我正在使用一个2851,在GE0 / 1我有一个BT OpenReach VDSL调制解调器和GE0 / 0去交换机和我的networking的其余部分。 所需的configuration非常简单,主要工作,我希望路由器处理调制解调器的PPPoE,操作一个典型的NATconfiguration(有一些端口转发)和DNS / DHCP。 简单的权利?
我遇到的问题是,虽然我的networking上的客户端可以到达互联网没有问题,当试图从路由器本身到达互联网时,似乎并没有把数据包放在沿线的正确方向。 ..
事实(注意,路由器的IP是192.168.1.254):
所以,虽然路由器完全有能力接触到互联网,并且可以在我的本地networking上为客户端正常工作,但是我的configuration却不尽如人意,并且阻碍了路由器到达Internet的默认位置状态“(缺乏更好的术语)。
对我来说有趣的事情之一是,这个(几乎相同的)configuration在旧的2611XM上运行良好,尽pipe运行了IOS的不同版本和function集合。
这是configuration:
! version 15.1 service timestamps debug datetime msec service timestamps log datetime msec service password-encryption ! hostname 2800-router ! boot-start-marker boot-end-marker ! ! ! aaa new-model ! ! aaa authentication enable default none ! ! ! ! ! aaa session-id common ! ! dot11 syslog no ip source-route ! ! ip cef ip dhcp excluded-address 192.168.1.1 192.168.1.49 ip dhcp excluded-address 192.168.1.200 192.168.1.254 ! ip dhcp pool default network 192.168.1.0 255.255.255.0 default-router 192.168.1.254 dns-server 8.8.8.8 8.8.4.4 ! ! ! ip domain name local ip name-server 8.8.8.8 ip name-server 8.8.4.4 no ipv6 cef ! multilink bundle-name authenticated ! ! ! ! ! ! ! ! ! ! ! voice-card 0 ! crypto pki token default removal timeout 0 ! ! ! ! license udi pid CISCO2851 sn ... username ... privilege 15 secret 5 ... ! redundancy ! ! ip ssh version 2 ! ! ! ! ! ! ! ! interface GigabitEthernet0/0 ip address 192.168.1.254 255.255.255.0 no ip unreachables ip nat inside ip virtual-reassembly in duplex auto speed auto ! interface GigabitEthernet0/1 no ip address duplex auto speed auto pppoe enable group global pppoe-client dial-pool-number 1 ! interface Dialer0 ip address negotiated ip access-group 100 in no ip unreachables ip nat outside ip virtual-reassembly in encapsulation ppp dialer pool 1 ppp chap hostname ... ppp chap password 7 ... no cdp enable ! no ip forward-protocol nd no ip http server no ip http secure-server ! ! ip dns server ip nat inside source static udp 192.168.1.1 6636 interface Dialer0 6636 ip nat inside source static tcp 192.168.1.1 6636 interface Dialer0 6636 ip nat inside source static udp 192.168.1.2 28015 interface Dialer0 28015 ip nat inside source static tcp 192.168.1.1 30033 interface Dialer0 30033 ip nat inside source static tcp 192.168.1.1 10011 interface Dialer0 10011 ip nat inside source static udp 192.168.1.1 9987 interface Dialer0 9987 ip nat inside source static tcp 192.168.1.1 80 interface Dialer0 80 ip nat inside source list 101 interface Dialer0 overload ip route 0.0.0.0 0.0.0.0 Dialer0 ! logging esm config access-list 100 permit ip any any access-list 101 permit ip any any ! ! ! ! ! ! ! control-plane ! ! ! ! mgcp profile default ! ! ! ! ! ! line con 0 line aux 0 line vty 0 4 transport input ssh ! scheduler allocate 20000 1000 end 这里是'sh ip ro'的输出:
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2 ia - IS-IS inter area, * - candidate default, U - per-user static route o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP + - replicated route, % - next hop override Gateway of last resort is 0.0.0.0 to network 0.0.0.0 S* 0.0.0.0/0 is directly connected, Dialer0 192.168.1.0/24 is variably subnetted, 2 subnets, 2 masks C 192.168.1.0/24 is directly connected, GigabitEthernet0/0 L 192.168.1.254/32 is directly connected, GigabitEthernet0/0 195.166.xxx.xxx/32 is subnetted, 1 subnets C 195.166.xxx.xxx is directly connected, Dialer0 212.159.xxx.xxx/32 is subnetted, 1 subnets C 212.159.xxx.xxx is directly connected, Dialer0
“sh ver”的输出:
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 15.1(3)T4, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2012 by Cisco Systems, Inc. Compiled Thu 24-May-12 01:38 by prod_rel_team ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1) 2800-router uptime is 3 hours, 44 minutes System returned to ROM by power-on System image file is "flash:c2800nm-advipservicesk9-mz.151-3.T4.bin" Last reload type: Normal Reload This product contains cryptographic features and is subject to United States and local country laws governing import, export, transfer and use. Delivery of Cisco cryptographic products does not imply third-party authority to import, export, distribute or use encryption. Importers, exporters, distributors and users are responsible for compliance with US and local country laws. By using this product you agree to comply with applicable laws and regulations. If you are unable to comply with US and local laws, return this product immediately. A summary of US laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to [email protected]. Cisco 2851 (revision 53.51) with 774144K/12288K bytes of memory. Processor board ID xxx 2 Gigabit Ethernet interfaces 1 Virtual Private Network (VPN) Module DRAM configuration is 64 bits wide with parity enabled. 239K bytes of non-volatile configuration memory. 126000K bytes of ATA CompactFlash (Read/Write) License Info: License UDI: ------------------------------------------------- Device# PID SN ------------------------------------------------- *0 CISCO2851 xxx Configuration register is 0x2102