FrankTC
join:2007-04-06
Denver, CO
|  [HELP] Cisco 857W and Qwest
I recently purchased a Cisco 857W (off eBay) and I have been having some problems getting it to connect with Qwest. The last Cisco hardware that I worked with was an old 675CAP that ran CBOS so I have been having a hard time getting things working on this. Here is my cfg that I am using (its quite a mess)
[code=!This is the running config of the router: 192.0.2.1
!----------------------------------------------------------------------------
!version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
logging console critical
enable secret 5 ----------------
!
aaa new-model
!
!
aaa authentication login local_authen local
aaa authorization exec local_author local
!
!
aaa session-id common
clock timezone PCTime -7
clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
!
!
!
crypto pki trustpoint TP-self-signed-3720820174
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3720820174
revocation-check none
rsakeypair TP-self-signed-3720820174
!
!
crypto pki certificate chain TP-self-signed-3720820174
certificate self-signed 01
3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33373230 38323031 3734301E 170D3037 31323233 30313537
31395A17 0D323030 ---------- 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 37323038
32303137 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100C9A4 1BB0740A A8C850DC 099DD524 457B91B5 2D748A78 650BFF4F CF246964
4111A5A4 35C91D5F 073043FA DC4E22B9 F008AF8D 84D495FE 5EB4DD7A EA3056ED
2AA65F18 4FB55F57 CFE2962B F5FFD54E 4FA3D946 3D99C3B7 8861B016 2252A151
84E0B305 05335DBC 9BFE06BF 7ADBB2FF 846B9332 98DF2F1D AB0F3476 4ED732B9
EC370203 010001A3 77307530 0F060355 1D130101 FF040530 030101FF 30220603
551D1104 1B301982 17796F75 726E616D 652E796F 7572646F 6D61696E 2E636F6D
301F0603 551D2304 18301680 14121A92 114E379A 17661DDC DC61BDB5 566C5A11
1E301D06 03551D0E 04160414 121A9211 4E379A17 661DDCDC 61BDB556 6C5A111E
300D0609 2A864886 ---------- 04050003 818100B4 BC938A23 1CA70CFF BF6B20CC
9DBEB91B F0057DDD 20C8A9EC 4B64F808 0012275D C89687B1 950D9998 DEECB37F
E29ACB6E D7089CEA FB7AFDF8 BCBC493B 31C48076 398EE306 080AC7F0 BE934C99
3B7F3393 E1A0C86B B261BBB1 B0B2E990 C6A3D2F0 07365646 0455BFB5 59C1D1FE
81542DE2 3D9BDA30 0A32F375 7F72EBBD C96304
quit
!
dot11 ssid Es38ufd
authentication open
!
no ip source-route
no ip dhcp use vrf connected
ip dhcp excluded-address 192.0.2.1
ip dhcp excluded-address 192.0.2.21 192.0.2.254
!
ip dhcp pool sdm-pool1
import all
network 192.0.2.0 255.255.255.0
default-router 192.0.2.1
!
!
ip cef
no ip bootp server
no ip domain lookup
ip domain name yourdomain.com
!
!
!
username ------------ privilege 15 password 7 ------------
username ---------- privilege 15 secret 5 -------------
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
zone security Outzone
!
bridge irb
!
!
interface ATM0
no ip address
no ip mroute-cache
atm vc-per-vp 64
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
no snmp trap link-status
pvc 0/32
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
no ip address
!
ssid Es38ufd
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
ip tcp adjust-mss 1452
bridge-group 1
!
interface Dialer0
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname -----------------
ppp chap password 7 ---------------
ppp pap sent-username ------- password 7 ------
!
interface BVI1
description $ES_LAN$$FW_INSIDE$
ip address 192.0.2.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1412
!
ip route 0.0.0.0 0.0.0.0 Dialer0
!
ip http server
ip http access-class 6
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface ATM0.1 overload
!
