Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1778
Views
0
Helpful
5
Replies

1841 router use as a qos box

Go to solution
chirath822
Level 1
Level 1

‎11-18-2019 08:28 AM

Hi all

I have fiber to home broadband connection from my ISP and it gives me 100Mb down and 50Mb upload speed. the GPON unit is Huawei and it got Wifi too.it does not have Qos . My monthly quota is 90GB (45 peak and 45 off peak)

 

my issue is data quota will get exceeded most of the time. kids are watching videos and cannot control it. same time I have DVR connected to this and it keeps pushing videos with 10Mb speed or more to our phones.  so earlier I used Cyberoam 15ing with QoS policy but unfortunately, i had to return the unit back. then I got a 1841 router from my friend and tried few steps and still unable to make it work. 

 

see attached PDF for more details.  

 

when I tried to connect to DVR from outside it seems not allow me to connect. can you help me on this, please

 

see show run

 

Router#show run
Router#show running-config
Building configuration...

Current configuration : 2329 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
no logging buffered
no logging console
!
no aaa new-model
!
resource policy
!
ip cef
!
!
!
!
no ip domain lookup
ip inspect name sdm_ins_in_100 cuseeme
ip inspect name sdm_ins_in_100 dns
ip inspect name sdm_ins_in_100 ftp
ip inspect name sdm_ins_in_100 h323
ip inspect name sdm_ins_in_100 sip
ip inspect name sdm_ins_in_100 icmp
ip inspect name sdm_ins_in_100 imap
ip inspect name sdm_ins_in_100 pop3
ip inspect name sdm_ins_in_100 netshow
ip inspect name sdm_ins_in_100 rcmd
ip inspect name sdm_ins_in_100 realaudio
ip inspect name sdm_ins_in_100 rtsp
ip inspect name sdm_ins_in_100 esmtp
ip inspect name sdm_ins_in_100 sqlnet
ip inspect name sdm_ins_in_100 streamworks
ip inspect name sdm_ins_in_100 tftp
ip inspect name sdm_ins_in_100 tcp
ip inspect name sdm_ins_in_100 udp
ip inspect name sdm_ins_in_100 vdolive
!
!
!
username admin privilege 15 secret 5 $1$4BXd$FZGzOENCEFO/Z2.tJXo590
!
!
!
!
!
interface FastEthernet0/0
description $ETH-WAN$
ip address 192.168.1.2 255.255.255.0
ip access-group sdm_fastethernet0/0_in in
ip nat outside
ip inspect sdm_ins_in_100 out
ip virtual-reassembly
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
ip virtual-reassembly
shutdown
duplex auto
speed auto
!
interface FastEthernet0/1/0
!
interface FastEthernet0/1/1
!
interface FastEthernet0/1/2
!
interface FastEthernet0/1/3
!
interface Vlan1
ip address 192.168.0.1 255.255.255.0
ip access-group sdm_vlan1_in in
ip nat inside
ip inspect sdm_ins_in_100 in
ip virtual-reassembly
!
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 192.168.1.1
!
!
ip http server
ip http authentication local
no ip http secure-server
ip nat inside source list 1 interface FastEthernet0/0 overload
!
ip access-list extended sdm_fastethernet0/0_in
remark CCP_ACL Category=1
permit ip any any
permit udp any any
permit tcp any any
ip access-list extended sdm_vlan1_in
remark CCP_ACL Category=1
permit ip any any
permit tcp any any
permit udp any any
!
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 192.168.0.0 0.0.0.255
!
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line vty 0 4
login local
!
scheduler allocate 20000 1000
end

 

 

thanks

 

chirath

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
chirath822
Level 1
Level 1
In response to chirath822

‎11-21-2019 09:57 PM

Hi All

 

Finally i managed to get this fixed by adding DMZ location to Cisco router and then Added static nat to DVR 

all looks ok now. 

 

Thank you for all of your contribution

 

 

View solution in original post

0 Helpful
5 Replies 5

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎11-18-2019 09:30 AM

You can use NBAR as per the post and  information you provided :

 

below guide to start with :

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/qos_nbar/configuration/xe-16/qos-nbar-xe-16-book/clsfy-traffic-nbar.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
chirath822
Level 1
Level 1
In response to balaji.bandi

‎11-18-2019 11:02 PM

Hi
Thank you for your email

before go to this level, i need to access my DVR via both routers - I can
access via ISP router , but cannot access it via Cisco one . can you help
me on this please
0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to chirath822

‎11-19-2019 12:38 AM

where is the DVR what IP address is this ? do you have route available to reach that device.

 

a best friend is traceroute to DVR IP and see where it dropping?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
chirath822
Level 1
Level 1
In response to balaji.bandi

‎11-19-2019 02:42 AM

From the First ISP router, I add a port forwarding rule to cisco router - 192.168.1.2 .  then cisco 1841 router I added another port forwarding rule to DVR (192.168.0.10) . how ever it does not seems to connect to DVR.  phone app says cannot access. the DDNS URL cannot be accessed. 

 

then I tried this. connect LAN cable to ISP router lan side - (192.168.1.0/24)  and tried to access DVR which is connected to Cisco router LAN side. i was not able to do that either.

 

is this incorrect?

Thank you 

chirath 

0 Helpful

Go to solution
chirath822
Level 1
Level 1
In response to chirath822

‎11-21-2019 09:57 PM

Hi All

 

Finally i managed to get this fixed by adding DMZ location to Cisco router and then Added static nat to DVR 

all looks ok now. 

 

Thank you for all of your contribution

 

 

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card