Hello
Suggest you remove all the resiliency config and start from scratch focusing on your primary connection first, Then when that is up and your clients can reach the internet move on to apply the resiliency otherwise you will get mixed up in what you’re doing.

The basic configuration should read the following:

ip dhcp excluded-address 10.0.130.254

ip dhcp pool k130
import all

network 10.0.130.0 255.255.255.0 
default-router 10.0.130.254

access-list 1 permit 10.0.130.0 0.0.0.255
ip nat inside source list 1 interface GigabitEthernet0/1/0 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1/0 dhcp 1

interface GigabitEthernet0/0

Description LAN
 description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
 ip address 10.0.130.254 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
 duplex auto
 speed auto

interface GigabitEthernet0/1/0
Description Primary WAN
 ip address dhcp
 ip nat outside
 ip virtual-reassembly in
 duplex auto
 speed auto

interface GigabitEthernet0/2/0
Description Secondary WAN
SHUTDOWN
 ip address dhcp
 duplex auto
 speed auto

Then if you attaching a pc straight to the rtr , Use a cross over cable and make sure the pc receives an Ip address from your router  and see if you can ping the internet from that pc again.

res
Paul

omfg... do i have to use a crossover cable if i connect a pc directly on ge 0/0?

No, straight Ethernet cable is ok. I don't think the connection to the router is a problem, you are getting a DHCP address.

Hello

Most cases nowadays gigabitethernet comes with mdix ports so no need for crossovers but if your troubleshooting connectivity making sure you have the physical level sorted first would help immensely.

So if you don have mdix ports then direct pc-router connection would require such cabling, Just get the basics working first then concentrate on the other levels after that.

From the pc you should be able receive address allocation from the rtrs dhcp scope and then be able to ping the rtrs lan interface ip address and also its dhcp assigned wan interface ip.

If you can then the next step would be to look at your network translation.

res

Paul

Good morning,

unfortunately i was busy on an other project the last few days. Now i have tried the last config from geog form tuesday... not really successful, but i little step forward.

I tried out a few pings from the connected client computer.

i can reach gigabit 0/0 via ip ping

i can also reach gigabit 0/1/0 via ip ping

but i cant reach my internet access router wich is a fritz-box.

so my fritzbox gives a ip adress via dhcp to interface gigabitethernet 0/1/0 wich is actual 192.168.178.33 i can ping it from inside network address 10.0.130.31.

i can not ping the fritzbox itsself wich has ip 192.168.178.1 . From the Cisco 2911 i can ping it via console connection .... its really confusing.... maybe i should bring the 2911 back to factory defaults... but how? and what happens with user name and pw if i do?

greetings from Germany

ralf

.

Hello Ralf,

a little bit of progress is better than none I guess...

Post the configuration again you have right now, so we can double check...

here the actual config:

if i set ip name-server to 10.0.130.254 i get a Warnung that ip name-server is the router. I didnt do any changes to the cellular interface because i thought its maybe better to focus ge 0/1/0 to get at least one wan interface running .

i allways delete the crypto and pw phrases from my config posts. is that ok?

Current configuration : 6060 bytes
!
! Last configuration change at 06:29:52 UTC Sat May 5 2018 by admin
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname cisco2911
!
boot-start-marker
boot-end-marker
!
!
logging buffered 51200 warnings
!
no aaa new-model
!
!
!
!
--More--  !
!
!
!
!
!
!
no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.0.130.1 10.0.130.30
ip dhcp excluded-address 10.0.130.254
!
ip dhcp pool k130
import all
network 10.0.130.0 255.255.255.0
dns-server 8.8.4.4
default-router 10.0.130.254
!
!
!
ip domain name LUDWIGSHAFEN
ip name-server 10.0.130.254
ip cef
--More--  no ipv6 cef
multilink bundle-name authenticated
!
!
chat-script lte "" "AT!CALL" TIMEOUT 60 "OK"
cts logging verbose
!

redundancy
!
!
controller Cellular 0/0
lte modem link-recovery rssi onset-threshold -110
lte modem link-recovery monitor-timer 20
--More--   lte modem link-recovery wait-timer 10
lte modem link-recovery debounce-count 6
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
ip address 10.0.130.254 255.0.0.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
--More--   speed auto
!
interface GigabitEthernet0/2
no ip address
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/1/0
ip address dhcp
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/2/0
backup interface GigabitEthernet0/1/0
ip address dhcp
duplex auto
speed auto
!
interface Cellular0/0/0
no ip address
--More--   encapsulation slip
dialer in-band
dialer string lte
!
ip forward-protocol nd
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip nat source list 1 interface GigabitEthernet0/1/0 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1/0 dhcp
!
!
!
access-list 1 permit 10.0.130.0 0.0.0.255
!
control-plane
!

