Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1286
Views
0
Helpful
0
Replies

Cisco 2921 router configuration

tjenson76
Level 1
Level 1

‎12-05-2013 10:10 AM - edited ‎03-07-2019 04:57 PM

Hello Mr. Watts:

My name is Tom Jenson, tjenson@gwhf.org ;cell 254-253-1803 and I’m a Network Manager at a small rural Hospital in central Texas. In the past two weeks I switched Internet providers and I just finished upgrading from a bonded-T1 3Mbit circuit to a 20Mbit metro Ethernet circuit.

My new assignment is to add a new Hospital wide software called Cerner. Cerner is utilized through the Internet cloud. I have a diagram from Cerner showing the configuration needed to allow Cerner access to the LAN and how they will need Internet access.

I have the LAN connections working. My question is Cerner has provided a Cisco 2911 router which will be installed behind my Hospital Cisco 2921 router.

The path from the outside world into the LAN is as follows. Internet from Century Link goes through a Adtran 3448 NetVanta to my Cisco 2921 and then to a Cisco ASA 5510. I hope to bypass the ASA 5510 firewall and connect directly to the Cisco 2921 router from the Cisco 2911 router which is behind the Cisco 2921 router.

From the Cerner Cisco 2911 port G 0/1 private IP 10.10.10.3/24 to my Cisco 2921 port GE 0/0 private IP 10.10.10.4/24. I know I’ll need to possible NAT from an external routable IP to an internal IP on the Cisco 2921 router. I also need to turn up port GE 0/0.

This is my Cisco 2921 configuration.

  

GWHF-Cisco#sh run | i ip nat

ip nat inside

ip nat outside

ip nat inside

ip nat inside source list nonat interface FastEthernet0/0/0 overload

ip nat inside source static udp 10.10.10.2 500 interface FastEthernet0/0/0 500

ip nat inside source static udp 10.10.10.2 4500 interface FastEthernet0/0/0 4500

ip nat inside source static esp 10.10.10.2 interface FastEthernet0/0/0

ip nat inside source static 192.168.39.28 64.45.251.186

ip nat inside source static 192.168.39.6 64.45.251.187

ip nat inside source static 192.168.39.36 64.45.251.189

ip nat inside source static 192.168.39.39 64.45.251.190

ip nat inside source static 192.168.39.1 76.1.112.20

ip nat inside source static 192.168.39.16 76.1.112.21

ip nat inside source static 192.168.39.64 76.1.112.23

GWHF-Cisco#sh ip inter brief

Interface                 IP-Address     OK? Method Status               Protocol

Embedded-Service-Engine0/0 unassigned     YES NVRAM administratively down down

GigabitEthernet0/0         unassigned     YES NVRAM up                   up

GigabitEthernet0/1         unassigned     YES NVRAM down                 down

GigabitEthernet0/2         unassigned     YES NVRAM down                 down

FastEthernet0/0/0         76.1.112.22     YES manual up                   up

FastEthernet0/0/1         10.10.10.1     YES NVRAM up                   up

Multilink1                 unassigned     YES unset down                 down

NVI0                       unassigned     YES unset administratively down

I’ve never had the benefit of a Cisco Smartnet agreement. Cisco has been very helpful with aiding me in the Internet provider switch and re-establishing twelve site to site VPN tunnels when I come across a tunnel that just does work.

I’m not a WAN design engineer and any suggestions would highly appreciated.

Sincerely,

Tom Jenson

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents