Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1185
Views
0
Helpful
8
Replies

DNS Problem

Smithers944
Level 1
Level 1

‎06-14-2011 04:20 AM - edited ‎03-07-2019 12:48 AM

Hello,

I am having a problem with the dns setup on my router(851w)

when I point my clients to my router for dns resolutions (200.0.0.1) they don't get resolved..., so my solution was to point them to an actual dns server of my isp (203.12.160.36) via a static route to my adsl interface (Dialer2) But that's an abnormal way to do it...

How do I setup my router so i can just point my clients to my router (200.0.0.1) for dns resolutions. Any help is much appreciated.

My router's config is below:

SMITTY_ROUTER(config)#do sh run

Building configuration...

Current configuration : 4098 bytes

!

version 12.4

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname SMITTY_ROUTER

!

boot-start-marker

boot-end-marker

!

no logging buffered

enable secret 5 $1$X2p6$X0xMR7mBvuaAUlCueTxys1

!

no aaa new-model

!

resource policy

!

ip subnet-zero

no ip dhcp use vrf connected

ip dhcp excluded-address 200.0.0.1 200.0.0.9

!

ip dhcp pool DHCP

   import all

   network 200.0.0.0 255.255.255.224

   dns-server 203.12.160.36 203.12.160.35

   default-router 200.0.0.1

   lease 4

!

!

ip cef

ip domain name SmitNet.com

ip name-server 203.12.160.36

ip name-server 203.12.160.35

ip rcmd rcp-enable

ip rcmd remote-host sdmRd8ec55b8 200.0.0.22 Ld8ec55b8 enable

ip rcmd remote-username sdmRd8ec55b8

vpdn enable

!

!

!

crypto pki trustpoint TP-self-signed-3874658233

enrollment selfsigned

subject-name cn=IOS-Self-Signed-Certificate-3874658233

revocation-check none

rsakeypair TP-self-signed-3874658233

!

!

crypto pki certificate chain TP-self-signed-3874658233

certificate self-signed 01

  30820251 308201BA A0030201 02020101 300D0609 2A864886 F70D0101 04050030

  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274

  69666963 6174652D 33383734 36353832 3333301E 170D3032 30343033 32303439

  32395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649

  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38373436

  35383233 3330819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281

  8100ACF6 701F3FD2 BD47B5D8 841A0481 1D426E4A FF604C29 B0B0AD35 F5CD465F

  CABB574E 743E78E4 6BA16C22 BF70640E B7A576E6 DC7E13DD D9FD9269 97B1DDC9

  33EA7E4F 797C078C 5E8B826D F667BA77 B0E1667D 5857A2D0 84BD1266 026DA565

  D96922CE 4100D415 23D0E3C9 600E31D7 7FF28AE3 4BC4FA18 63766218 749E2303

  116D0203 010001A3 79307730 0F060355 1D130101 FF040530 030101FF 30240603

  551D1104 1D301B82 19534D49 5454595F 524F5554 45522E53 6D69744E 65742E63

  6F6D301F 0603551D 23041830 168014D3 6BE62F4E 7AC4CE7B 7F678526 B4F22179

  BDCFF730 1D060355 1D0E0416 0414D36B E62F4E7A C4CE7B7F 678526B4 F22179BD

  CFF7300D 06092A86 4886F70D 01010405 00038181 0003CED9 C6DAAD3A 767D0AC0

  765A8930 FBB2D7D5 9AD884F1 01C43B4B 17C62AFC DD940FA3 D3C65A1D 2A688759

  128D6CE3 38F18F16 DADC5EB0 99739D32 34ABDC1B E417EEB8 9AFF560E A2D0C72C

  704ADC11 CFADEA54 A7BC5AC1 DFC87B44 72634197 38A0F457 6EAB6124 1BC18052

  5AD5E082 3B81302D 7EBB9BD6 46501E4A 265C7485 1A

  quit

username david privilege 15 secret 5 $1$BbPR$5NamnAITOZonmIlrCxEaB1

!

!

!

!

!

interface ATM0

no ip address

no atm ilmi-keepalive

dsl operating-mode auto

!

interface ATM0.1 point-to-point

pvc 8/35

  pppoe-client dial-pool-number 1

!

