Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2113
Views
0
Helpful
6
Replies

Failover configuration on cisco 2801 router

Ajay Kumar Pal
Level 1
Level 1

‎01-28-2013 06:53 AM - edited ‎03-04-2019 06:52 PM

Hi all,

I am bit confused, that how can i confiure the router in this situation.

I have to configure failover on both router. if one get fail then the other router should be dial.

Physical connection

  • •1.        Two routers (Cisco 2801) are connecting with splitter through RJ 11 port.
  • •2.        Only one ISP link is coming in splitter.

Requirement

  • 1.       As per as customer requirement. He wants redundancy with in both 2 routers. If one goes down then the other router come up.  

Here is the configuration

2801_R1

interface FastEthernet0/0

description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$

no ip address

duplex auto

speed auto

!

interface FastEthernet0/1

description ***Connected to CORE_SW*****$ES_LAN$

ip address 172.20.3.2 255.255.255.0

ip nat inside

ip virtual-reassembly

ip tcp adjust-mss 1412

duplex auto

speed auto

!

interface ATM0/3/0

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

!

interface ATM0/3/0.2 point-to-point

description $ES_WAN$

pvc 8/35

  encapsulation aal5mux ppp dialer

  dialer pool-member 1

!

!

interface Dialer2

ip address negotiated

ip nat outside

ip virtual-reassembly

encapsulation ppp

dialer pool 1

dialer-group 1

ppp authentication chap pap callin

ppp chap hostname inovest

ppp chap password 7 03124F1F0404375F4A

ppp pap sent-username inovest password 7 1401061F0E0F3C3820

ip forward-protocol nd

ip route 0.0.0.0 0.0.0.0 Dialer2

!

And same configuration on 2801_R2 router.  I am planing to do HSRP on our lan network (2801R1,2801R2 ehternet interface which connected to switch). from switch i will create two default route with (next hope) virtual ip address.

I want to that i will work or not...ADSL failover.png

Labels:
0 Helpful
6 Replies 6

paolo bevilacqua
Hall of Fame
Hall of Fame

‎02-02-2013 12:44 AM

You can't do 'splitter' on ADSL cable. You can place an A/B switch on it.

You should not worry either about router failure, that is a very rare event. You will have 1000 times more circuit failures than router failures.

0 Helpful

Ajay Kumar Pal
Level 1
Level 1
In response to paolo bevilacqua

‎02-02-2013 11:26 PM

thank you for your time and considration.

Do you have any kind of document, where can i get more information regard A/B Switch.

In that Q. the RJ11 cable is directlly connected to cisco router 2801.

0 Helpful

paolo bevilacqua
Hall of Fame
Hall of Fame
In response to Ajay Kumar Pal

‎02-03-2013 12:58 AM

Just go to any phone equipment shop to get one.

However since it requires manual operation, it's not much advantegeous than replace cable in socket.

0 Helpful

Jeff Van Houten
Level 5
Level 5
In response to paolo bevilacqua

‎02-03-2013 06:54 AM

I agree you should be more worried about circuit than router failure. However, any inbound cable pair can be "split" into two outbound pairs. Just terminate the inbound pair on a block and attach two outbound leads to each. As long as only one is active at any time it should work fine.

Sent from Cisco Technical Support iPad App

0 Helpful

Ajay Kumar Pal
Level 1
Level 1
In response to Jeff Van Houten

‎02-03-2013 11:06 PM

Thank you,

          I got the point. so we can splitt the connection with 2 router. at a time only 1 router is active.

0 Helpful

Ajay Kumar Pal
Level 1
Level 1
In response to Jeff Van Houten

‎03-23-2013 11:27 AM

Hi Paolo & Jeff,

I have done the configuration on both router, but i am faceing one problem.

Here is the configuration and topology....

IN_RTR1#sh run

Building configuration...

Current configuration : 2826 bytes

!

version 12.4

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname IN_RTR1

!

boot-start-marker

boot-end-marker

!

logging buffered 51200 warnings

enable secret 5 $1$AOUV$EDGCVV46e1U0vlxX4dJln0

enable password 7 151B0F0905390B757A60

!

no aaa new-model

dot11 syslog

ip cef

!

!

!

!

no ip domain lookup

ip name-server 217.17.233.49

!

multilink bundle-name authenticated

!

!

!

!

!

username admin privilege 15 secret 5 $1$r9oG$cP3yE.5YBNkGh4jUQ6XBZ.

archive

log config

  hidekeys

!

!

!

!

!

!

!