no logging trap
access-list 1 remark INSIDE_IF=BVI1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.0.2.0 0.0.0.255
access-list 2 remark HTTP Access-class list
access-list 2 remark SDM_ACL Category=1
access-list 2 permit 192.0.2.0 0.0.0.255
access-list 2 deny any
access-list 3 remark HTTP Access-class list
access-list 3 remark SDM_ACL Category=1
access-list 3 permit 192.0.2.0 0.0.0.255
access-list 3 deny any
access-list 4 remark HTTP Access-class list
access-list 4 remark SDM_ACL Category=1
access-list 4 permit 192.0.2.0 0.0.0.255
access-list 4 deny any
access-list 5 remark HTTP Access-class list
access-list 5 remark SDM_ACL Category=1
access-list 5 permit 192.0.2.0 0.0.0.255
access-list 5 deny any
access-list 6 remark HTTP Access-class list
access-list 6 remark SDM_ACL Category=1
access-list 6 permit 192.0.2.0 0.0.0.255
access-list 6 deny any
access-list 100 remark SDM_ACL Category=128
access-list 100 permit ip host 255.255.255.255 any
access-list 100 permit ip 127.0.0.0 0.255.255.255 any
access-list 101 remark SDM_ACL Category=128
access-list 101 permit ip host 255.255.255.255 any
access-list 101 permit ip 127.0.0.0 0.255.255.255 any
access-list 102 permit udp host 0.0.0.0 host 255.255.255.255
access-list 102 permit ip 192.0.2.0 0.0.0.255 any
access-list 102 remark SDM_ACL Category=16
access-list 103 remark VTY Access-class list
access-list 103 remark SDM_ACL Category=1
access-list 103 permit ip 192.0.2.0 0.0.0.255 any
access-list 103 deny ip any any
access-list 104 remark SDM_ACL Category=128
access-list 104 permit ip host 255.255.255.255 any
access-list 104 permit ip 127.0.0.0 0.255.255.255 any
access-list 105 remark SDM_ACL Category=128
access-list 105 permit ip host 255.255.255.255 any
access-list 105 permit ip 127.0.0.0 0.255.255.255 any
access-list 106 remark SDM_ACL Category=128
access-list 106 permit ip host 255.255.255.255 any
access-list 106 permit ip 127.0.0.0 0.255.255.255 any
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
banner login ^CCCCCAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
no modem enable
transport output telnet
line aux 0
transport output telnet
line vty 0 4
access-class 103 in
authorization exec local_author
login authentication local_authen
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
All of the info that I entered like username, password, vpi, vci, I took off the Actiontek router I was given by Qwest when I signed up.
Any help with this would be greatly welcomed.
Thanks!
|
|
TomS_
debugger it
Premium,MVM
join:2002-07-19
Australia
| Well since you didnt specify what the actual issue is, I'll take a stab that you cannot get dataflow through the router?
If that is the case, this is my observation:
* Interface Dialer0, being your WAN interface, does not include "ip nat outside" in its config
* Your "ip nat inside source" command specified ATM0.1 as your outside interface, this is incorrect, it should be Dialer0
Other than that, everything looks ok.
The only other thing I can point out is the fact that 192.0.2.0/24 is not RFC1918 space, therefore, unless this IP range has been assigned to you, you should stop using it in favour of some RFC1918 space.
Basically what that means is that 192.0.2.0/24 has not been designated for private use. It is currently reserved by IANA for future allocation to someone.
For your reference, RFC1918 space is as follows:
* 10.0.0.0/8 (10.0.0.0 through 10.255.255.255)
* 172.16.0.0/12 (172.16.0.0 through 172.31.255.255)
* 192.168.0.0/16 (192.168.0.0 through 192.168.255.255) |
|
FrankTC
join:2007-04-06
Denver, CO
| TomS_
My main problem was that it was not connecting to Qwest. The ADSL-CD light would just blink rapidly and the box would make a "click" noise every minute or so.
I did make the changes that you suggested. Now I just can't connect to the router via anything but the console. It does ping however. (I went with 192.168.2.0/24)
Thank you so much for your patience with a noob like me  |
|
aryoba
Premium,MVM
join:2002-08-22 | Any network device should not make such "click" noise. If the router does make such, it's probably having hardware issue.
Aside of clicking noise and LED blinking, are there significant problems occurred? |
|
FrankTC
join:2007-04-06
Denver, CO
| The "click" noise almost sounds like some sort of relay. Does this router even have a relay?
Anyways, as I said, the main problem that I was having was that it was not connecting to Qwest. I made the changes that TomS_ suggested and now I can not connect to the router via anything but the console. I am guessing I need to make some changes in the access-list, but I don't know where to start.
Thanks for your help guys |
|
TomS_
debugger it
Premium,MVM
join:2002-07-19
Australia
2 edits | reply to FrankTC
said by aryoba  :Any network device should not make such "click" noise. If the router does make such, it's probably having hardware issue. I know for a fact that all newer 800 series ADSL routers (857 and 877), and 1800 series ADSL routers (1801) make a clicking noise when its syncing, this is normal. |
|
TomS_
debugger it
Premium,MVM
join:2002-07-19
Australia
1 edit | reply to FrankTC
said by FrankTC :I made the changes that TomS_ suggested and now I can not connect to the router via anything but the console. You probably cant access the router via telnet because ACL 103 denies anything but 192.0.2.0/24 from accessing it. You'll need to update all of your ACLs to permit 192.168.2.0/24.
said by FrankTC :I am guessing I need to make some changes in the access-list, but I don't know where to start. Start by taking a copy of the existing ACLs, "no"ing them all out, modify them, and paste them back in.
This is the problem with the "web GUI" generation. 
SDM isnt helping either. |
|
FrankTC
join:2007-04-06
Denver, CO
| TomS_:
Thanks! I got the web/SDM thing working via the console and got all of the ACLs updated for 192.168.2.0/24
Now, on to trying to figure out why this thing is not syncing with Qwest. Any ideas?
I can't tell you how thankful I am of your help with this! |
|
waka
join:2002-06-01
Tacoma, WA
 ·Speakeasy
| Some of these 857s have DSL sync issues and you may need to do a firmware upgrade. You can also try setting the dsl mode manually instead of auto (try one that seems to work).
Do a sho dsl int atm0 That will list what FW you have and give you some other stats (Post this if you can). Then goto »ftp://ftp.cisco.com/pub/access/800/
and upgrade to the latest version (I believe 3.0.10). Read the notes (doc) for firmware upgrade instructions and get back to us. |
|
FrankTC
join:2007-04-06
Denver, CO
1 edit | yourname#show dsl interface atm0
ATM0
Alcatel 20190 chipset information
Line has not yet been activated.
Modem Status: Down (DMTDSL_DO_OPEN)
DSL Mode: Unknown
Interrupts: 12374 (0 spurious)
PHY Access Err: 0
Activations: 0
LED Status: OFF
LED On Time: 100
LED Off Time: 100
Init FW: init_AMR-3.0.014_no_bist.bin
Operation FW: AMR-3.0.014.bin
FW Source: embedded
DSL: Training log buffer capability is not enabled
------------------------------------------------------
The FTP has "adsl_alc_firmware.4-10-9.bin" as the newest firmware, however it does not list any of the c850 series as a target platform so for right now I will stick with the "adsl_alc_20190_3.0.10.bin" that is on the site.
Now I just need to remember how to use TFTP...
EDIT: here is "show version"
Cisco IOS Software, C850 Software (C850-ADVSECURITYK9-M), Version 12.4(15)T1, RE
LEASE SOFTWARE (fc2)
Technical Support: »www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 18-Jul-07 16:23 by prod_rel_team
ROM: System Bootstrap, Version 12.3(8r)YI3, RELEASE SOFTWARE
yourname uptime is 0 minutes
System returned to ROM by power-on
System image file is "flash:c850-advsecurityk9-mz.124-15.T1.bin" |
|
waka
join:2002-06-01
Tacoma, WA
·Speakeasy
| reply to FrankTC
Also to take some things out of the equation, set your dsl mode manually. Qwest I believe uses G.dmt (at least around me) so goto global config -> int atm0 and type dsl operating-mode ? This should list the different DSL modes, and choose the one that says itu-dmt. I don't know why but I've seen some of the routers respond to this. |
|
djweis
join:2006-04-02
West Des Moines, IA
| reply to FrankTC
If your previous modem was actually a 675 with CAP encoding you'll need to have Q move you onto a newer DSLAM that uses DMT encoding.
Regarding a later suggestion, don't hard code the operating mode. Different equipment prefers different modes. Sometimes it will be g.dmt but some areas are t.1413. |
|
waka
join:2002-06-01
Tacoma, WA | Funny I didn't even catch that he was using a 675 with a CAP line and as mentioned the 857s unfortunately does not support CAP. |
|
FrankTC
join:2007-04-06
Denver, CO
| reply to djweis
Actually, the last Cisco modem I used (about 7 years ago) was a 675. The modem that I have right now is an ActionTec GT701-WG (running QW05.5-3.60.3.0.7.6). I am pretty sure that it is DMT, if not, then that might explain why I am having problems getting the 857 to connect. |
|
waka
join:2002-06-01
Tacoma, WA
·Speakeasy
| Oh ok, I keep reading your posts wrong again, in your first post you just meant the Cisco hardware you used last was the 675 but now you are using an ActionTec on a Qwest line (My reading comprehension has gone to pots lately). If that's the case you are indeed running DMT. I would still try manually setting the dsl mode type to dmt or one of the other options (it has worked for me in the past). If that doesn't work try syncing up at the NID. I also see the training log is turned off, turn it on and see if you can get any clues from that. |
|
FrankTC
join:2007-04-06
Denver, CO
| reply to FrankTC
Update. I got it to connect by using Ansi-DMT. Now, I just can't get my intranet to talk to the internet. I can ping IP address but I can not use the web or anything else.
Here is my new config. I added some things such as the DNS server and whatnot.
[code=
!This is the running config of the router: 192.168.2.1
!----------------------------------------------------------------------------
!version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
logging console critical
enable secret 5 --
!
aaa new-model
!
!
aaa authentication login local_authen local
aaa authorization exec local_author local
!
!
aaa session-id common
clock timezone PCTime -7
clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
!
!
!
crypto pki trustpoint TP-self-signed-3720820174
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3720820174
revocation-check none
rsakeypair TP-self-signed-3720820174
!
!
crypto pki certificate chain TP-self-signed-3720820174
certificate self-signed 01
3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 -------- 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33373230 38323031 3734301E 170D3037 31323233 30313537
31395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 37323038
32303137 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100C9A4 1BB0740A A8C850DC 099DD524 457B91B5 2D748A78 650BFF4F CF246964
4111A5A4 35C91D5F 073043FA DC4E22B9 F008AF8D 84D495FE 5EB4DD7A EA3056ED
2AA65F18 4FB55F57 CFE2962B F5FFD54E 4FA3D946 3D99C3B7 8861B016 2252A151
84E0B305 05335DBC 9BFE06BF 7ADBB2FF 846B9332 98DF2F1D AB0F3476 4ED732B9
EC370203 010001A3 77307530 0F060355 1D130101 FF040530 030101FF 30220603
551D1104 1B301982 17796F75 726E616D 652E796F 7572646F 6D61696E 2E636F6D
301F0603 551D2304 18301680 14121A92 114E379A 17661DDC DC61BDB5 566C5A11
1E301D06 03551D0E 04160414 121A9211 4E379A17 661DDCDC 61BDB556 6C5A111E
300D0609 2A864886 F70D0101 04050003 818100B4 BC938A23 1CA70CFF BF6B20CC
9DBEB91B F0057DDD 20C8A9EC 4B64F808 0012275D C89687B1 950D9998 DEECB37F
E29ACB6E D7089CEA FB7AFDF8 BCBC493B 31C48076 398EE306 080AC7F0 BE934C99
3B7F3393 -------- B261BBB1 B0B2E990 C6A3D2F0 07365646 0455BFB5 59C1D1FE
81542DE2 3D9BDA30 0A32F375 7F72EBBD C96304
quit
!
dot11 ssid Es38ufd
authentication open
!
no ip source-route
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.2.1
ip dhcp excluded-address 192.168.2.21 192.168.2.254
!
ip dhcp pool sdm-pool1
import all
network 192.168.2.0 255.255.255.0
default-router 192.168.2.1
!
!
ip cef
no ip bootp server
ip domain lookup source-interface Dialer0
ip domain name yourdomain.com
ip name-server 205.171.3.65
!
!
!
username -- privilege 15 password 7 --
username -- privilege 15 secret 5 --
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
zone security Outzone
zone security OutZone
zone security InZone
!
bridge irb
!
!
interface Null0
no ip unreachables
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
no ip mroute-cache
atm vc-per-vp 64
no atm ilmi-keepalive
dsl operating-mode ansi-dmt
!
interface ATM0.1 point-to-point
no ip redirects
no ip unreachables
no ip proxy-arp
no snmp trap link-status
pvc 0/32
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
no ip address
!
ssid Es38ufd
!
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
ip tcp adjust-mss 1452
bridge-group 1
!
interface Dialer0
description $FW_OUTSIDE$
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
zone-member security OutZone
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname --
ppp chap password 7 --
ppp pap sent-username -- password 7 --
!
interface BVI1
description $ES_LAN$$FW_INSIDE$
ip address 192.168.2.1 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
zone-member security InZone
ip route-cache flow
ip tcp adjust-mss 1412
!
ip route 0.0.0.0 0.0.0.0 Dialer0
!
ip http server
ip http access-class 7
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 8 interface Dialer0 overload
!
