dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
19226
share rss forum feed

Nano_Magnus

join:2011-10-19

Help configuring a CISCO 1921

Hi, I need to configure a Router Cisco1921 so I need some help with it.
Description:
1.- I had a public IP x.x.x.70

2.- My ISP provide a ZXDSL 831 Series for connecting to internet with gateway x.x.x.69

3.- I had an Internal DNS Server forwarding to ISP DNS ( I already tested with an ISA server and it's forwarding ok) ip 10.133.0.1

4.- Router Cisco1921 with two ethernet Interfaces g0/0 10.133.0.6 LAN and g0/1 x.x.x.70 WAN

It's my first time working with Cisco and my first goal it's to allow internet on my LAN.
After that I will continue with server publishing and VPN.

And sorry for my poor english...

Here is my running conf:

Building configuration...

Current configuration : 3931 bytes
!
! Last configuration change at 14:35:52 Caracas Wed Oct 19 2011 by ******
! NVRAM config last updated at 14:39:48 Caracas Wed Oct 19 2011 by ******
! NVRAM config last updated at 14:39:48 Caracas Wed Oct 19 2011 by *****
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname router01
!
boot-start-marker
boot-end-marker
!
!
no logging buffered
enable secret 5 ************.
enable password ******
!
no aaa new-model
no process cpu extended history
no process cpu autoprofile hog
clock timezone Caracas -4 0
!
no ipv6 cef
ip source-route
no ip routing
no ip cef
!
!
!
!
!
ip domain name dominio.local
ip name-server 10.133.0.1
multilink bundle-name authenticated
!
crypto pki token default removal timeout 0
!
crypto pki trustpoint TP-self-signed-375522388
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-375522388
revocation-check none
rsakeypair TP-self-signed-375522388
!
!
crypto pki certificate chain TP-self-signed-375522388
certificate self-signed 01
x
x
x
quit
license udi pid CISCO1921/K9 sn FTX1532821Z
!
!
username ------ privilege 15 secret 5
************
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
no ip route-cache
shutdown
no cdp enable
!
interface GigabitEthernet0/0
description $ETH-LAN$
ip address 10.133.0.6 255.255.0.0
ip nat inside
ip virtual-reassembly in
no ip route-cache
duplex auto
speed auto
no cdp enable
no mop enabled
!
interface GigabitEthernet0/1
description $ETH-WAN$
ip address x.x.x.70 255.255.255.248
ip nat outside
ip virtual-reassembly in
no ip route-cache
duplex auto
speed auto
no cdp enable
!
ip default-gateway x.x.x.60
ip forward-protocol nd
!
ip http server
ip http authentication local
ip http secure-server
!
ip nat inside source static tcp 10.133.0.15 80 interface GigabitEthernet0/1 80
ip nat inside source list 1 interface GigabitEthernet0/1 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1
!
access-list 1 remark INSIDE_IF=GigabitEthernet0/0
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 10.133.0.0 0.0.255.255
access-list 2 remark CCP_ACL Category=2
access-list 2 permit 10.133.0.0 0.0.255.255
!
no cdp run
!
snmp-server community public RO
!
control-plane
!
!
!
line con 0
exec-timeout 0 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
password ****
login
transport input all
!
scheduler allocate 20000 1000
end

Thanks


elnino

join:2006-08-27
Akron, OH

This line is causing all your problems: no ip routing You need to enable IP routing so the router can do it's job. To enable it, use the command ip routing from the config terminal mode. Also, no ip cef is generally something that shouldn't be disabled in your router config, so enable that with the command ip cef.

One more thing, I would remove ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1 and replace it with ip route 0.0.0.0 0.0.0.0 x.x.x.69 (your Internet gateway). This will save a lot of overhead that your 1921 router would have to do


Nano_Magnus

join:2011-10-19

Thanks a lot, I will try it later, after reading your answer it looks SO simple

The next step it's to implement a site to site vpn, and I'm reading and article about it and I would start to test IPSec tomorrow.

Thanks again


aryoba
Premium,MVM
join:2002-08-22
kudos:4
reply to Nano_Magnus

Don't forget to remove the ip default-gateway command to avoid routing issue


HELLFIRE
Premium
join:2009-11-25
kudos:13
reply to Nano_Magnus

15.1 and 'no ip routing' STILL shows up in the default config?!

:insert facepalm moment:

Regards


sk1939
Premium
join:2010-10-23
Mclean, VA
kudos:10

Sad isn't it? I wonder if they've finally changed the default for EIGRP to no auto-summary.



tubbynet
reminds me of the danse russe
Premium,MVM
join:2008-01-16
Chandler, AZ
kudos:1

said by sk1939:

Sad isn't it? I wonder if they've finally changed the default for EIGRP to no auto-summary.

to steal a line from nosx See Profile (because we all know i'm a tool and very unimaginative)

you need to enable the following features/services on your router

service no-suck
service crashproof
 

q.
--
"...if I in my north room dance naked, grotesquely before my mirror waving my shirt round my head and singing softly to myself..."

sk1939
Premium
join:2010-10-23
Mclean, VA
kudos:10

Uh huh...is that supposed to be an insult or a joke of some kind?



tubbynet
reminds me of the danse russe
Premium,MVM
join:2008-01-16
Chandler, AZ
kudos:1

said by sk1939:

Uh huh...is that supposed to be an insult or a joke of some kind?

only towards cisco and how broken some of their stuff is out of the box with monolithic (proxy-arp, routing, auto-summary, etc).

q.
--
"...if I in my north room dance naked, grotesquely before my mirror waving my shirt round my head and singing softly to myself..."

sk1939
Premium
join:2010-10-23
Mclean, VA
kudos:10
Reviews:
·T-Mobile US
·Verizon FiOS

Well yeah, for the price they charge you would think they would error check/revise default startup config more than every 10 years. I'm curious about the 1921 though, mostly by how it measures up to the 1941 and 1811 (besides the gig interfaces/HWIC).


HELLFIRE
Premium
join:2009-11-25
kudos:13
reply to tubbynet

said by tubbynet:

you need to enable the following features/services on your router

service no-suck
service crashproof
 

Doesn't everything in IT need that enabled? Thanks for the smile of the day tubbynet

Regards


OVERKILL

join:2010-04-05
Peterborough, ON
reply to sk1939

said by sk1939:

Well yeah, for the price they charge you would think they would error check/revise default startup config more than every 10 years. I'm curious about the 1921 though, mostly by how it measures up to the 1941 and 1811 (besides the gig interfaces/HWIC).

One just magically appeared on my desk this morning, so I may have the ability to do some testing. We'll see what time is like.

HELLFIRE
Premium
join:2009-11-25
kudos:13

A sanitized 'show tech' and a couple hours of iperf test results would be MOST welcome OVERKILL

Keep us posted!

Regards



OVERKILL

join:2010-04-05
Peterborough, ON

said by HELLFIRE:

A sanitized 'show tech' and a couple hours of iperf test results would be MOST welcome OVERKILL

Keep us posted!