YES YES YES :D

config is working .... got the client connected got Webbrowser working .... gosh great...thank you so much georg.

btw. this post is being upload through the 2911

Ralf,

good stuff, glad that you got it working in the end !

Schönes Wochenende !

The router is running after installation on place. Now i have to get the cellular 0/0/0 online. Will this work in the same manner than the GE interface, if i add the cellular 0/0/0 configuration posted in config file above?

I tried this but i think there is something missing. i get the cellular interface run ans the sim card is accepted also the pin is disabled. but i have no idea how i can input the apn, username and password to the cellular interface. i tried it with a profile but  show cellular 0/0/0 all shows the profile still inactive.

cisco2911#show cellular 0/0/0 network
Current System Time = Tue May 8 11:27:59 2018
Current Service Status = Normal
Current Service = Packet switched
Current Roaming Status = Home
Network Selection Mode = Automatic
Network = MEDIONmobile
Mobile Country Code (MCC) = 262
Mobile Network Code (MNC) = 3
Packet switch domain(PS) state = Attached
Registration state(EMM) = Registered
EMM Sub State = Normal Service
Tracking Area Code (TAC) = 15021
Cell ID = 35896601
Primary Scrambling Code = 65535
cisco2911#show cellular 0/0/0 profile

Profile 1 = INACTIVE* **
--------
PDP Type = IPv4v6
Access Point Name (APN) =
Authentication = None

Profile 10 = INACTIVE
--------
PDP Type = IPv4v6
Access Point Name (APN) = internet.eplus.de
Authentication = PAP or CHAP
Username: xxx
Password: yyy

here is the actual config. Unfortunately we dont have internet via Ethernet for testing the network so just LTE would be availeble for testing the entire network.

Current configuration : 6366 bytes
!
! Last configuration change at 12:19:32 UTC Tue May 8 2018 by admin
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname cisco2911
!
boot-start-marker
boot-end-marker
!
!
logging buffered 51200 warnings
!
no aaa new-model
!
!
!
!

no ip dhcp conflict logging
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.0.130.1 10.0.130.30
ip dhcp excluded-address 10.0.130.254

ip dhcp pool k130
import all
network 10.0.130.0 255.255.255.0
dns-server 8.8.4.4
default-router 10.0.130.254
!
!
!
ip domain name LUDWIGSHAFEN
ip name-server 10.0.130.254
ip cef
no ipv6 cef
multilink bundle-name authenticated
!
!
chat-script lte "" "AT!CALL" TIMEOUT 60 "OK"
cts logging verbose
!

!
redundancy
!
!
controller Cellular 0/0
lte sim data-profile 10
lte modem link-recovery rssi onset-threshold -110
lte modem link-recovery monitor-timer 20
lte modem link-recovery wait-timer 10
lte modem link-recovery debounce-count 6
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$
ip address 10.0.130.254 255.0.0.0
ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/2
no ip address
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/1/0
ip address dhcp
ip nat outside
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/2/0
backup interface GigabitEthernet0/1/0
ip address dhcp
duplex auto
speed auto
!
interface Cellular0/0/0
ip address negotiated
ip nat outside
ip virtual-reassembly in
encapsulation slip
dialer in-band
dialer string lte
dialer-group 10
async mode interactive
!
ip forward-protocol nd
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip nat inside source list 1 interface GigabitEthernet0/1/0 overload
ip nat inside source list 10 interface Cellular0/0/0 overload
ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/1/0 dhcp
ip route 0.0.0.0 0.0.0.0 Cellular0/0/0 dhcp
!
dialer-list 10 protocol ip permit
!
!
access-list 1 permit 10.0.130.0 0.0.0.255
access-list 10 permit 10.0.130.0 0.0.0.255
!
control-plane

thanks a lot for the quick reply. I will try this config asap. What is the meaning of this:

chat-script lte "" "AT!CALL" TIMEOUT 60 "OK"

Hello,

the chat script is used for communication between the router and the modem. It basically tells the modem  to call, and wait for 60 seconds...

That said, chat scripts may differ depending on your provider. Who is your ISP ? (e.g. O2, T-Online, TS2 Space)...