Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
847
Views
0
Helpful
13
Replies

Move the internet line to Cisco Router 2911 from Yamaha router RTX 810

Vishnu Reddy
Level 1
Level 1

‎12-26-2014 06:21 AM - edited ‎03-05-2019 12:27 AM

Hello Guys,

Happy christmas and new year to you all.

I am trying to fix this issue since a month with no results. I am trying to move the internet line which is basically a ethernet handoff. I informed my site engineer to move the cable from yamaha router to cisco router on gigabit interface port during maintanence window. When he unplugs the cable from yamaha router and plugs into cisco router the ping to ISP is not working. Basically I enter default route pointing to ISP address. But when he reverts back to yamaha router pings works and hence the internet works without any issues. I found out through forum these might be arp which doesn't allow you to ping the ISP. ISP has to change the arp table or its gets updated dynamically. The cable was plugged for atmost 2 days during weekends. But the arp table didn't got updated and ping dies when pinging to ISP router. Response from ISP was we have to nothing from our end. Now it seems like we have no where to go.

Little help about how to approach the problem will be highly appreciated.

Thanks in advance

 

Labels:
0 Helpful
13 Replies 13

M SEB
Level 1
Level 1

‎12-26-2014 06:30 AM

Hi,

 

Could you please post a show ip int brief, a show interface <interface-id> of the interface connected to the ISP, and a show ip arp and ? Optinally the show running would also help.

 

KR

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 06:45 AM

Show int G0/2

GigabitEthernet0/2 is up, line protocol is up
  Hardware is CN Gigabit Ethernet, address is 6c20.563b.1052 (bia 6c20.563b.1052)
  Description: To Internet - Ethernet Handoff
  Internet address is xxx.xxx.173.250/30
  MTU 1500 bytes, BW 1000000 Kbit/sec, DLY 10 usec,
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive set (10 sec)
  Full Duplex, 1Gbps, media type is RJ45
  output flow-control is unsupported, input flow-control is unsupported
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input 00:00:00, output 00:00:00, output hang never
  Last clearing of "show interface" counters never
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: fifo
  Output queue: 0/40 (size/max)
  5 minute input rate 1000 bits/sec, 1 packets/sec
  5 minute output rate 0 bits/sec, 0 packets/sec
     191598 packets input, 19767052 bytes, 0 no buffer
     Received 128046 broadcasts (0 IP multicasts)
     0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog, 0 multicast, 0 pause input
     81231 packets output, 11226587 bytes, 0 underruns
     0 output errors, 0 collisions, 4 interface resets
     0 unknown protocol drops
     0 babbles, 0 late collision, 0 deferred
     3 lost carrier, 0 no carrier, 0 pause output
     0 output buffer failures, 0 output buffers swapped out

 

show arp

 

Protocol  Address          Age (min)  Hardware Addr   Type   Interface
Internet  192.168.30.11           0   Incomplete      ARPA
Internet  192.168.30.13          77   0016.355d.d75a  ARPA   GigabitEthernet0/0
Internet  192.168.30.22         242   0420.9a41.3399  ARPA   GigabitEthernet0/0
Internet  192.168.30.23         204   cc7e.e75f.921d  ARPA   GigabitEthernet0/0
Internet  192.168.30.24         201   100b.a9dd.9a28  ARPA   GigabitEthernet0/0
Internet  192.168.30.28           0   Incomplete      ARPA
Internet  192.168.30.32         229   f437.b7b5.749b  ARPA   GigabitEthernet0/0
Internet  192.168.30.33         243   6480.9969.09f8  ARPA   GigabitEthernet0/0
Internet  192.168.30.50         265   f437.b7b7.168f  ARPA   GigabitEthernet0/0
Internet  192.168.30.100          -   6c20.563b.1050  ARPA   GigabitEthernet0/0
Internet  192.168.30.101         77   0017.0e14.5340  ARPA   GigabitEthernet0/0
Internet  192.168.30.111          3   0016.355b.f83a  ARPA   GigabitEthernet0/0
Internet  192.168.30.112          1   0014.c25f.6f03  ARPA   GigabitEthernet0/0
Internet  192.168.30.114          0   000f.eaf2.340a  ARPA   GigabitEthernet0/0
Internet  192.168.30.115          0   0011.0939.92b0  ARPA   GigabitEthernet0/0
Internet  192.168.30.120         76   0024.a559.414e  ARPA   GigabitEthernet0/0
Internet  192.168.30.200         67   0800.37d6.6fa6  ARPA   GigabitEthernet0/0
Internet  192.168.30.202         65   0800.37d6.752b  ARPA   GigabitEthernet0/0
Internet  192.168.30.204          1   001e.8f37.b62c  ARPA   GigabitEthernet0/0
Internet  192.168.30.206         53   0800.37d6.3ef6  ARPA   GigabitEthernet0/0
Internet  192.168.30.253         16   00a0.de82.c063  ARPA   GigabitEthernet0/0
Internet  192.168.250.37          -   6c20.563b.1060  ARPA   SM1/0
Protocol  Address          Age (min)  Hardware Addr   Type   Interface
Internet  192.168.250.38          0   6c20.561c.3361  ARPA   SM1/0
Internet  192.168.254.45          0   0019.e299.5ff1  ARPA   GigabitEthernet0/1
Internet  192.168.254.46          -   6c20.563b.1051  ARPA   GigabitEthernet0/1
Internet  xxx.xxx.173.249         0   0012.4387.6c7f  ARPA   GigabitEthernet0/2
Internet  xxx.xxx.173.250         -   6c20.563b.1052  ARPA   GigabitEthernet0/2

show ip int brief

Interface                  IP-Address      OK? Method Status                Protocol
GigabitEthernet0/0         192.168.30.100  YES NVRAM  up                    up
GigabitEthernet0/1         192.168.254.46  YES NVRAM  up                    up
GigabitEthernet0/2         xxx.xxx.173.250 YES manual up                    up
SM1/0                      192.168.250.37  YES NVRAM  up                    up
 

show run | in ip route

ip route 0.0.0.0 0.0.0.0 xxx.xxx.173.249
ip route 0.0.0.0 0.0.0.0 192.168.30.253 255  (this goes to yamaha router through LAN for internet)
ip route 192.168.31.0 255.255.255.0 192.168.30.253(this goes to warehouse another yamaha router)

interface GigabitEthernet0/2
 description To Internet - Ethernet Handoff
 ip address xxx.xxx.173.250 255.255.255.252
 ip access-group 110 in
 ip flow ingress
 ip flow egress
 ip nat outside
 ip virtual-reassembly in
 duplex auto
 speed auto
 crypto map JAPWARE
end
 

Thanks in advance.

 

 

 

 

 

 

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 06:45 AM

Also I do notice in the show int g0/2 output

3 lost carrier

The lost carrier counter increases each time a carrier sense loss occurs. This happens when the hardware is transmitting a frame onto the wire and does not see its own carrier wave on the Ethernet.

The absence of the carrier signal increments the no carrier counter.

What could be the issue?

Thanks in advance...

0 Helpful

M SEB
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 06:56 AM

Are you fixing the speed/duplex under the interface g0/2 ? To what parameters has your priver fixed his port?

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 06:59 AM

Thanks for your reply

 

I didn't make any changes regarding the speed and duplex. Should i need to talk to provider for these parameters to be in place.

0 Helpful

M SEB
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 07:06 AM

The provider should let you know how he configures his port.

Otherwise if you still can reach your yahama router, you can check what are the configured speed/duplexing settings and mimic that on your 2911 g0/2 port. 

 

What's the purpose of your  ip access-group 110 in actually? 

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 07:12 AM

This is what it displays in yamaha router

show status lan2 (seems like it is set to Auto Negotiation)


LAN2
Description:
IP Address:                     xxx.xxx.173.250/30
Ethernet Address:               00:a0:de:82:c0:64
Operation mode setting:         Auto Negotiation (Link Down)
Maximum Transmission Unit(MTU): 1500 octets
Promiscuous mode:               OFF
Transmitted:                    79591508 packets (28280217956 octets)
  IPv4(all/fastpath):           79542797 packets / 66636127 packet
  IPv6(all/fastpath):           4 packets / 0 packet
Received:                       103780974 packets (102051541671 octets)
  IPv4:                         99533015 packets
  IPv6:                         0 packet
 

Access-list 110 (Internet outside interface best practices)

access-list 110 remark FROM_OUTSIDE_INTERNET
access-list 110 permit gre host x.xx.106.21 host xxx.xxx.173.250 log
access-list 110 permit gre host x.xx.106.20 host xxx.xxx.173.250 log
access-list 110 permit esp host x.xx.106.21 host xxx.xxx.173.250 log
access-list 110 permit esp host x.xx.106.20 host xxx.xxx.173.250 log
access-list 110 permit udp host x.xx.106.21 host xxx.xxx.173.250 eq isakmp log
access-list 110 permit udp host x.xx.106.20 host xxx.xxx.173.250 eq isakmp log
access-list 110 remark VPN SITE-TO-SITE JAPAN - WAREHOUSE
access-list 110 permit udp any host xxx.xx.8.178 eq isakmp
access-list 110 permit udp any host xxx.xx.8.178 eq non500-isakmp
access-list 110 permit udp any host xxx.xx.8.178 eq 10000
access-list 110 permit esp any host xxx.xx.8.178
access-list 110 permit udp host xxx.xx.8.178 eq isakmp any
access-list 110 permit udp host xxx.xx.8.178 eq non500-isakmp any
access-list 110 permit udp host xxx.xx.8.178 eq 10000 any
access-list 110 permit esp host xxx.xx.8.178 any
access-list 110 deny   ip 192.168.30.0 0.0.0.255 any log
access-list 110 deny   ip 192.168.31.0 0.0.0.255 any log
access-list 110 deny   ip 10.0.0.0 0.255.255.255 any log
access-list 110 deny   ip 172.16.0.0 0.15.255.255 any log
access-list 110 deny   ip 192.168.0.0 0.0.255.255 any log
access-list 110 deny   ip 127.0.0.0 0.255.255.255 any log
access-list 110 deny   ip host 255.255.255.255 any log
access-list 110 deny   ip host 0.0.0.0 any log
access-list 110 deny   ip any any log

Thanks for your reply......

 

0 Helpful

M SEB
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 07:28 AM

From you ACL output, ping reply towards xxx.xxx.173.250 address  is not allowed... 

there is no permit statement allowing ping reply back...

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 07:38 AM

Thanks for your reply. Its working now. The access-list was the culprit. Thank you very much.

0 Helpful

M SEB
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 07:40 AM

No worries. I'm glad it's working for you ! 

And have a happy new year !

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 07:51 AM

For making internet and site to site vpn to yamaha router work what need to opened could you please suggest.

 When I apply that access-group 110 in on the interface - internet and pings stop working.

Atleast my nat statements are working and hence internet working when i take off my access-group 110 in.

Sorry for being layman.

Appreciate for your help.

Please refer to the access-list 110 for more info.

0 Helpful

M SEB
Level 1
Level 1
In response to Vishnu Reddy

‎12-26-2014 06:51 AM

When performing your ping test, is it from the router or from a device behind the router ?

What give a ping from the router towards ISP xxx.xxx.173.249 address?  Is all ..... or another message? 

0 Helpful

Vishnu Reddy
Level 1
Level 1
In response to M SEB

‎12-26-2014 06:55 AM

Thanks for your reply

Its from cisco router 2911 and i am getting ..... Request time out.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card