Regards

Any particular part of "show tech" that you want to see? It is HUGE......

sk1939
Premium
join:2010-10-23
Mclean, VA
kudos:10

POWER CONSTANT AND MAX_POWER DETAILS, show inventory, and ResourceMaximum LimitAvailable


HELLFIRE
Premium
join:2009-11-25
kudos:13
reply to OVERKILL

Everything if possible, minus the company-sensitive and device-unique stuff

Regards



OVERKILL

join:2010-04-05
Peterborough, ON

said by HELLFIRE:

Everything if possible, minus the company-sensitive and device-unique stuff

Regards

But it is massive, LOL

Here's some info from it:

 
------------------ show crypto engine configuration ------------------
 
        crypto engine name:  Virtual Private Network (VPN) Module
        crypto engine type:  hardware
                     State:  Enabled
                  Location:  onboard 0
              Product Name:  Onboard-VPN
                HW Version:  1.0
               Compression:  Yes
                       DES:  Yes
                     3 DES:  Yes
                   AES CBC:  Yes (128,192,256)
                  AES CNTR:  No
     Maximum buffer length:  0000
          Maximum DH index:  0000
          Maximum SA index:  0000
        Maximum Flow index:  2000
      Maximum RSA key size:  0000
 
        crypto lib version:  20.0.0
 
     crypto engine in slot:  0
                  platform:  VPN hardware accelerator
        crypto lib version:  20.0.0
 

 
------------------ show license udi ------------------
 
Device#   PID                   SN              UDI
-----------------------------------------------------------------------------
*0        CISCO1921/K9          xxxxxxxxxxx     CISCO1921/K9:xxxxxxxxxxx
 
------------------ show license feature ------------------
 
Feature name             Enforcement  Evaluation  Subscription   Enabled  RightToUse
ipbasek9                 no           no          no             yes      no
securityk9               yes          yes         no             yes      yes
datak9                   yes          yes         no             no       yes
SSL_VPN                  yes          yes         no             no       yes
ios-ips-update           yes          yes         yes            no       yes
WAAS_Express             yes          yes         no             no       yes
 

 
------------------ show license status ------------------
 
                License Type Supported
        permanent               Non-expiring node locked license
        extension               Expiring node locked license
        evaluation              Expiring non node locked license
        evalRightToUse          Right to use evaluation non node locked license
        rightToUse              Right to use non node locked license
        paid subscription       Expiring node locked subscription license
                                with valid end date
        extension subscription  Expiring node locked subscription license
        evaluation subscription Expiring node locked subscription license
 
                License Operation Supported
        install    Install license
        clear      Clear license
        annotate   Comment license
        save       Save license
        revoke     Revoke license
        call-home  License call-home
 
                Call-home Operation Supported
        show pak   Display license pak via call-home
        install    Install license via call-home
        revoke     Revoke license via call-home
        resend     Fetch license via call-home
 
                Device status
        Device Credential type: DEVICE
        Device Credential Verification: PASS
        Rehost Type: HARDWARE
 
SWIFT url status
        Swift URL set to default value : https://tools.cisco.com/SWIFT/Licensing
 
------------------ show license statistics ------------------
 
                Administrative statistics
        Install success count:   0
        Install failure count:   0
        Install duplicate count: 0
        Comment add count:       0
        Comment delete count:    0
        Clear count:             0
        Save count:              0
        Save cred count:         0
 
                Client statistics
        Request success count:   2
        Request failure count:   0
        Release count:           0
        Global Notify count:     0
 

 
------------------ show inventory ------------------
 
NAME: "CISCO1921/K9 chassis", DESCR: "CISCO1921/K9 chassis"
PID: CISCO1921/K9      , VID: V01 , SN: xxxxxxxxxx
 
------------------ show region ------------------
 
Region Manager:
 
      Start         End     Size(b)  Class  Media  Name
 0x0E000000  0x0FFFFFFF    33554432  Iomem  R/W    iomem
 0x20000000  0x2DFFFFFF   234881024  Local  R/W    main
 0x2100D518  0x24DA69B3    64591004  IText  R/O    main:text
 0x24DB4C40  0x273588FF    39468224  IData  R/W    main:data
 0x27358900  0x27E9C59F    11812000  IBss   R/W    main:bss
 0x27E9C5A0  0x2DFFFFFF   102120032  Local  R/W    main:heap
 0x30000000  0x3FFFFFFF   268435456  Local  R/W    Main_memory_1
 0x80000000  0x8DFFFFFF   234881024  Local  R/W    main:(main_k0)
 0xA0000000  0xADFFFFFF   234881024  Local  R/W    main:(main_k1)
 
Free Region Manager:
 
      Start         End     Size(b)  Class  Media  Name
 
------------------ Mempool statistics ------------------
 
                Head    Total(b)     Used(b)     Free(b)   Lowest(b)  Largest(b)
Processor   27E9C5A0   370555488    50038800   320516688   101737452   230974220
      I/O    E000000    33554432    15721868    17832564    17783136    17659772
 
-------------- Top 100 allocator pc summary -----------
 
Allocator PC Summary for: Processor
 
    PC          Total   Count  Name
0x2234AB8C     483500      33  SSH Process
0x2367CBDC      65588       1  AAA Small Chunk
0x21434E14      65588       1  Buffer Display
0x225CD268      48232       2  *CEF: mem summary/tty
0x225CD218      48232       2  *CEF: mem stats/tty
0x22C36A7C      10188       1  NAT Address Chunks
0x22707AB4       9764       1  EEM Shell Director
0x23ACEB48       6328      21  SSH Process
0x22544484        856       2  Ether OAM subblock
0x22365088        820       1  SSH Process
0x22319AF0        492       1  HTTP CP
0x24D99848        452       2  MRIB IPv6 Init Process
0x221DE9DC        372       3  CDP sw subblock
0x2254C550        320       2  Ether OAM Shim data
0x221DEA9C        300       3  CDP hw subblock
0x23712F04        248       2  SDB String
0x22A8E008        240       1  MRIB route entry
0x23454514        216       2  State Machine Instance
0x22FBD980        212       1  PPP CP Spec
0x23D62D38        188       1  SWIDB_SB: NETBIOS Info
0x236F9A38        184       1  PPP CP uBT
0x2367C7D0        180       1  AAA Small Chunk
0x2488DD90        176       1  show session chunk buffer
0x2488DD58        172       1  show session ipsec flow chunk buffer
0x2488DD20        172       1  show session ike sa chunk buffer
0x2367C928        168       1  AAA String Malloc
0x21DE603C        168       1  MRIB route entry
0x23713088        152       2  MRIB IPv6 Init Process
0x23D5F958        140       1  SWIDB_SB: NETBIOS Info
0x22931BB8        136       1  HTTP
0x222CBBCC        136       1  AAA Cursor
0x2290E974        132       1  HTTP
0x2235F198        112       1  Parser Mode
0x22A8DFC0        108       1  MRIB IPv4 Init Process
0x21DE5FF4        108       1  MRIB IPv6 Init Process
0x2291A568        108       1  HTTP
0x22320BB0        104       1  TTY timer block
0x2290F1AC         96       1  HTTP
0x22344910         84       1  Parser Linkage
0x23254E5C         76       1  AAA MI SG NAME
0x2235F20C         76       1  Parser Mode Q1
0x2235F230         76       1  Parser Mode Q2
 
Allocator PC Summary for: I/O
 
    PC          Total   Count  Name
 
------------------ show dmvpn detail ------------------
 
Legend: Attrb --> S - Static, D - Dynamic, I - Incomplete
        N - NATed, L - Local, X - No Socket
        # Ent --> Number of NHRP entries with same NBMA peer
        NHS Status: E --> Expecting Replies, R --> Responding, W --> Waiting
        UpDn Time --> Up or Down Time for a Tunnel
==========================================================================
 
------------------ show crypto ipsec client ezvpn ------------------
 
Easy VPN Remote Phase: 8
 
------------------ show ip nat statistics ------------------
 
Total active translations: 7 (0 static, 7 dynamic; 7 extended)
Peak translations: 67, occurred 1d03h ago
Outside interfaces:
  GigabitEthernet0/1
Inside interfaces:
  GigabitEthernet0/0
Hits: 2636  Misses: 0
CEF Translated packets: 2587, CEF Punted packets: 49
Expired translations: 193
Dynamic mappings:
-- Inside Source
[Id: 1] route-map ROUTE_MAP_1 interface GigabitEthernet0/1 refcount 7
 
Total doors: 0
Appl doors: 0
Normal doors: 0
Queued Packets: 0
 

 
SYSTEM POWER SUPPLY STATUS
==========================
 Power Supply Type: AC
 External Power Supply POE -48V Voltage Status: Not Present
 
SYSTEM FAN STATUS
=================
 Fan 1 OK, Medium speed setting
 
SYSTEM TEMPERATURE STATUS
=========================
 Intake Right temperature: 25 Celsius, Normal
 Intake User temperature: 30 Celsius, Normal
 Exhaust Fan temperature: 33 Celsius, Normal
 Intake Right(Bezel) temperature: 27 Celsius, Normal
 
REAL TIME CLOCK BATTERY STATUS
==============================
 Battery OK (checked at power up)
 
SYSTEM POWER
===============
 Motherboard Components Power consumption = 21.8 W
 Total System Power consumption is: 21.8 W
 
 Environmental information last updated 00:00:10 ago
 

 
Cisco IOS Software, C1900 Software (C1900-UNIVERSALK9-M), Version 15.1(4)M1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Tue 14-Jun-11 17:44 by prod_rel_team
 
ROM: System Bootstrap, Version 15.0(1r)M9, RELEASE SOFTWARE (fc1)
 
hcrptbowan1 uptime is 1 day, 12 hours, 8 minutes
System returned to ROM by reload at 05:04:44 UTC Wed Oct 26 2011
System restarted at 05:06:09 UTC Wed Oct 26 2011
System image file is "usbflash0:c1900-universalk9-mz.SPA.151-4.M1.bin"
Last reload type: Normal Reload
Last reload reason: Reload Command
 
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
 
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
 
If you require further assistance please contact us by sending email to
export@cisco.com.
 
Cisco CISCO1921/K9 (revision 1.0) with 491520K/32768K bytes of memory.
Processor board ID xxxxxxxxxxxxxx
2 Gigabit Ethernet interfaces
1 terminal line
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity disabled.
255K bytes of non-volatile configuration memory.
250864K bytes of USB Flash usbflash0 (Read/Write)
 
License Info:
 
License UDI:
 
-------------------------------------------------
Device#   PID                   SN
-------------------------------------------------
*0        CISCO1921/K9          xxxxxxxxxx
 
Technology Package License Information for Module:'c1900'
 
-----------------------------------------------------------------
Technology    Technology-package           Technology-package
              Current       Type           Next reboot
------------------------------------------------------------------
ipbase        ipbasek9      Permanent      ipbasek9
security      securityk9    Permanent      securityk9
data          None          None           None
 
Configuration register is 0x2102
 

 
---------------------------------------------------------
Root Complex Port 0
---------------------------------------------------------
+++PCI Type 1 Cfg Header:
Bus, Device Number = 0x0, 0x0
Device, Vendor ID = 0x80, 0x177D
Status, Command = 0x10, 0x146
Class code, Revision ID = 0xB, 0x8
Header type, Latency, Cache Line = 0x1, 0x0, 0x8
BAR0 = 0xC
BAR1 = 0x0
Primary, 2nd, sub bus = 0x0, 0x1, 0x22
Secondary status = 0x0
Memory limit & base = 0xFFF0
Prefetch Memory limit & base = 0x1FFF1
Prefetch Memory base Upper 32 = 0x0
Prefetch Memory base Lower 32 = 0x0
IO limit & base = 0x0
Capability pointer = 0x40
Bridge ctrl, intr pin, intr line = 0x3, 0x0, 0x0
 
+++PCI Power Management Capability
PME Cap Reg, next ptr, ID = 0x3, 0x50, 0x1
Pwr Mgmt Data, Pwr Mgmt BSE, Pwr Mgmt CSR = 0x0, 0x0, 0x0
 
+++PCI MSI Capability
MSI Message Control, next ptr, ID = 0x80, 0x70, 0x5
MSI Message Address = 0x0
MSI Message Upper Address = 0x0
MSI Message Data = 0x0
 
+++PCI Express Capability
PCIe cap, next ptr, ID = 0x10, 0x0, 0x10,
Device capability = 0x8001
Device status, control = 0x0, 0x583F
Link capability = 0x336C81
Link status, control = 0x3021, 0x8
Slot capability = 0x0
Slot status, control = 0x140, 0x13F0
Root control = 0xF
Root status = 0x0
 
+++PCIe Advanced Error Reporting Capability
Next capability offset, advance error reporting = 0x0, 0x1
Uncorrectable error status = 0x0
Uncorrectable error mask = 0x0
Uncorrectable error severity = 0x62030
Correctable error status = 0x0
Correctable error mask = 0x0
Advanced error capability and control = 0xA0
Error header log word 0 = 0x0
Error header log word 1 = 0x0
Error header log word 2 = 0x0
Error header log word 3 = 0x0
Root error command = 0x7
Root error status = 0x0
Error source ID, correctable error source ID = 0x0, 0x0
 
---------------------------------------------------------
IOCTRL PCIe US Switch Port
---------------------------------------------------------
+++PCI Type 1 Cfg Header:
Bus, Device Number = 0x1, 0x0
Device, Vendor ID = 0x1F, 0x1137
Status, Command = 0x10, 0x146
Class code, Revision ID = 0x7, 0x0
Header type, Latency, Cache Line = 0x1, 0x0, 0x0
BAR0 = 0x10000000
BAR1 = 0x0
Primary, 2nd, sub bus = 0x1, 0x2, 0x22
Secondary status = 0x0
Memory limit & base = 0x13F01200
Prefetch Memory limit & base = 0xFFF0
Prefetch Memory base Upper 32 = 0x0
Prefetch Memory base Lower 32 = 0x0
IO limit & base = 0x0
Capability pointer = 0x50
Bridge ctrl, intr pin, intr line = 0x3, 0x1, 0x0
 
+++PCI MSI Capability
MSI Message Control, next ptr, ID = 0x80, 0x78, 0x5
MSI Message Address = 0x0
MSI Message Upper Address = 0x0
MSI Message Data = 0x0
 
+++PCI Power Management Capability
PME Cap Reg, next ptr, ID = 0xC803, 0x80, 0x1
Pwr Mgmt Data, Pwr Mgmt BSE, Pwr Mgmt CSR = 0x0, 0x0, 0x0
 
+++PCI Express Capability
PCIe cap, next ptr, ID = 0x10, 0x0, 0x10,
Device capability = 0x8039
Device status, control = 0x9, 0x102F
Link capability = 0xF441
Link status, control = 0x21, 0x0
Slot capability = 0x0
Slot status, control = 0x0, 0x3C0
Root control = 0x0
Root status = 0x0
 
+++PCIe Advanced Error Reporting Capability
Next capability offset, advance error reporting = 0x0, 0x1
Uncorrectable error status = 0x0
Uncorrectable error mask = 0x0
Uncorrectable error severity = 0x62031
Correctable error status = 0x0
Correctable error mask = 0x2000
Advanced error capability and control = 0x0
Error header log word 0 = 0x4000001
Error header log word 1 = 0x10F
Error header log word 2 = 0x1000824
Error header log word 3 = 0x0
Root error command = 0x0
Root error status = 0x0
Error source ID, correctable error source ID = 0x0, 0x0
 
---------------------------------------------------------
Platform Specific Root Complex PCI registers
---------------------------------------------------------
 

 
Crypto Export Restrictions Manager(CERM) Information:
 CERM functionality: ENABLED
 
 ----------------------------------------------------------------
 Resource                       Maximum Limit           Available
 ----------------------------------------------------------------
 Tx Bandwidth(in kbps)          85000                   85000
 Rx Bandwidth(in kbps)          85000                   85000
 Number of tunnels              225                     225
 Number of TLS sessions         1000                    1000
 
 Resource reservation information:
 D - Dynamic
 -----------------------------------------------------------------------
 Client         Tx Bandwidth    Rx Bandwidth    Tunnels    TLS Sessions
                 (in kbps)       (in kbps)
 -----------------------------------------------------------------------
 VOICE           0               0                0         0
 IPSEC           D               D                0         N/A
 SSLVPN          D               D                0         N/A
 
 Statistics information:
 Failed tunnels     : 0
 Failed sessions    : 0
 Failed tx bandwidth: 0
 Failed rx bandwidth: 0
 Failed encrypt pkts: 0
 Failed decrypt pkts: 0
 Failed encrypt pkt bytes: 0
 Failed decrypt pkt bytes: 0
 Passed encrypt pkts: 0
 Passed decrypt pkts: 34
 Passed encrypt pkt bytes: 0
 Passed decrypt pkt bytes: 4904
 
 POWER CONSTANT AND MAX_POWER DETAILS
 =====================================
 Motherboard power constant = 8B
 Motherboard maximum power = 23.1 W
 ETHSW_SM POE power consumption = 0.0 W
 


OVERKILL

join:2010-04-05
Peterborough, ON
reply to Nano_Magnus

And some more:

 
 CIU Interrupt info:
===================
CIU Int  Handler    Count   Context     Level  Name
0        0x2114D97C 429103  0x0         IP2    Pow Interrupt
18       0x2112649C 0       0x2         IP3    fpga interrupt
30       0x211264E4 0       0xE         IP2    USB 0 Over Current i
31       0x211264E4 0       0xF         IP2    USB 1 Over Current i
32       0x210E89C0 0       0x0         IP2    MBOX0 interrupt
33       0x210E89C0 0       0x0         IP2    MBOX1 interrupt
34       0x2110D19C 1       0x1         IP4    Aux Port interrupt
35       0x2110D19C 1       0x0         IP4    Console interrupt
40       0x21128E74 0       0x0         IP2    MSI 0 interrupt
41       0x21128E74 0       0x1         IP2    MSI 1 interrupt
42       0x21129078 0       0x2         IP2    IO-Controller Networ
43       0x21129298 0       0x3         IP2    IO-Controller Mgmt/E
46       0x21126C30 1       0x0         IP2    NPEI RML interrupt
52       0x2112C1A0 4       0x27EFFFA0  IP3    CIU Timer 0 ISR
53       0x2112C1A0 0       0x30173BEC  IP2    CIU Timer 1 ISR
54       0x2112C1A0 1       0x27F00014  IP2    CIU Timer 2 ISR
56       0x2117ABC4 1       0x0         IP2    USB 0 interrupt
 
IP2 Int En: 0x01604F03 C0000001
IP3 Int En: 0x00100000 00040000
IP4 Int En: 0x0000000C 00000000
 
Interrupt Counters:
===================
Int Level Counter: L1 (netio) 457522, L2 0, L3 (mgmt) 4, L4 (console) 2, L5 0, L6 0, l7 (4ms timer) 32623133
CIU IP level int counter: IP2 457755, IP3 4, IP4 2
 
Debug counters/Info:
 ciu_int2_count 457755, ciu_int3_count 4, ciu_int4_count 2
 unknown_ip4_int_cnt 0, unreg_int_cnt 0, wdog_int_cnt 0
 unreg_int_sum1 0x0, unreg_int_sum2 0x0
 spur_timer_int 0, unreg_msi_int_cnt 0
 rml_int 1, npei_int 0, usb1_int 1650
 npei_pcie0_err 0, npei_pcie1_err 0, npei_pcie_timeout 0
 fpa_err 0, pip_err 0, ipd_err 0, mio_err 0
 l2c_err 0, l2c_int_sum 0x00000000, lmc_err 0
 l2d_faddr 0x00000000, l2t_fddr 0x00000000, lmc_faddr 0x00000000
 usb 0/1 over current 0/0
 pcie0_cfg030 0x0000583F, pcie1_cfg030 0x00000000
 pcie0_cfg065 0x00000000, pcie1_cfg065 0x00000000
 pcie0_cfg068 0x00000000, pcie1_cfg068 0x00000000
 pcie0_cfg071 0x00000000, pcie1_cfg071 0x00000000
 pcie0_cfg072 0x00000000, pcie1_cfg072 0x00000000
 pcie0_cfg073 0x00000000, pcie1_cfg073 0x00000000
 pcie0_cfg074 0x00000000, pcie1_cfg074 0x00000000
 pcie0_cfg076 0x00000000, pcie1_cfg076 0x00000000
 pcie0_dbg_info 0x00000000, pcie1_dbg_info 0x00000000
 fpa_int_sum 0x00000000, pip_err_reg 0x00000000, ipd_int_sum 0x00000000
 
