Cisco 1841 help

O

outbreakm

Weaksauce
Joined
Jul 29, 2007
Messages
119
Having issues connecting to the internet with a Cisco 1841 at home. Its been a while since I used with Cisco stuff so maybe my config is way off.

I also setup up a 1240AG AP and 2940 switch and they can all ping each other.

Home#sh run
Building configuration...

Current configuration : 1639 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Home
!
boot-start-marker
boot-end-marker
!
logging buffered 52000 debugging
enable secret 5 $1$rf0x$SW/5FHAw8QLmWEUpHMZqO/
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.2
ip dhcp excluded-address 192.168.1.3
ip dhcp excluded-address 192.168.1.4
ip dhcp excluded-address 192.168.1.5
ip dhcp excluded-address 192.168.1.6
ip dhcp excluded-address 192.168.1.7
ip dhcp excluded-address 192.168.1.8
ip dhcp excluded-address 192.168.1.9
ip dhcp excluded-address 192.168.1.10
!
ip dhcp pool LAN
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
lease infinite
!
!
!
!
!
!
interface FastEthernet0/0
description Wan interface
ip address dhcp
no ip redirects
no ip unreachables
no ip proxy-arp
ip nbar protocol-discovery
ip nat outside
ip route-cache flow
duplex auto
speed auto
!
interface FastEthernet0/1
description Lan Interface$ETH-LAN$
ip address 192.168.1.1 255.255.255.0
ip nat inside
duplex auto
speed auto
!
interface Serial0/0/0
no ip address
shutdown
clockrate 2000000
!
interface Serial0/0/1
no ip address
shutdown
clockrate 2000000
!
ip classless
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0
!
ip http server
ip nat inside source list 101 interface FastEthernet0/0 overload
!
access-list 1 permit 192.168.1.0 0.0.0.255
!
control-plane
!
!
Click to expand...
 
first thing I see is your dhcp pool doesn't have any dns servers in it. if your clients don't have dns servers they won't know how resolve websites. also, can your router ping internet ips? if not then you're probably not getting an ip from your isp.
Posted via [H] Mobile Device
 
also, your nat statement mentions acl 101 which doesn't exist in your config. I do see an acl 1, however...
Posted via [H] Mobile Device
 
Also, remove this:

ip route 0.0.0.0 0.0.0.0 FastEthernet0/0

A default route will be learned via DHCP. That statement does bad things.
 
removed the default route and I could ping the outside world from the router after the changes but was not automatically getting a dns address. I added "import all" in the dhcp pool and power cycled the modem and now all is good.
 
Now I have a new problem

I use a Sonicwall global vpn client that cant connect to work. Normally I would open the vpn client and click enable and next I would open remote desktop and connect. Do I need to forward ports? This worked fine with the linksys router
 
You don't need to forward ports but your VPN client needs to support NAT-T and you typically need to allow UDP to be translated via ACL 101 which isn't listed in the config as was mentioned above.
 
one other thing you can change, instead of all those IP excluded statements simply use ip dhcp excluded-address 192.168.1.2 192.168.1.10 does the same thing in less lines
 
You must log in or register to reply here.
Back
Top