Hi dear Cisco community
As a non CCNA engineer (please excuse me) so I'm not very familiar with the IOS and CLA.
Nevertheless I've decided, or I shall rather say I was forced, to start my adventure with the CISCO ISR 887 VA-M by my lovely ISP Vodafone. Their router is well... utterly s%$# at best and drops my VDSL connection several times a day and cannot work in bridge mode.
Router Configuration
After my research I have found that CISCO 887 VA-M router is officially certified by BT Openreach for VDSL2 (80Mb/20Mb) connection and it cost very reasonable money. So I bought one and I'm kind of stuck as device is in factory reset condition.
I have two options on how to configure it that depends on few factors.
I have static IP from my ISP, an ESXi server with 4 NICs running few VMs that are sitting in DMZ with few services NATed to local IPs and a WS2016 Domain Controller running DNS and DHCP that will obviously be on LAN. Nothing fancy but without better knowledge of the device architecture and IOS it get's quite frustrating. I would also like to use VPN client to connect remotely.
I have a working setup that was previously using WatchGuard firewall through Virgin Router running in a bridge mode.
It was all set and running using dynDNS but as Virgin is a ripoff (£65 no static IP vs £24 on Vodafone with static IP a month) I have decided to swap the ISP.
So, I can swap entirely to CISCO 887 VA-M if this device can provide me access to the built-in web console for Firewall, NAT, VLANs, VPN and routing. Unfortunately I could not find any information if such feature is available. Does any one of you guys know if the 887 VA-M provides it or if there is an alternate way through for example a desktop app? (CCP is a no-go as it requires Java 1.6 or lower).
If there is no web or desktop app then I could continue using my existing setup and 887 in a bridge mode.
So far I have configured all LAN ports on VLAN1, a C class IP address for the VLAN1, I can ping it and all ports are in no shutdown (as well as VLAN) as an exercise.
Taking above to the account could you please answer and help with following:
1. Is there web or software console for FW, NAT, VLAN, L3 and VPN? If yes, how to configure, if not go to 5.
2. How to configure PPPoE for VDSL2 connection?
3. Would the configuration with NAT, FW and VPN still allow me to use full VDSL2 bandwidth (80/20 Mbs)? If not, go to 5.
4. Knowing my setup would you suggest to configure spanning tree (rest of the L2 switches are unmanaged in flat topology)
5. How to configure PPPoE vor VDSL2 in bridge mode?
6. How to disable PoE on FETH0 FETH1?
7. What else should I configure to keep it stable and safe?
I don't need to use PoE as I have dedicated PoE switch for my CCTV, I'm also not too worried about power saving so I would prefer to run everything on 100% always on (except PoE)
There are plenty of options in the help guide but I'm not familiar with many of them:
https://www.cisco.com/c/en/us/td/docs/routers/access/800/software/configuration/guide/SCG800Guide/SCG800_Guide_BookMap_chapter_010.html
I know that I ask for a big favour, but it would be greatly appreciated.
Thanks in advance.
