Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- Technology and Support
- Networking
- Routing
- traffic does not flow normally between different networks
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
363
Views
0
Helpful
1
Replies
traffic does not flow normally between different networks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-17-2015 07:40 AM - edited 03-05-2019 02:19 AM
My customer has a Cisco 2901, I am not sure if it is security licensed or just c2901/K9. They are installed 3 card: 1 Hwic-2FE, 1 RJ45/SFP and a 8 port GE switch. They have many networks connected throug this router. They cannot traffic data nromally between network 192.168.0.0 and the other networks. Just can see some machines not the entire networks. For instance, computer 192.168.0.55 wants to log into 192.168.42.10 by Real VNC, cannot, but if wants to log into 0.15, it can. I am not sure what happens is very strange, i can explain better if you want. Here is the configuration of cisco 2901
Building configuration...
Current configuration : 23176 bytes
!
! Last configuration change at 22:59:37 UTC Wed Sep 16 2015 by eguerra
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname RouterFCH
!
boot-start-marker
boot-end-marker
!
!
logging buffered 51200 warnings
no logging console
!
no aaa new-model
!
ip cef
!
!
!
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.5.1
!
ip dhcp pool ccp-pool
import all
network 192.168.5.0 255.255.255.0
default-router 192.168.5.1
lease 0 2
!
!
!
ip domain name yourdomain.com
ip name-server 192.168.2.1
no ipv6 cef
!
parameter-map type regex ccp-regex-nonascii
pattern [^\x00-\x80]
parameter-map type protocol-info yahoo-servers
server name scs.msg.yahoo.com
server name scsa.msg.yahoo.com
server name scsb.msg.yahoo.com
server name scsc.msg.yahoo.com
server name scsd.msg.yahoo.com
server name cs16.msg.dcn.yahoo.com
server name cs19.msg.dcn.yahoo.com
server name cs42.msg.dcn.yahoo.com
server name cs53.msg.dcn.yahoo.com
server name cs54.msg.dcn.yahoo.com
server name ads1.vip.scd.yahoo.com
server name radio1.launch.vip.dal.yahoo.com
server name in1.msg.vip.re2.yahoo.com
server name data1.my.vip.sc5.yahoo.com
server name address1.pim.vip.mud.yahoo.com
server name edit.messenger.yahoo.com
server name messenger.yahoo.com
server name http.pager.yahoo.com
server name privacy.yahoo.com
server name csa.yahoo.com
server name csb.yahoo.com
server name csc.yahoo.com
parameter-map type protocol-info msn-servers
server name messenger.hotmail.com
server name gateway.messenger.hotmail.com
server name webmessenger.msn.com
parameter-map type protocol-info aol-servers
server name login.oscar.aol.com
server name toc.oscar.aol.com
server name oam-d09a.blue.aol.com
multilink bundle-name authenticated
!
!
!
crypto pki trustpoint TP-self-signed-2492334416
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2492334416
revocation-check none
rsakeypair TP-self-signed-2492334416
!
!
crypto pki certificate chain TP-self-signed-2492334416
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32343932 33333434 3136301E 170D3133 31323036 32323438
35395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 34393233
33343431 3630819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BB48 F1A3F346 43E95DF2 29DAAB0E 4F6E19F2 F57779DC 62AA0BD6 0C4B64CF
043FAB64 0BF55DF4 C5E5C73E 45BE8B64 809BC9F2 3C938BB0 AE8D4F71 EE6845B2
65A7F767 A98D2534 7F94163F 57B9A790 F640ED9F 560832B4 85C19A6D A5AE96CC
C890915D 2CEF6E72 E1AC75EB 3A4CBD65 EE1D0974 3CDAD92F 6FC8134C 43B7FDC3
31DF0203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
551D2304 18301680 142EF448 6DEDF327 EA3F319E 0BE718B6 7E3973A9 12301D06
03551D0E 04160414 2EF4486D EDF327EA 3F319E0B E718B67E 3973A912 300D0609
2A864886 F70D0101 05050003 81810034 BD2E4C14 576DEE60 76747563 3B333328
095F315F 876F6215 5ADB6458 77464AEA A6DA7F29 09982908 A0F8C6AB 98F91F49
0F74232F 5FF0637C 939B123F 4752E09F 2ED3DB43 1334CD1D C1D4E59D C3D17FC2
7A0A11D2 60051000 1279CD72 343C0856 5DE54440 DA9046DC 96A8B780 68523878
90C25780 5DE9552F 7062E99F 21E9D2
quit
license udi pid CISCO2901/K9 sn FTX174983EX
license boot module c2900 technology-package securityk9
!
!
username eguerra privilege 15 secret 4 ijUTd1QWiJAXICYJ8tKog/qTjMuKsRGzl/qT9E.h3Z2
username admin privilege 15 secret 4 82aZraQKBdT4NJ8KLNGZbJYw4qrCbDIsgF9OWdYlnRg
!
redundancy
!
!
!
!
!
!
track 1 ip sla 1 reachability
delay up 10
!
track 2 ip sla 2 reachability
delay up 10
!
track 3 ip sla 3 reachability
delay up 10
!
track 4 ip sla 4 reachability
delay up 10
!
track 5 ip sla 5 reachability
delay up 10
!
track 6 ip sla 6 reachability
delay up 10
!
track 7 ip sla 7 reachability
delay up 10
!
track 8 ip sla 8 reachability
delay up 10
!
track 9 ip sla 9 reachability
delay up 10
!
track 10 ip sla 10 reachability
delay up 10
!
track 11 ip sla 11 reachability
delay up 10
!
track 12 ip sla 12 reachability
delay up 10
!
track 13 ip sla 13 reachability
delay up 10
!
track 14 ip sla 14 reachability
delay up 10
!
track 15 ip sla 15 reachability
delay up 10
!
track 16 ip sla 16 reachability
delay up 10
!
track 17 ip sla 17 reachability
delay up 10
!
track 18 ip sla 18 reachability
delay up 10
!
track 19 ip sla 19 reachability
delay up 10
!
track 20 ip sla 20 reachability
delay up 10
!
track 21 ip sla 21 reachability
delay up 10
!
track 22 ip sla 22 reachability
delay up 10
!
track 23 ip sla 23 reachability
delay up 10
!
track 24 ip sla 24 reachability
delay up 10
!
track 25 ip sla 25 reachability
delay up 10
!
track 26 ip sla 26 reachability
delay up 10
!
track 27 ip sla 27 reachability
delay up 10
!
track 28 ip sla 28 reachability
delay up 10
!
class-map type inspect imap match-any ccp-app-imap
match invalid-command
class-map type inspect match-any ccp-cls-protocol-p2p
match protocol edonkey signature
match protocol gnutella signature
match protocol kazaa2 signature
match protocol fasttrack signature
match protocol bittorrent signature
class-map type inspect smtp match-any ccp-app-smtp
match data-length gt 5000000
class-map type inspect match-any ccp-skinny-inspect
match protocol skinny
class-map type inspect http match-any ccp-app-nonascii
match req-resp header regex ccp-regex-nonascii
class-map type inspect match-any ccp-h323nxg-inspect
match protocol h323-nxg
class-map type inspect match-any ccp-cls-icmp-access
match protocol icmp
match protocol tcp
match protocol udp
class-map type inspect match-any ccp-cls-protocol-im
match protocol ymsgr yahoo-servers
match protocol msnmsgr msn-servers
match protocol aol aol-servers
class-map type inspect match-all ccp-protocol-pop3
match protocol pop3
class-map type inspect match-any ccp-h225ras-inspect
match protocol h225ras
class-map type inspect match-any ccp-h323annexe-inspect
match protocol h323-annexe
class-map type inspect match-any ccp-cls-insp-traffic
match protocol dns
match protocol https
match protocol icmp
match protocol imap
match protocol pop3
match protocol tcp
match protocol udp
class-map type inspect pop3 match-any ccp-app-pop3
match invalid-command
class-map type inspect match-any ccp-h323-inspect
match protocol h323
class-map type inspect match-all ccp-invalid-src
match access-group 100
class-map type inspect http match-any ccp-app-httpmethods
match request method bcopy
match request method bdelete
match request method bmove
match request method bpropfind
match request method bproppatch
match request method connect
match request method copy
match request method delete
match request method edit
match request method getattribute
match request method getattributenames
match request method getproperties
match request method index
match request method lock
match request method mkcol
match request method mkdir
match request method move
match request method notify
match request method options
match request method poll
match request method post
match request method propfind
match request method proppatch
match request method put
match request method revadd
match request method revlabel
match request method revlog
match request method revnum
match request method save
match request method search
match request method setattribute
match request method startrev
match request method stoprev
match request method subscribe
match request method trace
match request method unedit
match request method unlock
match request method unsubscribe
class-map type inspect match-any ccp-sip-inspect
match protocol sip
class-map type inspect http match-any ccp-http-blockparam
match request port-misuse im
match request port-misuse p2p
match request port-misuse tunneling
match req-resp protocol-violation
class-map type inspect match-all ccp-protocol-imap
match protocol imap
class-map type inspect match-all ccp-protocol-smtp
match protocol smtp
class-map type inspect match-all ccp-protocol-http
match protocol http
class-map type inspect match-all ccp-insp-traffic
match class-map ccp-cls-insp-traffic
class-map type inspect match-all ccp-protocol-p2p
match class-map ccp-cls-protocol-p2p
class-map type inspect match-all ccp-protocol-im
match class-map ccp-cls-protocol-im
class-map type inspect match-all ccp-icmp-access
match class-map ccp-cls-icmp-access
!
policy-map type inspect pop3 ccp-action-pop3
class type inspect pop3 ccp-app-pop3
log
reset
policy-map type inspect smtp ccp-action-smtp
class type inspect smtp ccp-app-smtp
reset
policy-map type inspect imap ccp-action-imap
class type inspect imap ccp-app-imap
log
reset
policy-map type inspect http ccp-action-app-http
class type inspect http ccp-http-blockparam
log
reset
class type inspect http ccp-app-httpmethods
log
reset
class type inspect http ccp-app-nonascii
log
reset
policy-map type inspect ccp-inspect
class type inspect ccp-invalid-src
drop log
class type inspect ccp-protocol-http
inspect
service-policy http ccp-action-app-http
class type inspect ccp-protocol-smtp
inspect
service-policy smtp ccp-action-smtp
class type inspect ccp-protocol-imap
inspect
service-policy imap ccp-action-imap
class type inspect ccp-protocol-pop3
inspect
service-policy pop3 ccp-action-pop3
class type inspect ccp-protocol-p2p
drop log
class type inspect ccp-protocol-im
drop log
class type inspect ccp-insp-traffic
inspect
class type inspect ccp-sip-inspect
inspect
class type inspect ccp-h323-inspect
inspect
class type inspect ccp-h323annexe-inspect
inspect
class type inspect ccp-h225ras-inspect
inspect
class type inspect ccp-h323nxg-inspect
inspect
class type inspect ccp-skinny-inspect
inspect
class class-default
drop
policy-map type inspect ccp-permit
class class-default
drop
policy-map type inspect ccp-permit-icmpreply
class type inspect ccp-icmp-access
inspect
class class-default
pass
!
zone security in-zone
zone security out-zone
zone-pair security ccp-zp-self-out source self destination out-zone
service-policy type inspect ccp-permit-icmpreply
zone-pair security ccp-zp-in-out source in-zone destination out-zone
service-policy type inspect ccp-inspect
zone-pair security ccp-zp-out-self source out-zone destination self
service-policy type inspect ccp-permit
!
!
!
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
ip address 192.168.1.1 255.255.255.0
!
interface GigabitEthernet0/0
description $FW_INSIDE$
ip address 172.16.1.1 255.255.255.0
zone-member security in-zone
duplex auto
speed auto
!
interface GigabitEthernet0/1
description $FW_INSIDE$
no ip address
zone-member security in-zone
duplex auto
speed auto
!
interface FastEthernet0/0/0
description $FW_INSIDE$
no ip address
zone-member security in-zone
duplex auto
speed auto
!
interface FastEthernet0/0/1
description $FW_INSIDE$
ip address 172.16.4.1 255.255.255.252
zone-member security in-zone
duplex auto
speed auto
!
interface GigabitEthernet0/1/0
description $FW_INSIDE$
ip address 172.16.2.1 255.255.255.0
zone-member security in-zone
duplex auto
speed auto
!
interface GigabitEthernet0/3/0
description LAN
no ip address
!
interface GigabitEthernet0/3/1
no ip address
!
interface GigabitEthernet0/3/2
no ip address
!
interface GigabitEthernet0/3/3
no ip address
!