MSI Interrupt info:
===================
MSI 128, name: wic_mbrd_hdlc_intr, hdlr 0x2139BF0C, cnt 0, ctx 0x0, slot 0, IO_Controller, NETIO, number 0
MSI 129, name: wic_mbrd_hdlc_intr, hdlr 0x2139BF0C, cnt 0, ctx 0x1, slot 0, IO_Controller, NETIO, number 1
MSI 130, name: wic_mbrd_hdlc_intr, hdlr 0x2139BF0C, cnt 0, ctx 0x2, slot 0, IO_Controller, NETIO, number 2
MSI 131, name: wic_mbrd_hdlc_intr, hdlr 0x2139BF0C, cnt 0, ctx 0x3, slot 0, IO_Controller, NETIO, number 3
MSI 155, name: i2c intr handler, hdlr 0x215455B0, cnt 0, ctx 0x0, slot 0, IO_Controller, NETIO, number 27
MSI 156, name: wic_mbrd_scc_netio_, hdlr 0x2139C4F8, cnt 0, ctx 0x0, slot 0, IO_Controller, NETIO, number 28
MSI 192, name: wic_mbrd_hdlc_error, hdlr 0x2139BF3C, cnt 0, ctx 0x0, slot 0, IO_Controller, ERR, number 0
MSI 193, name: wic_mbrd_hdlc_error, hdlr 0x2139BF3C, cnt 0, ctx 0x1, slot 0, IO_Controller, ERR, number 1
MSI 194, name: wic_mbrd_hdlc_error, hdlr 0x2139BF3C, cnt 0, ctx 0x2, slot 0, IO_Controller, ERR, number 2
MSI 195, name: wic_mbrd_hdlc_error, hdlr 0x2139BF3C, cnt 0, ctx 0x3, slot 0, IO_Controller, ERR, number 3
MSI 212, name: Hsib Error Monitor , hdlr 0x2154B22C, cnt 0, ctx 0x0, slot 0, IO_Controller, ERR, number 20
MSI 220, name: wic_mbrd_scc_mgmt_i, hdlr 0x2139C574, cnt 0, ctx 0x0, slot 0, IO_Controller, MGMT, number 28
MSI 221, name: tdm_exception_handl, hdlr 0x218C5530, cnt 0, ctx 0x104A0000, slot 0, IO_Controller, ERR, number 29
MSI 222, name: GPIO interrupt hand, hdlr 0x2153CC08, cnt 0, ctx 0x10500200, slot 0, IO_Controller, ERR, number 30
 
MSI Enable Reg 0:  0x00000000 00000000
MSI Enable Reg 1:  0x00000000 00000000
MSI Enable Reg 2:  0x00000000 1800000F
MSI Enable Reg 3:  0x00000000 7010000F
NPEI_INT_ENB2:     0x201FFFFE 14280007
Platform DMA brief information:
===============================
DMA Channel 1:  is free.
DMA Channel 2:  is free.
DMA Channel 3:  is free.
 CISCO1921/K9 Network IO Interrupt Throttling:
 throttle count=27006, timer count=4
 throttle counts= 27006 0 0 0 0
 active=0, configured=1
 netint usec=20000, netint mask usec=1000
 real netint usec=4000, real netint mask usec=200
 
CPU Registers:
  Processor Revision ID    : 0xD0708
  Configuration            : 0x8000C48B
  Status                   : 0x50009FE1
  Cause                    : 0x0
  Count                    : 0xE840350A
  Compare                  : 0xE85C6CBE
  WatchLo  (0)  : 0x0
  WatchLo  (1)  : 0xEEFAF5DFFCBFCFF8
  WatchHo  (0)  : 0x80000000
  WatchHo  (1)  : 0x80000000
  CacheErr (D)  : 0x2A70
  TagLo    (I)  : 0xCFF1FFFFFFFFF583
  TagLo    (D)  : 0x0
  DataLo   (I)  : 0xFFFFFFFFFFFFFFFF
  DataLo   (D)  : 0x0
  TagHi    (D)  : 0x0
  DataHi   (I)  : 0x3
  DataHi   (D)  : 0x0
  CVM Control   : 0xB00003F0
  CVM Mem Ctrl  : 0x46102
  CVM Count     : 0x3A30A8F5A1F6
  MultiCore Dbg : 0x0
  CIU PP RST    : 0xE
  CIU MBOX CLRX0 : 0x0
  CIU MBOX SETX0 : 0x0
  CIU MBOX CLRX1 : 0x0
  CIU MBOX SETX1 : 0x0
  BOOT_CFG_REG 0 : 0x200B13F1EC0
  BOOT_TIM_REG 0 : 0x1000080C0869044
  BOOT_CFG_REG 1 : 0x0
  BOOT_TIM_REG 1 : 0xFFFFFFFFFFFFFFF
  BOOT_CFG_REG 2 : 0xB00F1010
  BOOT_TIM_REG 2 : 0x13FFE8208A28186
  BOOT_CFG_REG 3 : 0xB00F1020
  BOOT_TIM_REG 3 : 0x13FFE8208A28186
  BOOT_CFG_REG 4 : 0xB00F1030
  BOOT_TIM_REG 4 : 0x13FFE8208A28186
  BOOT_CFG_REG 5 : 0xB00F1040
  BOOT_TIM_REG 5 : 0x13FFE8208A28186
  BOOT_CFG_REG 6 : 0xB00F1050
  BOOT_TIM_REG 6 : 0xBFFC4000722000
  BOOT_CFG_REG 7 : 0xB00F1060
  BOOT_TIM_REG 7 : 0xBFFC4000722000
 
