10-03-2012 05:41 PM - edited 03-04-2019 05:45 PM
Good evening everyone;
I have a cisco router 1921 with 2 ADSL card, I want to establish dual balance
ISP1: 41.142.142.21,
ISP2: 41.142.142.22
G0 / 0 192.168.3.1
thank you
10-03-2012 06:16 PM
Hello,
It would be good that you add more details about your implementation, I mean, is the dual balance is incoming or outgoing?
Sent from Cisco Technical Support iPhone App
10-04-2012 03:33 AM
hi ; Francis ;
this for outgoing application
tanks
10-04-2012 12:28 AM
This is often asked had you searched before.
http://www.cisco.com/en/US/tech/tk648/tk361/technologies_configuration_example09186a0080950834.shtml
10-04-2012 03:50 AM
Hi Paolo ,
i can't acces to your link
10-04-2012 04:01 AM
Hi,
just strip the partner string in the link.
Regards.
Alain
Don't forget to rate helpful posts.
10-04-2012 04:47 AM
There is no partner in the link. It is accessible to anyone.
10-04-2012 04:50 AM
Hi Paolo,
correct but when i highlighted the link it was appearing, i should have tried to open it instead.
Regards.
Alain
10-04-2012 05:27 AM
You are right, I've fixed it now, thanks.
10-04-2012 02:29 PM
can you tack a look to my config please ?
10-04-2012 05:19 AM
I think that the link that Paolo sent was what you were looking for. It has the proper configuration for outgoing loadbalance.
Sent from Cisco Technical Support iPhone App
10-04-2012 12:21 PM
Hi ,
tinks for your support and i did same ting but, that not working ,
this is my config :
Building configuration...
Current configuration : 5247 bytes
!
! Last configuration change at 19:12:05 UTC Thu Oct 4 2012 by itsmaroc
! NVRAM config last updated at 19:09:45 UTC Thu Oct 4 2012
! NVRAM config last updated at 19:09:45 UTC Thu Oct 4 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname *******
!
boot-start-marker
boot-end-marker
!
!
no logging buffered
no logging console
enable password *******
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
!
!
ip dhcp excluded-address 192.168.3.1
ip dhcp excluded-address 192.168.3.11 192.168.3.254
!
ip dhcp pool FIRE
import all
network 192.168.3.0 255.255.255.0
dns-server 212.217.0.1 212.217.1.1
default-router 192.168.3.1
!
!
ip name-server 212.217.0.1
ip name-server 212.217.1.1
multilink bundle-name authenticated
!
crypto pki token default removal timeout 0
!
crypto pki trustpoint TP-self-signed-1280271872
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1280271872
revocation-check none
rsakeypair TP-self-signed-1280271872
!
!
crypto pki certificate chain TP-self-signed-1280271872
certificate self-signed 01
*******
quit
license udi pid CISCO1921/K9 sn FCZ16199053
license boot module c1900 technology-package securityk9
!
!
username ******* privilege 15 password 0 *******
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address 192.168.3.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no atm ilmi-keepalive
!
interface ATM0/0/0.2 point-to-point
pvc 8/35
pppoe-client dial-pool-number 1
!
!
interface ATM0/1/0
no ip address
no atm ilmi-keepalive
!
interface ATM0/1/0.1 point-to-point
pvc 8/35
oam-pvc manage
pppoe-client dial-pool-number 2
!
!
interface Dialer1
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname *******
ppp chap password 0 *******
ppp pap sent-username ******* password 0 *******
!
interface Dialer2
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 2
dialer-group 2
ppp authentication chap pap callin
ppp chap hostname *******
ppp chap password 0 *******
ppp pap sent-username ******* password 0 *******
!
ip forward-protocol nd
!
ip http server
ip http authentication local
ip http secure-server
!
ip nat inside source list 1 interface Dialer1 overload
ip nat inside source static tcp 192.168.3.35 443 interface Dialer1 443
ip nat inside source static tcp 192.168.3.39 8080 interface Dialer1 8080
ip nat inside source static tcp 192.168.3.43 80 interface Dialer1 80
ip nat inside source static tcp 192.168.3.47 90 interface Dialer1 90
ip nat inside source static tcp 192.168.3.47 22 interface Dialer1 22
ip nat inside source route-map fixed-nat interface Dialer1 overload
ip nat inside source route-map fixed-nat2 interface Dialer2 overload
ip route 0.0.0.0 0.0.0.0 Dialer1 track 123
!
access-list 1 remark INSIDE_IF=GigabitEthernet0/0
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 192.168.3.0 0.0.0.255
access-list 110 permit ip 192.168.3.0 0.0.0.255 any
dialer-list 1 protocol ip permit
dialer-list 2 protocol ip permit
!
route-map fixed-nat2 permit 10
match ip address 110
match interface Dialer2
!
route-map fixed-nat permit 10
match ip address 110
match interface Dialer1
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
privilege level 15
password itsmaroc
login
transport input telnet ssh
!
scheduler allocate 20000 1000
end
10-04-2012 04:19 PM
Hello,
Aparently you are missing two configurations, number 1: a default route using Dialer 2 and number 2: you are defining the static route using the Dialer 1 with a track statement which doesn't exist. I recomend you, for the sake of the simplicity, that you define only the defaults routes without using SLA "track command" until you understand the concept of SLA.
Only apply this to your configuration and dont forget to erase the default old route
no ip route 0.0.0.0 0.0.0.0 Dialer 1 track 123
ip route 0.0.0.0 0.0.0.0 Dialer 1
Ip route 0.0.0.0 0.0.0.0 Dialer 2
Sent from Cisco Technical Support iPhone App
10-08-2012 07:44 AM
Hi ,
its work now , but i have to more problems ,
thinks for you support again
this is my last config :
Building configuration...
Current configuration : 5258 bytes
!
! Last configuration change at 17:44:02 UTC Sun Oct 7 2012 by itsmaroc
! NVRAM config last updated at 10:35:19 UTC Fri Oct 5 2012
! NVRAM config last updated at 10:35:19 UTC Fri Oct 5 2012
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ROUTER
!
boot-start-marker
boot-end-marker
!
!
no logging buffered
no logging console
enable password test
!
no aaa new-model
!
no ipv6 cef
ip source-route
ip cef
!
!
!
ip dhcp excluded-address 192.168.3.1
ip dhcp excluded-address 192.168.3.11 192.168.3.254
!
ip dhcp pool FIRE
import all
network 192.168.3.0 255.255.255.0
dns-server 212.217.0.1 212.217.1.1
default-router 192.168.3.1
!
!
ip name-server 212.217.0.1
ip name-server 212.217.1.1
multilink bundle-name authenticated
!
crypto pki token default removal timeout 0
!
crypto pki trustpoint TP-self-signed-1280271872
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1280271872
revocation-check none
rsakeypair TP-self-signed-1280271872
!
!
crypto pki certificate chain TP-self-signed-1280271872
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31323830 32373138 3732301E 170D3132 31303033 32323439
34385A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
license udi pid CISCO1921/K9 sn FCZ16199053
license boot module c1900 technology-package securityk9
!
!
username test privilege 15 password 0 test
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address 192.168.3.1 255.255.255.0
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
duplex auto
speed auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no atm ilmi-keepalive
!
interface ATM0/0/0.2 point-to-point
pvc 8/35
pppoe-client dial-pool-number 1
!
!
interface ATM0/1/0
no ip address
no atm ilmi-keepalive
!
interface ATM0/1/0.1 point-to-point
pvc 8/35
oam-pvc manage
pppoe-client dial-pool-number 2
!
!
interface Dialer1
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname test
ppp chap password 0 test
ppp pap sent-username test password 0 test
!
interface Dialer2
ip address negotiated
ip mtu 1452
ip nat outside
ip virtual-reassembly in
encapsulation ppp
dialer pool 2
dialer-group 2
ppp authentication chap pap callin
ppp chap hostname test
ppp chap password 0 test
ppp pap sent-username test password 0 test
!
ip forward-protocol nd
!
ip http server
ip http authentication local
ip http secure-server
!
ip nat inside source static tcp 192.168.3.35 443 interface Dialer1 443
ip nat inside source static tcp 192.168.3.39 8080 interface Dialer1 8080
ip nat inside source static tcp 192.168.3.43 80 interface Dialer1 80
ip nat inside source static tcp 192.168.3.47 90 interface Dialer1 90
ip nat inside source static tcp 192.168.3.47 22 interface Dialer1 22
ip nat inside source route-map fixed-nat interface Dialer1 overload
ip nat inside source route-map fixed-nat2 interface Dialer2 overload
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 0.0.0.0 0.0.0.0 Dialer2
!
access-list 1 remark INSIDE_IF=GigabitEthernet0/0
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 192.168.3.0 0.0.0.255
access-list 110 permit ip 192.168.3.0 0.0.0.255 any
dialer-list 1 protocol ip permit
dialer-list 2 protocol ip permit
!
route-map fixed-nat2 permit 10
match ip address 110
match interface Dialer2
!
route-map fixed-nat permit 10
match ip address 110
match interface Dialer1
!
!
!
control-plane
!
!
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport input all
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
privilege level 15
password test
login
transport input telnet ssh
!
scheduler allocate 20000 1000
end
10-05-2012 02:00 AM
Hi,
to add to paolo's reply, could you also get rid of this:
ip nat inside source list 1 interface Dialer1 overload
Regards.
Alain
Don't forget to rate helpful posts.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: