803
Guest
|
| Posted:
Mon Nov 28, 2005 5:20 pm Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
I still havent heard from garrisb. Does anyone else have a template
they can provide?
Thanks
Jason |
|
| Back to top |
|
|
garrisb
Guest
|
| Posted:
Wed Dec 07, 2005 6:48 am Post subject:
Re: Cisco 1750 cant connect to ISP... |
|
|
sorry .... got really busy.... here's a simple template but it does not
have everything.... pay attention to <>.... You'll need to replace
them with data. There are a LOT of additional things you can add to
lock it down further but not knowing your infrastructure will limit
what I can do... This was written in a rush so try it and let me know
if this is good enough....
You may want to add an acl with the GLOBAL address you internal systems
are natted from to the vty 0 15... that way you can telnet to it from
inside your network....
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
!
hostname <ADD THE HOStname>
!
logging buffered 4096 debugging < YOU MAY WANT TO BUMP THIS UP TO 8-16
MB>
no logging console
!
clock timezone <add timezone info>
clock summer-time <add here> recurring
ip subnet-zero
ip cef
!
username <CHOOSE A USERNAME> privilege 15 secret 5 <ADD A COMPLEX
PASSWORD>
!
no ip domain-lookup
ip domain-name
!
!
interface Loopback0
ip address <add here if running bgp>
!
----------------------IF
FRAME-RELAY--------------------------------------------------------------------------------------
interface Serial0/0
no ip address
encapsulation frame-relay
no fair-queue
service-module t1 timeslots 1-6 < this is a 384k config... just think
of each timeslot as 64k...all the way to 24slots.>
frame-relay lmi-type cisco
!
interface Serial0/0.1 point-to-point
description remote link
ip address <this IP is usually somewhere on the work order with a /30
mask> 255.255.255.252
frame-relay interface-dlci <add the DLCI which is on the work order>
ip access-group border in
!
--------------------------------------------------------------------------------------------------------------------------
!
-------------------------------IF A
POINT-TO-POINT---------------------------------------------------------------------
interface Serial0/0
ip address
no fair-queue
service-module t1 timeslots 1-6 < this is a 384k config... just think
of each timeslot as 64k...all the way to 24slots.>
ip access-group border in
no ip redirects
---------------------------------------------------------------------------------------------------------------------------
!
interface FastEthernet0/0
description <THIS IS YOUR Router's address block given by the ISP>
ip address 162.40.148.1 255.255.255.248
no ip redirects
no ip route-cache
no ip mroute-cache
!
!
ip classless
ip route 0.0.0.0 0.0.0.0 <next hop or IP address of the Providers
serial link>
no ip http server
no ip domain-lookup
!
!
ip access-list extended border
deny ip any 0.0.0.0 0.255.255.255 log-input
deny ip any 10.0.0.0 0.255.255.255 log-input
deny ip any 127.0.0.0 0.255.255.255 log-input
deny ip any 169.254.0.0 0.0.255.255 log-input
deny ip any 172.16.0.0 0.15.255.255 log-input
deny ip any 192.0.2.0 0.0.0.255 log-input
deny ip any 192.168.0.0 0.0.255.255 log-input
deny ip any 224.0.0.0 7.255.255.255 log-input
deny ip any 255.0.0.0 0.255.255.255 log-input
deny ip any host 255.255.255.255 log-input
deny 55 any any log-input
deny 77 any any log-input
deny pim any any log-input
deny tcp any any eq telnet log-input
deny tcp any any eq 135 log-input
deny udp any any eq 135 log-input
deny tcp any any eq 137 log-input
deny udp any any eq 137 log-input
deny tcp any any eq 139 log-input
deny udp any any eq 139 log-input
deny udp any any eq snmp log-input
deny udp any any eq 1993 log-input
deny udp any any eq tftp log-input
deny udp any any eq bootpc log-input
deny udp any any eq bootps log-input
deny icmp any any echo log-input
permit icmp any any echo-reply log-input
deny icmp any any
permit ip any any log-input
no cdp run
!
banner motd ^C <SAMPLE ONLY...... YOU WILL NEED TO REWORD WITH YOUR
COMPANY'S WORDING>
******************************************************************************
* ....!! WARNING !!.... *
******************************************************************************
* !!!! for use by authorized personnel only !!!!
*
*
*
* This system is for the use of authorized IT personnel only
*
* Individuals using this system without authority, or in excess
*
* of their authority, are subject to having all of their activities
on *
* this system monitored and recorded by system personnel.
*
*
*
* In the course of monitoring individuals improperly using this
system, *
* or in the course of system maintenance, the activities of
authorized *
* users may also be monitored.
*
*
*
* Anyone using this system expressly consents to such monitoring and
is *
* advised that if such monitoring reveals possible evidence of
criminal *
* activity, system personnel may provide the evidence of such
monitoring *
* to law enforcement officials.
*
*
*
******************************************************************************
^C
!
line con 0
password 7 <removed>
login local
!
line aux 0
password 7 <removed>
logging synchronous
login
modem InOut
transport input all
flowcontrol hardware
!
line vty 0 15
privilege level 15
password 7 <ADD A PASSWORD IF YOU WANT TO LOG IN REMOTELY>
logging synchronous
login local
transport input telnet ssh
! |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in