logging trap debugging
access-list 1 remark INSIDE_IF=BVI1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.2.0 0.0.0.255
access-list 2 remark HTTP Access-class list
access-list 2 remark SDM_ACL Category=1
access-list 2 permit 192.168.2.0 0.0.0.255
access-list 2 deny any
access-list 3 remark HTTP Access-class list
access-list 3 remark SDM_ACL Category=1
access-list 3 permit 196.168.2.0 0.0.0.255
access-list 3 deny any
access-list 4 remark HTTP Access-class list
access-list 4 remark SDM_ACL Category=1
access-list 4 permit 192.168.2.0 0.0.0.255
access-list 4 deny any
access-list 5 remark HTTP Access-class list
access-list 5 remark SDM_ACL Category=1
access-list 5 permit 192.168.2.0 0.0.0.255
access-list 5 deny any
access-list 6 remark HTTP Access-class list
access-list 6 remark SDM_ACL Category=1
access-list 6 permit 192.168.2.0 0.0.0.255
access-list 6 deny any
access-list 7 remark HTTP Access-class list
access-list 7 remark SDM_ACL Category=1
access-list 7 permit 192.168.2.0 0.0.0.255
access-list 7 deny any
access-list 8 remark SDM_ACL Category=2
access-list 8 permit 192.168.2.0 0.0.0.255
access-list 100 remark SDM_ACL Category=128
access-list 100 permit ip host 255.255.255.255 any
access-list 100 permit ip 127.0.0.0 0.255.255.255 any
access-list 101 remark SDM_ACL Category=128
access-list 101 permit ip host 255.255.255.255 any
access-list 101 permit ip 127.0.0.0 0.255.255.255 any
access-list 101 permit ip 192.168.2.0 0.0.0.255 any
access-list 102 permit udp host 0.0.0.0 host 255.255.255.255
access-list 102 permit ip 192.168.2.0 0.0.0.255 any
access-list 102 remark SDM_ACL Category=16
access-list 103 remark VTY Access-class list
access-list 103 remark SDM_ACL Category=1
access-list 103 permit ip 192.168.2.0 0.0.0.255 any
access-list 103 deny ip any any
access-list 104 remark SDM_ACL Category=128
access-list 104 permit ip host 255.255.255.255 any
access-list 104 permit ip 127.0.0.0 0.255.255.255 any
access-list 105 remark SDM_ACL Category=128
access-list 105 permit ip host 255.255.255.255 any
access-list 105 permit ip 127.0.0.0 0.255.255.255 any
access-list 106 remark SDM_ACL Category=128
access-list 106 permit ip host 255.255.255.255 any
access-list 106 permit ip 127.0.0.0 0.255.255.255 any
access-list 107 remark SDM_ACL Category=128
access-list 107 permit ip host 255.255.255.255 any
access-list 107 permit ip 127.0.0.0 0.255.255.255 any
access-list 108 remark SDM_ACL Category=128
access-list 108 permit ip host 255.255.255.255 any
access-list 108 permit ip 127.0.0.0 0.255.255.255 any
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!
^C
!
line con 0
no modem enable
transport output telnet
line aux 0
transport output telnet
line vty 0 4
access-class 103 in
privilege level 15
authorization exec local_author
login authentication local_authen
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
I would once again like to thank everyone who has helped me out with this!
|
|
Lasko
@qwest.net
| Have you looked in the Qwest forum? There are a number of configs for Cisco routers and Qwest. All fairly current Cisco aDSL interfaces (827, 837, 857,877, and the WIC card are configured the same (except for the interface name in some cases) so a config for one will work with the others.
quote:
interface ATM0.1
Is there a reason you have a sub-interface for the ATM interface? I have never seen a reason for one and in fact have never configured one since the 827 was a new router. |
|
aryoba
Premium,MVM
join:2002-08-22
| reply to FrankTC
Since you are using wireless router as PPPoE client, check out the following FAQ for sample configuration. In addition, the sample configuration came from PPPoE client of Qwest. So following the sample should make it work.
»Cisco Forum FAQ »Wireless Router Sample Configuration |
|
FrankTC
join:2007-04-06
Denver, CO | reply to Lasko
Lasko: I am using the sub-interface because that is what SDM setup. I will get rid of it and just use ATM0 and see if that helps.
Aryoba: I think I have this setup as PPPoA as that is what my ActionTec was configured as. |
|
aryoba
Premium,MVM
join:2002-08-22 | Did you compare your configuration and sample configuration line by line?
I suspected that your router probably had MTU configuration problem since I didn't see the MTU 1492 configuration under the Dialer interface. |
|
