Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
713
Views
0
Helpful
4
Replies

Cant connect between subnets

Michel_VZ
Level 1
Level 1

‎04-06-2011 02:26 AM - edited ‎03-04-2019 11:59 AM

Hello,

Im currently a student and i cant figure this one out. I have attached a packet tracer file for you to review.

I need to make a vpn connection between pc0 and pc1, they are obviously in a different subnet. I have configured RIP on all the routers and interfaces but i cant seem to get a succesful ping.

Any help is greatly appreciated.

Labels:
84422-cisco.pkt.zip
0 Helpful
4 Replies 4

IAN WHITMORE
Level 4
Level 4

‎04-06-2011 04:02 AM

I've got packet tracer but it's not compatible with my version. Can you post the configs and a quick network diagram (or explain it).

Regards,

Ian

0 Helpful

Michel_VZ
Level 1
Level 1
In response to IAN WHITMORE

‎04-06-2011 07:51 AM

Hey ian, thanks for you help. Here is my setup:

ROUTER 1

Building configuration...

Current configuration : 680 bytes

!

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

!

hostname router1

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

!

interface FastEthernet0/0

ip address 172.17.0.1 255.255.0.0

duplex auto

speed auto

!

interface FastEthernet1/0

no ip address

duplex auto

speed auto

shutdown

!

interface Serial2/0

ip address 172.16.0.2 255.255.0.0

!

interface Serial3/0

no ip address

shutdown

!

interface FastEthernet4/0

no ip address

shutdown

!

interface FastEthernet5/0

no ip address

shutdown

!

router rip

network 172.16.0.0

network 172.17.0.0

!

ip classless

!

!

!

!

!

!

!

line con 0

line vty 0 4

login

!

!

!

end


ROUTER 2

Building configuration...

Current configuration : 693 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname router2
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
duplex auto
speed auto
shutdown
!
interface FastEthernet1/0
no ip address
duplex auto
speed auto
shutdown
!
interface Serial2/0
ip address 172.15.0.2 255.255.0.0
!
interface Serial3/0
ip address 172.16.0.1 255.255.0.0
!
interface FastEthernet4/0
no ip address
shutdown
!
interface FastEthernet5/0
no ip address
shutdown
!
router rip
network 172.15.0.0
network 172.16.0.0
!
ip classless
!
!
!
no cdp run
!
!
!
!
!
line con 0
line vty 0 4
login
!
!
!
end


ROUTER 3

Building configuration...

Current configuration : 681 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname router3
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
ip address 172.14.0.1 255.255.0.0
duplex auto
speed auto
!
interface FastEthernet1/0
no ip address
duplex auto
speed auto
shutdown
!
interface Serial2/0
ip address 172.15.0.1 255.255.0.0
!
interface Serial3/0
no ip address
shutdown
!
interface FastEthernet4/0
no ip address
shutdown
!
interface FastEthernet5/0
no ip address
shutdown
!
router rip
network 172.14.0.0
network 172.15.0.0
!
ip classless
!
!
!
!
!
!
!
line con 0
line vty 0 4
login
!
!
!
end

PC2 has the ip address: 172.14.0.5 with 172.14.0.1 as default gateway
PC3 has the ip address: 172.17.0.5 with 172.17.0.1 as default gateway

0 Helpful

johnlloyd_13
Level 9
Level 9

‎04-06-2011 08:05 AM

Hi,

Try adding the clock rate command under the serial links from the router acting as the DCE. Sample would like the one below. I don't think you'll be able to run or configure VPN due to IOS limitation in PT.

Router(config-if)clock rate 64000

Sent from Cisco Technical Support iPhone App

0 Helpful

cadet alain
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎04-07-2011 01:19 AM

Hi,

with your topology the VPN is not possible and I'm not sure PT can configure a site-to-site VPN.

For your pings like john said you must put a clock rate under the dce interfaces  if you want your serial  to come up/up.

But even after that the pings are still failing and RIP  is not working like it should: the upadates are sent but never received and if you do version 2 and try to ping the muticast address it fails so if I were you I would change the router models to get one supporting wic-2t module and try again.

This will surely solve the routers ping and rip problem but you still have things wrong in your topology:

-you have 2 pcs in 2 different subnets but in the same VLAN on your 2950 which is a L2 switch, you can surely do this but good practice is 1 subnet= 1 VLAN

-if you solve problem 1 (create  2 vlans and assign correct vlan to correct port going to pc) then you must route between your subnets and you must either replace your 2950 by a L3 switch( 3550 or 3560) or use a router r3  as router on a stick and so you must create subinterfaces on this router and trunk with the f0/3 switch port( sw  tru encap dot1q, sw mode trunk) after doing so you can delete link between R1 and 2950 as well as R2.

If you want to test VPN if it's configurable on PT you should try a topology like this:

PC1----sw1----R1------R2-----sw2----pc2 and make a site-to site VPN between R1-R2

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card