On-board SPD data :
Size of dimm                 = 512 Megabytes
Memory Type                  = 0x8
Row Addresses                = 0xD
Column Address               = 0xA
Module Rows                  = 0x60
Data Width                   = 0x40
Voltage Interface            = 0x5
Cycle Time                   = 0x30
Access Time                  = 0x45
Configuration Type           = 0x0
Refresh Rate/Type            = 0x82
Primary Width                = 0x10
Error Width                  = 0x0
Burst Lengths                = 0xC
Number of Banks              = 0x8
Cas Latency                  = 0x30
DIMM Mechanical              = 0x1
DIMM Type                    = 0x2
Module Attributes            = 0x0
General Attributes           = 0x3
Min Cycle Time, CAS of 2     = 0x3D
Access Clock Cycle, CAS of 2 = 0x45
Min Cycle Time, CAS of 1     = 0x0
Access Clock Cycle, CAS of 2 = 0x0
Row Precharge                = 0x3C
Row Active to Row Active     = 0x28
RAS CAS Delay                = 0x3C
Ras Pulse Width              = 0x2D
Rank Density                 = 0x80
COM Setup Time               = 0x20
COM Hold Time                = 0x27
Data Setup Time              = 0x10
Data Hold Time               = 0x17
COM Setup Time               = 0x20
COM Setup Time               = 0x20
COM Setup Time               = 0x20
COM Setup Time               = 0x20
Write Recovery Time          = 0x3C
Write to Read Cmd Delay      = 0x1E
Read to Precharge Delay      = 0x1E
Probe Characteristics        = 0x0
Byte Ext to tRC and tRFC     = 0x6
Min Act to Act Refresh       = 0x3C
Min Refresh to Act Refresh   = 0x7F
Max Device Cycle Time        = 0x80
Device DQS-DQ Skew for DQS   = 0x18
Read Data Hold Skew Factor   = 0x22
PLL Relock Time              = 0x0
Vendor Id                    = 0000000000000000
Module Part Number           =
Module Revision Code         = 0000
        SPD contents (hex):
         0x00: 80 08 08 0D 0A 60 40 00 05 30 45 00 82 10 00 00
         0x10: 0C 08 30 01 02 00 03 3D 45 00 00 3C 28 3C 2D 80
         0x20: 20 27 10 17 3C 1E 1E 00 06 3C 7F 80 18 22 00 00
         0x30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 12 DF
         0x40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
         0x50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
         0x60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
         0x70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 
DIMM0 SPD data :
Memory Slot Empty
FPA Buffer pools information:
        FPA INT SUM: 0x0000000000000000, ENB: 0x000000000FFFFFFF
        FPA CTL STATUS: 0x0000000000004000
        FPA QUE(n) AVAILABLE:
        QUE(0): 0x00000000000001EA, QUE(1): 0x0000000000000FFA
        QUE(2): 0x000000000000001D, QUE(3): 0x0000000000000400
        QUE(4): 0x0000000000000000, QUE(5): 0x0000000000000000
        QUE(6): 0x0000000000000000, QUE(7): 0x0000000000000000
        FPA WART CTL: 0x0000000000000000, STATUS: 0x0000000000000000
        FPA QUE(n) PAGE INDEX:
        QUE(0): 0x000000000000000E, QUE(1): 0x000000000000007F
        QUE(2): 0x0000000000000000, QUE(3): 0x000000000000001F
        QUE(4): 0x0000000000000000, QUE(5): 0x0000000000000000
        QUE(6): 0x0000000000000000, QUE(7): 0x0000000000000000
        FPA QUE EXE: 0x0000000000000000, ACT: 0x0000000000000000
 
Cavium IPD Registers:
        IPD_1ST_MBUF_SKP:0x0000000000000000, IPD_NOT_1ST_MBUF:0x0000000000000000
        IPD_PKT_MBUF_SZE:0x00000000000000C0, IPD_CTL_STATUS  :0x0000000000000209
        IPD_WQE_FPA_QUE :0x0000000000000001, IPD_SUB_BP_CNT  :0x0000000001FFFFFF
        IPD_BP_PRT_REDE :0x0000000000000001, IPD_RED_PT_EN2  :0x0000000000000000
        IPD_RED_QUE(0)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(1)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(2)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(3)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(4)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(5)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(6)_PARAM :0x0001FF0100000000
        IPD_RED_QUE(7)_PARAM :0x0001FF0100000000
        IPD_QOS(0)_RED_MARKS :0x0000010000000000
        IPD_QOS(1)_RED_MARKS :0x0000010000000000
        IPD_QOS(2)_RED_MARKS :0x0000010000000000
        IPD_QOS(3)_RED_MARKS :0x0000010000000000
        IPD_QOS(4)_RED_MARKS :0x0000010000000000
        IPD_QOS(5)_RED_MARKS :0x0000010000000000
        IPD_QOS(6)_RED_MARKS :0x0000010000000000
        IPD_QOS(7)_RED_MARKS :0x0000010000000000
 
Cavium PKO Registers:
        PKO_MEM_COUNT(0):0x000000000000567A, PKO_MEM_COUNT(1):0x00000000003E79CC
        PKO_MEM_DEBUG(0):0x1000FFE40041009A, PKO_MEM_DEBUG(1):0x00009A000E19BECA
        PKO_MEM_DEBUG(10):0x0000000000000000, PKO_MEM_DEBUG(11): 0x0000000000000000
        PKO_MEM_DEBUG12: 0x1000FFE4004100DA, PKO_MEM_DEBUG13: 0x0000DA000E19D3CA
        PKO_MEM_DEBUG14: 0x0000000000000000, PKO_MEM_DEBUG2: 0x00011A000E19B7CA
        PKO_MEM_DEBUG3: 0x0000000000000000, PKO_MEM_DEBUG4: 0x00011A0400000180
        PKO_MEM_DEBUG5: 0x0000000E19C6E400, PKO_MEM_DEBUG6: 0x0000000001991100
        PKO_MEM_DEBUG7: 0xF808E01C22208659, PKO_MEM_DEBUG8: 0x000000000000003F
        PKO_MEM_DEBUG9: 0x0001003800010038, PKO_MEM_PORT_PTRS: 0x1FE0000000000000
        PKO_MEM_PORT_QOS: 0x1FE0000000000000, PKO_MEM_PORT_RATE0: 0x0000000000000000
        PKO_MEM_PORT_RATE1: 0x0000000000000000, PKO_MEM_QUEUE_PTRS: 0xFFE01C2220C00000
        PKO_MEM_QUEUE_QOS: 0x1FE0000000000000, PKO_REG_BIST_RESULT: 0x0000000000000000
        PKO_REG_CMD_BUF: 0x00000000 0x0020007F, PKO_REG_CRC_ENABLE: 0x0000000000000000
        PKO_REG_DEBUG0: 0x0000000000000000, PKO_REG_DEBUG1: 0x0000000000000000
        PKO_REG_DEBUG2: 0x0000000000000000, PKO_REG_DEBUG3: 0x0000000000000000
        PKO_REG_ENGINE_INFLIGHT: 0x0000004400004444, PKO_REG_ENGINE_THRESH: 0x0000000000000000
        PKO_REG_ERROR: 0x0000000000000000, PKO_REG_FLAGS: 0x0000000000000007
        PKO_REG_GMX_PORT_MODE: 0x0000000000000002, PKO_REG_INT_MASK: 0x0000000000000000
        PKO_REG_QUEUE_MODE: 0x0000000000000000, PKO_REG_QUEUE_PTRS1: 0x0000000000000000
        PKO_REG_READ_IDX: 0x0000000000000000
 
Watchodg information :
====================
L1 watchdog is ON
  Address = 0x8001070000000500; Value = 0x3A66553A692
    Mode = 2
    Length = 14953 (1999 millisec)
L2 watchdog is ON - watchdog 0 is used
  wdog_timer_limit address 0x10500494, value 0x1312D00
 
UART Information:
==============
AUX (Uart 0)  Port Registers:
-----------------------
 SR: 0x6  IER: 0xD   IIR: 0xC1  LCR: 0x7
MCR: 0x3  LSR: 0x60  MSR: 0x0   FCR: 0xC1
TFL: 0x0  RFL: 0x0
Parity Error = 0, Framing Error = 0, Receive Error = 0
Outcount = 0, TotalOut = 39, Incount = 0, Total In = 0
Overrun = 0, Overflow = 0
Brk Character: Received 0, Brk Processed 0
 
Console (Uart 1) Port Registers:
-------------------
 SR: 0x6  IER: 0xD   IIR: 0xC1  LCR: 0x7
MCR: 0x3  LSR: 0x60  MSR: 0x0   FCR: 0xC1
TFL: 0x0  RFL: 0x0
Parity Error = 0, Framing Error = 0, Receive Error = 0
Outcount = 0, TotalOut = 39, Incount = 0, Total In = 0
Overrun = 0, Overflow = 0
Brk Character: Received 0, Brk Processed 0
 
TLB entries :
===========
Entries used: 25
SN  Size  paddr                                   vaddr                 perm
0   16MB  0x00000000_00000000:0x00000000_01FFFFFF 0x20000000:0x21FFFFFF 3,O,V
1   16MB  0x00000000_02000000:0x00000000_03FFFFFF 0x22000000:0x23FFFFFF 3,O,V
2   4MB   0x00000000_04000000:0x00000000_047FFFFF 0x24000000:0x247FFFFF 3,O,V
3   1MB   0x00000000_04800000:0x00000000_049FFFFF 0x24800000:0x249FFFFF 3,O,V
4   1MB   0x00000000_04A00000:0x00000000_04BFFFFF 0x24A00000:0x24BFFFFF 3,O,V
5   256KB 0x00000000_04C00000:0x00000000_04C7FFFF 0x24C00000:0x24C7FFFF 3,O,V
6   256KB 0x00000000_04C80000:0x00000000_04CFFFFF 0x24C80000:0x24CFFFFF 3,O,V
7   256KB 0x00000000_04D00000:0x00000000_04D7FFFF 0x24D00000:0x24D7FFFF 3,O,V
8   64KB  0x00000000_04D80000:0x00000000_04D9FFFF 0x24D80000:0x24D9FFFF 3,O,V
9   16KB  0x00000000_04DA0000:0x00000000_04DA7FFF 0x24DA0000:0x24DA7FFF 3,O,V
10  16KB  0x00000000_04DA8000:0x00000000_04DAFFFF 0x24DA8000:0x24DAFFFF 3,W,V
11  16KB  0x00000000_04DB0000:0x00000000_04DB7FFF 0x24DB0000:0x24DB7FFF 3,W,V
12  16KB  0x00000000_04DB8000:0x00000000_04DBFFFF 0x24DB8000:0x24DBFFFF 3,W,V
13  64KB  0x00000000_04DC0000:0x00000000_04DDFFFF 0x24DC0000:0x24DDFFFF 3,W,V
14  64KB  0x00000000_04DE0000:0x00000000_04DFFFFF 0x24DE0000:0x24DFFFFF 3,W,V
15  1MB   0x00000000_04E00000:0x00000000_04FFFFFF 0x24E00000:0x24FFFFFF 3,W,V
16  4MB   0x00000000_05000000:0x00000000_057FFFFF 0x25000000:0x257FFFFF 3,W,V
17  4MB   0x00000000_05800000:0x00000000_05FFFFFF 0x25800000:0x25FFFFFF 3,W,V
18  16MB  0x00000000_06000000:0x00000000_07FFFFFF 0x26000000:0x27FFFFFF 3,W,V
19  64MB  0x00000000_08000000:0x00000000_0FFFFFFF 0x28000000:0x2FFFFFFF 3,W,V
20  16MB  0x00011B00_10000000:0x00011B00_11FFFFFF 0x10000000:0x11FFFFFF 0,W,V
21  16MB  0x00011C00_18000000:0x00011C00_19FFFFFF 0x18000000:0x19FFFFFF 0,W,V
22  64MB  0x00000004_10000000:0x00000004_17FFFFFF 0x30000000:0x37FFFFFF 0,W,V
23  64MB  0x00000004_18000000:0x00000004_1FFFFFFF 0x38000000:0x3FFFFFFF 0,W,V
24  16MB  0x00000000_0E000000:0x00000000_0FFFFFFF 0x0E000000:0x0FFFFFFF 0,W,V
 
0 = write-thru(wt)       1 = wt, write-allocate,    2 = uncached
3 = non-coherent         4 = coherent, excl,        5 = coh excl on write
6 = coh update on write
W = ReadWrite, O = ReadOnly,         V = Valid, I = Invalid
 
LED STATUS:
==========
 
FRONT PANEL LED CONTROL REGISTER
--------------------------------
SYSTEM   : GREEN
ACTIVITY : GREEN
POE      : OFF
 
GE LINK LED, SPEED LED
----------------------
PORT 0   : GREEN, 2 (100Mb/s)
PORT 1   : GREEN, 2 (100Mb/s)
 
LED CONTROL REGISTER (Value is number of 1/8 seconds
----------------------------------------------------
ON Time    : 3
OFF Time   : 3
PAUSE Time : 7
 
USB CONSOLE LED, RJ45 CONSOLE LED
---------------------------------
USB        : OFF
RJ45       : GREEN
 
Platform Revisions/Versions :
===========================
FPGA       : 1.02   [Val = 0x102]
Board Rev  : 1      [Val = 0x10A;  Type = 10]
Env Rev    : 4.5    [Val = 0x405, Bit 15 = 0]
PSEQ Rev   : 3.05   [Val = 0x305]
I/O Ctl Nm : DA 1.1 [Val = 0x44410101]
I/O Ctl Ver: 2      [Val = 0x20315447]
 
CPU information :
---------------
Company ID   = 0xD
Processor ID = 0x7
Revision     = 0x8
Company OPTs = 0x0
USB Con BL : 1.01   (Boot Loader)
USB Con FW : 2.02   (Application Firmware)
USB Con FWU: 2.02   (Application Firmware Upgrade)
 
IOS        :
Cisco IOS Software, C1900 Software (C1900-UNIVERSALK9-M), Version 15.1(4)M1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Tue 14-Jun-11 17:44 by prod_rel_team
 
ROMMON (Readonly) :
System Bootstrap, Version 15.0(1r)M9, RELEASE SOFTWARE (fc1)
 
Technical Support: http://www.cisco.com/techsupport
 
Copyright (c) 2010 by cisco Systems, Inc.
 

sk1939
Premium
join:2010-10-23
Mclean, VA
kudos:10

Interesting to see how little juice it uses compared to the 3925/45.



OVERKILL

join:2010-04-05
Peterborough, ON
reply to Nano_Magnus

And of course to top it all off, this router is giving me issues trying to get a functional Easy VPN server..... Something that works fine on a pile of 800-series routers I have in service..... with very similar configs!!!

GRRRRRRRRRRRRR


HELLFIRE
Premium
join:2009-11-25
kudos:13

So other than Cavium, they STILL don't tell you exactly what CPU is used on it *sighs*
Any word on what it does with services configured?

TAC unable to help you with EasyVPN? Best of luck on the configs OVERKILL.

Regards



OVERKILL

join:2010-04-05
Peterborough, ON

said by HELLFIRE:

So other than Cavium, they STILL don't tell you exactly what CPU is used on it *sighs*
Any word on what it does with services configured?

TAC unable to help you with EasyVPN? Best of luck on the configs OVERKILL.

Regards

No, haven't had a chance. Getting the VPN working is imperative, so that has been my focus. I'm working with TAC on it now.

Nano_Magnus

join:2011-10-19
reply to Nano_Magnus

Thanks for the help, now I'm tryinng to test vpn but I can't enable the evaluation licenses (securityk9 and datak9)

I'm still searching information about installing licenses and using evaluation licenses, but I need a litle orientation about how licenses work, and what licenses or IOS are needed for VPN site to site with IPSEC.

P.S. Sorry for my english



OVERKILL

join:2010-04-05
Peterborough, ON

said by Nano_Magnus:

Thanks for the help, now I'm tryinng to test vpn but I can't enable the evaluation licenses (securityk9 and datak9)

I'm still searching information about installing licenses and using evaluation licenses, but I need a litle orientation about how licenses work, and what licenses or IOS are needed for VPN site to site with IPSEC.

P.S. Sorry for my english

CCP has a license manager feature IIRC. I may be wrong though, LOL

I've been pretty happy with the VPN performance of this router. Running 3x site-to-sites as well as an Easy VPN server on it.

bigsy

join:2001-07-18
ireland
kudos:1
reply to Nano_Magnus

said by Nano_Magnus:

Thanks for the help, now I'm tryinng to test vpn but I can't enable the evaluation licenses (securityk9 and datak9)

I'm still searching information about installing licenses and using evaluation licenses, but I need a litle orientation about how licenses work, and what licenses or IOS are needed for VPN site to site with IPSEC.

There's a useful link to ISR G2 licensing at »www.cisco.com/en/US/prod/collate···985.html.

You download a temporary license by following the 'if you do not have a PAK, please click here for Demo and Evaluation licenses' link at »www.cisco.com/go/license. At this link you'll find a list of ISR G2 temporary licenses. To download one you need both the product ID (e.g. 'CISCO1921/K9') and serial no.

You'll need to have created a Cisco login ID in order to do the above.

Once the license is on your ISR (or tftp server etc.), install it using:

license install xxxxx.lic

For example:

Cisco-1921#license install FCZxxx_xxx.lic 
Installing licenses from "FCZxxx_xxx.lic" 
 
Expiring licenses are being installed in the device with
UDI "CISCO1921/K9:FCZxxx" for the following features: 
 
        Feature Name: ios-ips-update
        Start Date:         N/A, End Date: Oct 24 2012
 
PLEASE  READ THE  FOLLOWING TERMS  CAREFULLY. 
 
[Licensing stuff snipped]
 
ACCEPT? [yes/no]: yes
Installing...Feature:ios-ips-update...Successful:Supported
1/1 licenses were successfully installed 
0/1 licenses were existing licenses
0/1 licenses were failed to install
 
Cisco-1921#sh license
Index 1 Feature: ipbasek9                       
        Period left: Life time
        License Type: Permanent
        License State: Active, In Use
        License Count: Non-Counted
        License Priority: Medium
Index 2 Feature: securityk9                     
        Period left: Life time
        License Type: Permanent
        License State: Active, In Use
        License Count: Non-Counted
        License Priority: Medium
Index 3 Feature: datak9                         
        Period left: Life time
        License Type: Permanent
        License State: Active, In Use
        License Count: Non-Counted
        License Priority: Medium
Index 4 Feature: SSL_VPN                        
        Period left: Not Activated
        Period Used: 0  minute  0  second  
        License Type: EvalRightToUse
        License State: Not in Use, EULA not accepted
        License Count: 0/0  (In-use/Violation)
        License Priority: None
Index 5 Feature: ios-ips-update                 
        License Type: Paid Subscription
        Start Date:         N/A, End Date: Oct 24 2012
        License State: Active, Not in Use
        License Count: Non-Counted
        License Priority: Medium
Index 6 Feature: WAAS_Express                   
        Period left: Not Activated
        Period Used: 0  minute  0  second  
        License Type: EvalRightToUse
        License State: Not in Use, EULA not accepted
        License Count: Non-Counted
        License Priority: None
 

Nano_Magnus

join:2011-10-19
reply to Nano_Magnus

Ok, I need to upgrade my IOS, and I need to had a contract to be able to download upgrades, but I'm not sure about to what I need.

I found a smatnet extended service, here is a link: »www.softchoice.com/catalog/en-us···C-HR7354

I need to config a site to site vpn, do I need to find something else? or I'm ok with that service?

Thanks


Nano_Magnus

join:2011-10-19
reply to Nano_Magnus

mmm now I found that I don't need a contract service to download the upgrade, I only need to buy the license Cisco L-SL-19-SEC-K9= Cisco IOS Security License.

I suposse that I only need the license to configure the VPN, am I right?



OVERKILL

join:2010-04-05
Peterborough, ON

said by Nano_Magnus:

mmm now I found that I don't need a contract service to download the upgrade, I only need to buy the license Cisco L-SL-19-SEC-K9= Cisco IOS Security License.

I suposse that I only need the license to configure the VPN, am I right?

Yes, you need the sec license.

SmartNet is also cheap and will let you get the OS updates.

bigsy

join:2001-07-18
ireland
kudos:1
reply to Nano_Magnus

said by Nano_Magnus:

I suposse that I only need the license to configure the VPN, am I right?

Why don't you install the temporary sec license? That will give you 60 days to play with the features, configure the VPN and confirm that it does everything you need before you pay for the license upgrade.

Also, as OVERKILL See Profile states, SMARTnet doesn't cost much (especially relative to the sec license you're looking at). It will also give you access to the various Cisco VPN clients in addition to IOS upgrades.


OVERKILL

join:2010-04-05
Peterborough, ON

said by bigsy:

said by Nano_Magnus:

I suposse that I only need the license to configure the VPN, am I right?

Why don't you install the temporary sec license? That will give you 60 days to play with the features, configure the VPN and confirm that it does everything you need before you pay for the license upgrade.

Also, as OVERKILL See Profile states, SMARTnet doesn't cost much (especially relative to the sec license you're looking at). It will also give you access to the various Cisco VPN clients in addition to IOS upgrades.

I have to say, buying the device with the sec license to begin with would have been a less expensive choice.