!

interface FastEthernet0/0

description $ETH-SW-LAUNCH$$INTF-INFO-FE 0$

no ip address

duplex auto

speed auto

!

interface FastEthernet0/1

description ***Connected to CORE_SW*****$ES_LAN$

ip address 172.20.3.2 255.255.255.0

ip nat inside

ip virtual-reassembly

ip tcp adjust-mss 1412

duplex auto

speed auto

standby 1 ip 172.20.3.29

standby 1 priority 104

standby 1 preempt

standby 1 track ATM0/3/0 20

!

interface ATM0/3/0

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

!

interface ATM0/3/0.2 point-to-point

description $ES_WAN$

pvc 8/35

  encapsulation aal5mux ppp dialer

  dialer pool-member 1

!

!

interface Dialer2

ip address negotiated

ip nat outside

ip virtual-reassembly

encapsulation ppp

dialer pool 1

dialer-group 1

ppp authentication chap pap callin

ppp chap hostname inovest

ppp chap password xxxxxxxxxxxxxx

ppp pap sent-username inovest password xxxxxxxxxxxxxxxxxx

!

router eigrp 100

redistribute connected metric 10000 1000 255 1 1500 route-map WAN

network 172.20.3.2 0.0.0.0

no auto-summary

!

ip forward-protocol nd

ip route 0.0.0.0 0.0.0.0 Dialer2

!

!

ip http server

ip http access-class 23

ip http authentication local

no ip http secure-server

ip nat inside source list 1 interface Dialer2 overload

ip nat inside source static tcp 172.20.3.4 3389 interface Dialer2 3389

ip nat inside source static tcp 172.20.3.5 25 interface Dialer2 25

ip nat inside source static tcp 172.20.3.6 443 interface Dialer2 443

ip nat inside source static tcp 172.20.3.7 80 interface Dialer2 80

ip nat inside source static udp 172.20.3.1 500 interface Dialer2 500

ip nat inside source static udp 172.20.3.1 4500 interface Dialer2 4500

ip nat inside source static tcp 172.20.3.8 21 interface Dialer2 21

!

access-list 1 permit any

access-list 23 permit any

dialer-list 1 protocol ip permit

!

!

route-map WAN permit 10

match interface ATM0/3/0

!

route-map WAN permit 20

!

!

!

control-plane

!

alias exec s show ip int brief

!

line con 0

exec-timeout 0 0

logging synchronous

line aux 0

line vty 0 4

privilege level 15

password 7 11001D0016012B5D5679

login local

transport input telnet

line vty 5 15

privilege level 15

password 7 11001D0016012B5D5679

login local

transport input telnet

!

scheduler allocate 20000 1000

end

--------------------------------------------------------------------------------------------------------------------------

Elittechno#sh run

Building configuration...

Current configuration : 5129 bytes

!

! Last configuration change at 16:46:26 UTC Mon Mar 18 2013

version 15.2

service timestamps debug datetime msec

service timestamps log datetime msec

no service password-encryption

!

hostname Elittechno

!

boot-start-marker

boot-end-marker

!

!

logging buffered 51200 warnings

enable secret 4 hIzNgSRpr0rDiY97HmOKiEhZwCZuL6XQvtN35SR.FAY

enable password elitetechno@123

!

no aaa new-model

!

ip cef

!

!

!

!

!

!

no ip domain lookup

no ipv6 cef

!

multilink bundle-name authenticated

!

!

!

crypto pki trustpoint TP-self-signed-3061308914

enrollment selfsigned

subject-name cn=IOS-Self-Signed-Certificate-3061308914

revocation-check none

rsakeypair TP-self-signed-3061308914

!

!

crypto pki certificate chain TP-self-signed-3061308914

certificate self-signed 01

  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030

  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274

  69666963 6174652D 33303631 33303839 3134301E 170D3133 30323031 31323136

  35395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649

  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 30363133

  30383931 3430819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281

  8100DA12 E4F228DB C18219AB 9269038A AA9FA213 EE56A1E4 BCE926C3 DF933A36

  FF85C900 55044F88 E60B36B3 91D9FC34 CA20AF06 B82F3048 9290B196 AC4BB5E7

  AB6A8621 C8442EF7 4A34E886 D9AFB6E2 0F82F63C 751201CE 9C328BAE 148D6C86

  87E6E4F5 164D18B2 DE7D28AA 76D7AB63 9D510C30 97C9F457 E4876C1F 0739B747

  7C870203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603

  551D2304 18301680 140A365B FCC0127A A364BA2C 6E8C1C71 54C0DDC6 2E301D06

  03551D0E 04160414 0A365BFC C0127AA3 64BA2C6E 8C1C7154 C0DDC62E 300D0609

  2A864886 F70D0101 05050003 818100CB 4E92BAB1 483F7213 DE4EE342 2A6DE442

  3786FD0F 78C098BA E7876CF2 A3399268 39DBFD9B A18BC8F0 AA4C232C D7D21829

  0E2BB8EA 7781CCDB 8E53AD31 EB9AAF2C ABB8C00E CA7FC37B 8A1D4B18 E149338B

  9B66F263 E7A30648 E25EF0F7 6DBFFB5C 4C5ABD5A 9D1150BD B823994A 8E649D95

  EDEC0008 2945CD6B 154B92A6 54CA19

        quit

license udi pid CISCO2901/K9 sn FCZ1705C593

!

!

username Elittechno_gokul privilege 15 password 0 elitetechno@123

username Elitetechno password 0 elitetechno@123

!

redundancy

!

!

!

!

!

csdb tcp synwait-time 30

csdb tcp idle-time 3600

csdb tcp finwait-time 5

csdb tcp reassembly max-memory 1024

csdb tcp reassembly max-queue-length 16

csdb udp idle-time 30

csdb icmp idle-time 10

csdb session max-session 65535

!

!

!

!

!

!

!

!

!

interface Embedded-Service-Engine0/0

no ip address

shutdown

!

interface GigabitEthernet0/0

description ***Connected to CORE_SW*****$ES_LAN$

ip address 172.20.3.10 255.255.255.0

ip nat inside

ip virtual-reassembly in

ip tcp adjust-mss 1412

standby 1 ip 172.20.3.29

standby 1 preempt

duplex auto

speed auto

!

interface GigabitEthernet0/1

no ip address

shutdown

duplex auto

speed auto

!

interface ATM0/0/0

no ip address

no atm ilmi-keepalive

!

interface ATM0/0/0.2 point-to-point

description $ES_WAN$

pvc 8/35

  encapsulation aal5mux ppp dialer

  dialer pool-member 1

!

!

interface Dialer2

ip address negotiated

ip nat outside

no ip virtual-reassembly in

encapsulation ppp

dialer pool 1

dialer-group 1

ppp authentication chap pap callin

ppp chap hostname inovest

ppp chap password xxxxxxxxxxxxxxxxxxxxx

ppp pap sent-username inovest password xxxxxxxxxxxxxxxxxxx

!

!

router eigrp 100

network 172.20.3.10 0.0.0.0

!

ip forward-protocol nd

!

ip http server

ip http access-class 23

ip http authentication local

no ip http secure-server

!

ip nat inside source list 1 interface Dialer2 overload

ip nat inside source static tcp 172.20.3.4 3389 interface Dialer2 3389

ip nat inside source static tcp 172.20.3.5 25 interface Dialer2 25

ip nat inside source static tcp 172.20.3.6 443 interface Dialer2 443

ip nat inside source static tcp 172.20.3.7 80 interface Dialer2 80

ip nat inside source static udp 172.20.3.1 500 interface Dialer2 500

ip nat inside source static udp 172.20.3.1 4500 interface Dialer2 4500

ip nat inside source static tcp 172.20.3.8 21 interface Dialer2 21

ip route 0.0.0.0 0.0.0.0 Dialer2

!

access-list 1 permit any

access-list 23 permit any

dialer-list 1 protocol ip permit

!

!

!

control-plane

!

!

banner exec ^CC

------------------------------------------------------------------------------

This is ADSL Router cisco 2901

------------------------------------------------------------------------------

^C

banner login ^CC

------------------------------------------------------------------------------

Elite Technologies Middle East

------------------------------------------------------------------------------

^C

!

line con 0

exec-timeout 0 0

password elitetechno@123

logging synchronous

login local

line aux 0

line 2

no activation-character

no exec

transport preferred none

transport input all

transport output pad telnet rlogin lapb-ta mop udptn v120 ssh

stopbits 1

line vty 0 4

privilege level 15

password elitetechno@123

login local

transport input all

line vty 5

password elitetechno@123

login local

transport input all

!

scheduler allocate 20000 1000

!

end

------------------------------------------------------------------------------------------------------------------------------

HSRP is working, 2801 router is active and 2901 router is standby. And i given one static route on firewall with hsrp virtual ip address.

Now problem is, When i am going to shutdwon interface (ATM0/3/0) manually on active router, then the standby router is become active, and user are able to access internet. it means the secandary router is dailing the connection to isp.

But when i am doing switch off the active router, then standby router is coming active but it is not able to initiate the connection with isp the debug massage is          cannot replce the call, no string is set.        if i am removing the RJ 11(ATM0/3/0) coble from the active router, which is currenty switch off (no power on the 2801 router). Then the standby router is able to initiate the connection with isp.

0 Helpful
Customers Also Viewed These Support Documents