interface GigabitEthernet0/3/4
no ip address
!
interface GigabitEthernet0/3/5
no ip address
!
interface GigabitEthernet0/3/6
no ip address
!
interface GigabitEthernet0/3/7
no ip address
!
interface Vlan1
ip address 192.168.2.2 255.255.255.0
zone-member security in-zone
!
ip forward-protocol nd
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip route 192.168.27.0 255.255.255.0 172.16.2.13 track 1
ip route 192.168.37.0 255.255.255.0 172.16.2.17 track 2
ip route 192.168.20.0 255.255.255.0 172.16.2.16 track 3
ip route 192.168.22.0 255.255.255.0 172.16.2.15 track 4
ip route 192.168.25.0 255.255.255.0 172.16.2.12 track 5
ip route 192.168.31.0 255.255.255.0 172.16.2.11 track 6
ip route 192.168.29.0 255.255.255.0 172.16.2.19 track 7
ip route 192.168.21.0 255.255.255.0 172.16.2.10 track 8
ip route 192.168.23.0 255.255.255.0 172.16.2.20 track 9
ip route 192.168.48.0 255.255.255.0 172.16.2.28 track 9
ip route 192.168.26.0 255.255.255.0 172.16.2.4 track 10
ip route 192.168.30.0 255.255.255.0 172.16.2.21 track 11
ip route 192.168.33.0 255.255.255.0 172.16.2.22 track 12
ip route 192.168.43.0 255.255.255.0 172.16.2.23 track 13
ip route 192.168.44.0 255.255.255.0 172.16.2.9 track 14
ip route 192.168.45.0 255.255.255.0 172.16.1.21 track 15
ip route 192.168.32.0 255.255.255.0 172.16.2.6 track 16
ip route 192.168.39.0 255.255.255.0 172.16.2.7 track 17
ip route 192.168.46.0 255.255.255.0 172.16.2.18 track 18
ip route 192.168.47.0 255.255.255.0 172.16.2.14 track 20
ip route 192.168.42.0 255.255.255.0 172.16.2.27 track 21
ip route 192.168.42.0 255.255.255.0 172.16.4.2 track 21
ip route 192.168.41.0 255.255.255.0 172.16.2.26 track 22
ip route 192.168.40.0 255.255.255.0 172.16.2.5 track 23
ip route 192.168.35.0 255.255.255.0 172.16.2.8 track 24
ip route 192.168.24.0 255.255.255.0 172.16.2.25 track 25
ip route 192.168.28.0 255.255.255.0 172.16.2.24 track 26
ip route 192.168.18.0 255.255.254.0 172.16.4.2 track 27
ip route 192.168.60.0 255.255.255.0 172.16.4.2 track 28
ip route 192.168.61.0 255.255.255.0 172.16.4.2 track 28
ip route 10.10.38.52 255.255.255.252 172.16.2.248
ip route 10.11.99.0 255.255.255.0 172.16.2.248
ip route 172.16.3.0 255.255.255.0 192.168.2.248
ip route 172.16.4.4 255.255.255.252 172.16.4.2
ip route 172.16.4.8 255.255.255.252 172.16.4.2
ip route 172.16.4.12 255.255.255.252 172.16.4.2
ip route 172.16.5.0 255.255.255.0 192.168.2.248
ip route 172.16.6.0 255.255.255.0 192.168.2.200
ip route 172.16.30.0 255.255.255.0 192.168.2.200
ip route 172.16.31.0 255.255.255.0 192.168.2.1
ip route 192.168.0.0 255.255.255.0 192.168.2.1
ip route 192.168.15.0 255.255.255.0 192.168.2.250
ip route 192.168.16.0 255.255.255.0 192.168.2.248
ip route 192.168.17.0 255.255.255.0 192.168.2.250
ip route 192.168.18.0 255.255.254.0 192.168.2.248 10
ip route 192.168.19.0 255.255.255.0 192.168.2.248
ip route 192.168.20.0 255.255.255.0 172.16.1.25 10
ip route 192.168.21.0 255.255.255.0 172.16.1.22 10
ip route 192.168.22.0 255.255.255.0 172.16.1.13 10
ip route 192.168.23.0 255.255.255.0 172.16.1.15 10
ip route 192.168.24.0 255.255.255.0 172.16.1.6 10
ip route 192.168.25.0 255.255.255.0 172.16.1.16 10
ip route 192.168.26.0 255.255.255.0 172.16.1.10 10
ip route 192.168.27.0 255.255.255.0 172.16.1.5 10
ip route 192.168.28.0 255.255.255.0 172.16.1.18 10
ip route 192.168.29.0 255.255.255.0 172.16.1.14 10
ip route 192.168.30.0 255.255.255.0 172.16.1.19 10
ip route 192.168.31.0 255.255.255.0 172.16.1.17 10
ip route 192.168.32.0 255.255.255.0 172.16.1.27 10
ip route 192.168.33.0 255.255.255.0 172.16.1.20 10
ip route 192.168.35.0 255.255.255.0 172.16.1.32 10
ip route 192.168.37.0 255.255.255.0 172.16.1.23 10
ip route 192.168.39.0 255.255.255.0 172.16.1.28 10
ip route 192.168.40.0 255.255.255.0 172.16.1.31 10
ip route 192.168.41.0 255.255.255.0 172.16.1.9 10
ip route 192.168.42.0 255.255.255.0 172.16.1.4 10
ip route 192.168.42.0 255.255.255.0 192.168.2.248 10
ip route 192.168.43.0 255.255.255.0 172.16.1.24 10
ip route 192.168.44.0 255.255.255.0 172.16.1.26 10
ip route 192.168.45.0 255.255.255.0 192.168.2.250 10
ip route 192.168.46.0 255.255.255.0 172.16.1.29 10
ip route 192.168.47.0 255.255.255.0 172.16.1.30 10
ip route 192.168.48.0 255.255.255.0 172.16.1.15 10
ip route 192.168.49.0 255.255.255.0 172.16.2.29
ip route 192.168.50.0 255.255.255.0 172.16.2.30
ip route 192.168.51.0 255.255.255.0 172.16.2.31
ip route 192.168.52.0 255.255.255.0 172.16.2.32
ip route 192.168.53.0 255.255.255.0 172.16.2.33
ip route 192.168.54.0 255.255.255.0 172.16.2.34
ip route 192.168.55.0 255.255.255.0 172.16.2.35
ip route 192.168.56.0 255.255.255.0 172.16.2.36
ip route 192.168.57.0 255.255.255.0 192.168.2.200
ip route 192.168.58.0 255.255.255.0 172.16.2.37
ip route 192.168.59.0 255.255.255.0 172.16.2.38
ip route 192.168.60.0 255.255.255.0 192.168.2.248 10
ip route 192.168.61.0 255.255.255.0 192.168.2.248 10
ip route 192.168.90.0 255.255.255.0 172.16.2.50
ip route 192.168.100.0 255.255.255.0 192.168.2.3
ip route 192.168.150.0 255.255.255.0 192.168.2.252
ip route 192.168.200.0 255.255.255.0 192.168.2.200
ip route 193.168.1.0 255.255.255.0 192.168.2.200
!
ip sla auto discovery
ip sla 1
icmp-echo 172.16.2.13 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 1 life forever start-time now
ip sla 2
icmp-echo 172.16.2.17 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 2 life forever start-time now
ip sla 3
icmp-echo 172.16.2.16 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 3 life forever start-time now
ip sla 4
icmp-echo 172.16.2.15 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 4 life forever start-time now
ip sla 5
icmp-echo 172.16.2.12 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 5 life forever start-time now
ip sla 6
icmp-echo 172.16.2.11 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 6 life forever start-time now
ip sla 7
icmp-echo 172.16.2.19 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 7 life forever start-time now
ip sla 8
icmp-echo 172.16.2.10 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 8 life forever start-time now
ip sla 9
icmp-echo 172.16.2.28 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 9 life forever start-time now
ip sla 10
icmp-echo 172.16.2.4 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 10 life forever start-time now
ip sla 11
icmp-echo 172.16.2.21 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 11 life forever start-time now
ip sla 12
icmp-echo 172.16.2.22 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 12 life forever start-time now
ip sla 13
icmp-echo 172.16.2.23 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 13 life forever start-time now
ip sla 14
icmp-echo 172.16.2.9 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 14 life forever start-time now
ip sla 15
icmp-echo 172.16.1.21 source-interface GigabitEthernet0/0
frequency 10
ip sla schedule 15 life forever start-time now
ip sla 16
icmp-echo 172.16.2.6 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 16 life forever start-time now
ip sla 17
icmp-echo 172.16.2.7 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 17 life forever start-time now
ip sla 18
icmp-echo 172.16.2.18 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 18 life forever start-time now
ip sla 20
icmp-echo 172.16.2.14 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 20 life forever start-time now
ip sla 21
icmp-echo 172.16.4.13 source-interface FastEthernet0/0/1
frequency 10
ip sla schedule 21 life forever start-time now
ip sla 22
icmp-echo 172.16.2.26 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 22 life forever start-time now
ip sla 23
icmp-echo 172.16.2.5 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 23 life forever start-time now
ip sla 24
icmp-echo 172.16.2.8 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 24 life forever start-time now
ip sla 25
icmp-echo 172.16.2.25 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 25 life forever start-time now
ip sla 26
icmp-echo 172.16.2.24 source-interface GigabitEthernet0/1/0
frequency 10
ip sla schedule 26 life forever start-time now
ip sla 27
icmp-echo 172.16.4.5 source-interface FastEthernet0/0/1
frequency 10
ip sla schedule 27 life forever start-time now
ip sla 28
icmp-echo 172.16.4.9 source-interface FastEthernet0/0/1
frequency 10
ip sla schedule 28 life forever start-time now
access-list 23 permit 192.168.0.0 0.0.0.255
access-list 23 permit 172.16.0.0 0.0.255.255
access-list 23 permit 192.168.2.0 0.0.0.255
access-list 100 permit ip host 255.255.255.255 any
access-list 100 permit ip 127.0.0.0 0.255.255.255 any
access-list 100 permit ip 192.168.5.0 0.0.0.255 any
access-list 100 permit ip 192.168.2.0 0.0.0.255 any
access-list 100 permit ip 192.168.0.0 0.0.0.255 any
access-list 101 permit ip any any
access-list 101 permit icmp any any
access-list 101 permit tcp any any
access-list 110 permit udp any any range 5000 6000
access-list 199 permit ip host 192.168.100.22 host 192.168.2.1
!
!
snmp-server ifindex persist
snmp-server enable traps entity-sensor threshold
!
control-plane
!
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.
It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.
username <myuser> privilege 15 secret 0 <mypassword>
Replace <myuser> and <mypassword> with the username and password you want to
use.
-----------------------------------------------------------------------
^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
This feature requires the one-time use of the username "cisco" with the
password "cisco". These default credentials have a privilege level of 15.
YOU MUST USE CISCO CP or the CISCO IOS CLI TO CHANGE THESE PUBLICLY-KNOWN
CREDENTIALS
Here are the Cisco IOS commands.
username <myuser> privilege 15 secret 0 <mypassword>
no username cisco
Replace <myuser> and <mypassword> with the username and password you want
to use.
IF YOU DO NOT CHANGE THE PUBLICLY-KNOWN CREDENTIALS, YOU WILL NOT BE ABLE
TO LOG INTO THE DEVICE AGAIN AFTER YOU HAVE LOGGED OFF.
For more information about Cisco CP please follow the instructions in the
QUICK START GUIDE for your router or go to http://www.cisco.com/go/ciscocp
-----------------------------------------------------------------------
^C
!
line con 0
login local
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
privilege level 15
login local
transport input telnet
line vty 5 15
access-class 23 in
privilege level 15
login local
transport input telnet
!
scheduler allocate 20000 1000
!
end
Labels:
- Labels:
-
Other Routing
1 Reply 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-17-2015 07:38 PM
Hi Eduardo,
On a quick look on the configuration, 192.168.0.x is reachable from this router via 192.168.2.1 (Vlan 1)
ip route 192.168.0.0 255.255.255.0 192.168.2.1
Similarly, 192.168.42.x is reachable from this router via 172.16.1.4 or 192.168.2.248 (embedded-service-engine)
ip route 192.168.42.0 255.255.255.0 172.16.1.4 10
ip route 192.168.42.0 255.255.255.0 192.168.2.248 10
Do you really want to have 192.168.42.0/24 destinated packet to go to Embedded SM?.
Where are these 2 networks connected and how are they connected to this router (the router from where you pulled the configuration).
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Customers Also Viewed These Support Documents