!

interface FastEthernet0

pppoe enable

no cdp enable

!

interface FastEthernet1

!

interface FastEthernet2

!

interface FastEthernet3

!

interface Dot11Radio0

no ip address

ip nat inside

ip virtual-reassembly

speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0

channel 2462

station-role root

!

interface Dot11Radio0.1

encapsulation dot1Q 1 native

ip address 201.0.0.2 255.255.255.224

shutdown

no snmp trap link-status

no cdp enable

!

interface Vlan1

ip address 200.0.0.1 255.255.255.224

ip nat inside

ip virtual-reassembly

ip tcp adjust-mss 1412

!

interface Dialer2

ip address negotiated

ip mtu 1452

ip nat outside

ip virtual-reassembly

encapsulation ppp

dialer pool 1

dialer-group 1

no cdp enable

ppp authentication pap callin

ppp pap sent-username louisepr password 7 111D09024640585851

!

ip classless

ip route 0.0.0.0 0.0.0.0 Dialer2

!

ip http server

ip http secure-server

ip nat inside source list 2 interface Dialer2 overload

!

access-list 1 permit 200.0.0.0 0.0.0.31

access-list 2 remark INSIDE_IF=Vlan1

access-list 2 remark SDM_ACL Category=2

access-list 2 permit 200.0.0.0 0.0.0.31

dialer-list 1 protocol ip permit

no cdp run

!

control-plane

!

banner login ^CSMITTY ROUTER !!!!!!!!!!!!!^C

!

line con 0

logging synchronous

no modem enable

line aux 0

line vty 0 4

login local

transport input all

!

scheduler max-task-time 5000

end

Labels:
0 Helpful
8 Replies 8

Thotsaphon Lueangwattanaphong
Level 7
Level 7

‎06-14-2011 04:36 AM

Hi,

   Can you configure the following command(if supported) on C851w?

SMITTY_ROUTER(conf)#ip dns server

HTH,

Toshi

0 Helpful

johnlloyd_13
Level 9
Level 9

‎06-14-2011 09:10 PM

Hi David,

Your current config (via DHCP) already did meet your objective.

Sent from Cisco Technical Support iPhone App

0 Helpful

cadet alain
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎06-15-2011 01:09 AM

Hi John,

I don't think so because he wants his Cisco gear to act like a forwarding DNS and in the DHCP snippet the DNS servers are external but that is the config working but not the one he wants.

He need 3 things:

-in DHCP scope use the router IP as DNS server

-add ip dns server  like Toshi remarked

-add the ip addresses of the external DNS with ip name server command in global config

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful

Smithers944
Level 1
Level 1
In response to cadet alain

‎06-15-2011 03:50 AM

Hi,

Yes Cadet thats what I want. I tried the steps above but the "ip dns server" command does not exist on my router.

I have these other commands

ip domain

ip domain-list

ip domain-lookup

ip domain-name.

Can I use these other commands instead?

Thanks for the replies.

0 Helpful

Antonio Knox
Level 7
Level 7
In response to Smithers944

‎06-15-2011 05:06 AM

Use

ip domain-lookup

What version of IOS are you running?  The 'ip dns server' command that cadet suggested should be the winner here, but are you certain that it doesn not work? Try

Router(config)# ip d?

Message was edited by: Antonio Knox

0 Helpful

cadet alain
VIP Alumni
VIP Alumni
In response to Smithers944

‎06-15-2011 05:15 AM

Hi,

ip domain-lookup is the default that's why I didn't mention it but is is mandatory.

for the Proxy DNS support ( ip dns server) you need an advanced security image  > 12.3

Regards.

Alain

Don't forget to rate helpful posts.
0 Helpful

Thotsaphon Lueangwattanaphong
Level 7
Level 7
In response to cadet alain

‎06-15-2011 05:18 AM

Alain is right.

Sent from Cisco Technical Support iPhone App

0 Helpful

Smithers944
Level 1
Level 1

‎06-17-2011 06:26 AM

Thank you everyone,

I upgraded my iOS to the latest version and enabled the "ip dns server" command. Everything works perfectly now.

Many many thanks <3

Sent from Cisco Technical Support iPhone App

0 Helpful
Customers Also Viewed These Support Documents