I've found that you cannot do this, at least not when you do nat to a pool
of addresses. You have to do static nat, then overload the rest. I tried
adding overload to the end of my existing nat statment with the pool, it
started PATing the addresses from the beginning. Instead of using the 1:1
The IP address that your VPN Client gets from the router, are you
advertising that route through your network?
JM wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hello
I am trying to run VPN beetwen VPN Client 3.6.2.A and Cisco 2651.
On Cisco router I have:
Software with
do you have another 1720 router? you can try taking the flash out, putting
it in the good 1720, fixing the config and put it back.
ciscoGo2002 wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hello folks,
A friend of mine have a serius problem with a Cisco
1720 router. This
You need a default route sending traffic to your ISPs router, if
12.124.201.146 255.255.255.252 is what you are supposed to put on your
serial, then you need a ip route 0.0.0.0 0.0.0.0 12.124.201.145. or the ip
default-gateway 12.124.201.145.
You need to tell your router which next hop to route
If you do a show interface, is your ethernet port up, up?
Brian Zeitz wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Me = dumb :O
OK thanks, I was confused with my default gateway. Another command I
forget is
dialer-list 1 protocol ip permit
I can ping my ISP's DNS now,
Did you use the ip default-gateway command? I would try using ip route
0.0.0.0 0.0.0.0 12.124.201.145.
Brian Zeitz wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Me = dumb :O
OK thanks, I was confused with my default gateway. Another command I
forget is
dialer-list 1
I can't ping your serial interface either, leads me to believe your route
table isn't correct. I can ping your providers interface though, .146 Try
using the ip route 0.0.0.0 0.0.0.0 12.124.201.145 command.
Brian Zeitz wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Me = dumb :O
Does anybody have any experience with Expand Networks Acellerator products?
Could anybody share with me the results you've seen with them? More
specifically, if you've used them over a VPN?
--
Ben Woltz
[EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=56537t
Can you post the config of the router? Does the Ethernet interface have
sub-interfaces? One for each subnet? The answer is probably in the
configuration of the interface on the router. What IP and Subnet mask does
it have? Could be that the subnet mask of the router Ethernet is
255.255.240.0
192.168.0.100 is what is doing the real routing then for 192.168.2.0/24. If
you follow the path, from a 192.168.0.20 machine to 192.168.2.20 say, it
goes from 192.168.0.20, to the default gateway, 192.168.0.1 which checks the
route table and sends it to 192.168.0.100 (which is on the same
You tried show cdp neighbors detail command? Shows you more detail
information about the neighbors and might include hostname.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48629t=48603
--
FAQ, list archives, and subscription
Shunning refers to the functionality of the IDS sensor to dynamically create
and ACL that denies the attacker access and apply it to a specific
interface. For example, you would have it setup that when the sensor sees
an attack from 65.65.65.65 it would create and ACL denying 65.65.65.65
access
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=46200t=46159
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
You just need to make sure there is a network in the topology for the subnet
that your smtp server is on. Then, within that network in the topology you
need to add a server there that is the smtp server. Then you point the
email notifications to that server. Basically, CSPM needs to know where
Can anyone recommend one of the Boson PIX tests that is good? I am now
scared to get Boson test because I got one for the IDSPM test and it was
horrible. Didn't prepare me at all for the exam. Seems like they are not
consistent.
Message Posted at:
I'm not sure if this is exactly what you are referring to Craig, but it
might help. We also have had problems doing VPN Client connections behind
PAT. Its only in places where the DSL/Cable router cannot support PAT on
unknown ports, like UDP 1 which is default for VPN 3000 connections.
You could also try copying the file via FTP. Since FTP is a TCP protocol it
has some reliable built into it. I've copied images via TFTP where it told
me it was successful, but when I reloaded it came up in rommon and dir
flash: said bad checksum. Command is copy ftp flash:
Message Posted
I've seen some of Cisco's private VLAN setup. The way I've seen it
implemented is on a DMZ switch. Say you have 3 servers on your DMZ, web,
mail, and ftp. If each of those servers is plugged into a different port on
the same switch and on the same network, you can configure each of them to
be
All 4 passing scores are right around 700. Give or take 10. Mine were 690
for Routing, 699 for Switching, 703 for Remote Access, and 692 for Support.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=45460t=45455
--
FAQ, list
I think you can do this with Reverse Route Injection. I haven't done it
before but from what I gather you inject a route for the Client's network
into the concentrator's route table. Therefore other client's would have a
route to that client's network. Look into it. You configure it under
I am having a similar problem. We have users with iPaq handhelds connecting
to 3000 series with Movian client. Movian client 1.0 works, but the newest
Movian does not work. Version 2.0 I believe. But, version 2.0 does work if
the username/password is internal user to the concentrator. We do
21 matches
Mail list logo
