Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
440
Views
0
Helpful
0
Replies

CISCO2921/K9 IOS 15.4M Cannot ssh; cannot see 0/0 interface from outside router/default gateway from inside

Rwhjr0760
Level 1
Level 1

‎05-03-2015 04:06 PM

Hello,

just bought several CISCO2921/K9 routers with the 15.4 M IOS; opened 2 of them and configured them with simple configuration with NAT, OSPF, and ssh the same way i have the first 5 routers that work fine.

I am unable to see the routers from the network, and unable to ssh into the router: inside the router i am unable to see the default gateway(Console 0).

I am hoping that someone knows what i culd be doing wrong in these newer IOS that is different from the olders routers?


2c430-C2900-184#sho run
Building configuration...

Current configuration : 6688 bytes
!
! Last configuration change at 19:12:49 UTC Wed Apr 29 2015 by Robert
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname 2c430-C2900-184
!
boot-start-marker
boot-end-marker
!
!
logging buffered 51200 warnings
enable password 1xtreme
!
no aaa new-model
!
!
!
!
!
!
!
!
!
!
!
ip dhcp excluded-address 10.10.10.1
!
!
!
no ip domain lookup
ip domain name mh.lucent.com
ip name-server 135.222.4.10
ip name-server 135.222.4.11
ip cef
no ipv6 cef
multilink bundle-name authenticated
!
!
cts logging verbose
!
crypto pki trustpoint TP-self-signed-2399229127
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-2399229127
 revocation-check none
 rsakeypair TP-self-signed-2399229127
!
!
crypto pki certificate chain TP-self-signed-2399229127
 certificate self-signed 01
  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
  69666963 6174652D 32333939 32323931 3237301E 170D3135 30313239 30333235
  31305A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 33393932
  32393132 3730819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
  8100D909 B1E1201B 8DD451AE CECABFF3 63C7549F B18CDBB7 A2A98E4B F7C1AE6B
  2DD75ABB 8CB50854 C307F337 F329B148 1AD244AB F0224E8D 98FECB15 740BFA31
  0369239F 3D98FA0A 89C448C0 D2EAF774 CDFA5A6B 5B1CF481 96F6DAF0 FE0CC859
  95490649 B40F95AF 7F3C0DA2 16CE65C5 3125AB64 360E5A55 B05BEF02 ABD3968D
  26B50203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
  551D2304 18301680 1416D655 60B60FE9 9CB896AF B36FD4D7 1F151D80 0F301D06
  03551D0E 04160414 16D65560 B60FE99C B896AFB3 6FD4D71F 151D800F 300D0609
  2A864886 F70D0101 05050003 81810093 AAE10A3C A2A0F044 89F96284 075DFB3F
  5D29FBB0 6489A073 30042DC8 8047C1DC 7EC3859F 69ED88B8 234F9F0E EBFCD73A
  D23F8104 C1BB9220 ECE96919 28E1D115 AC13098D E6A7EFA4 19331750 3DD936C8
  FCF8D458 08D09E92 4FD87BD3 75905684 B55626E1 1EE55574 DF03E2AC 4CED2EE3
  B0AD4FC0 25652C71 CE97E5DC 05E2CF
        quit
license udi pid CISCO2921/K9 sn FJC1905A1VL
!
!
username Robert privilege 15 secret 5 $1$hSBG$3M5Mjcguun.uzCaxsfJeK1
!
redundancy?
!
!
ip ssh version 2
!
!
!
!
interface Loopback0
 ip address 184.184.184.184 255.255.255.255
!
interface Embedded-Service-Engine0/0
 no ip address
 shutdown
!
interface GigabitEthernet0/0
 description Red public Corporate 0/0 135.112.184.1
 ip address 135.112.184.254 255.255.255.0
 ip nat outside
 ip nat enable
 ip virtual-reassembly in
 duplex full
 speed 1000
!
interface GigabitEthernet0/1
 description Blue - Private 0/1 192.168.184.0/20
 ip address 192.168.184.2 255.255.240.0
 ip nat inside
 ip nat enable
 ip virtual-reassembly in
 duplex full
 speed 1000
!
interface GigabitEthernet0/2
 description Red 0/0 Public 135.112.184.0/24
 no ip address
 ip nat outside
 ip virtual-reassembly in
 shutdown
 duplex full
 speed 1000
!
router ospf 184
 network 10.0.0.0 0.255.255.255 area 0
 network 135.112.153.0 0.0.0.255 area 0
 network 135.112.154.0 0.0.0.255 area 0
 network 135.112.155.0 0.0.0.255 area 0
 network 135.112.158.0 0.0.0.255 area 0
 network 135.112.184.0 0.0.0.255 area 0
 network 135.112.248.254 0.0.0.0 area 0
 network 135.112.251.0 0.0.0.255 area 0
 network 135.112.0.0 0.0.255.255 area 0
 network 192.168.0.0 0.0.255.255 area 0
 network 195.168.0.0 0.0.255.255 area 0
 network 0.0.0.0 255.255.255.255 area 0
network 135.102.216.0 0.255.255.255 area 0
!
ip default-gateway 135.112.184.1
ip forward-protocol nd
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip nat inside source list 1 interface GigabitEthernet0/1 overload
ip nat inside source static 192.168.184.104 135.112.184.104
ip nat inside source static 192.168.184.105 135.112.184.105
ip nat inside source static 192.168.184.106 135.112.184.106
ip nat inside source static 192.168.184.107 135.112.184.107
ip route 0.0.0.0 0.0.0.0 135.112.184.1
ip ospf name-lookup
!
!
!
access-list 1 permit 192.168.0.0 0.0.255.255
access-list 1 permit any
access-list 23 permit 10.10.10.0 0.0.0.7
access-list 184 permit ospf any any
!
control-plane
!
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------

Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for  one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.

It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.

username <myuser> privilege 15 secret 0 <mypassword>

Replace <myuser> and <mypassword> with the username and password you want to
use.

-----------------------------------------------------------------------
^C
banner login ^C
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device.
This feature requires the one-time use of the username "cisco" with the
password "cisco". These default credentials have a privilege level of 15.

YOU MUST USE CISCO CP or the CISCO IOS CLI TO CHANGE THESE  PUBLICLY-KNOWN
CREDENTIALS

Here are the Cisco IOS commands.

username <myuser>  privilege 15 secret 0 <mypassword>
no username cisco

Replace <myuser> and <mypassword> with the username and password you want
to use.

IF YOU DO NOT CHANGE THE PUBLICLY-KNOWN CREDENTIALS, YOU WILL NOT BE ABLE
TO LOG INTO THE DEVICE AGAIN AFTER YOU HAVE LOGGED OFF.

For more information about Cisco CP please follow the instructions in the
QUICK START GUIDE for your router or go to http://www.cisco.com/go/ciscocp
-----------------------------------------------------------------------
^C
!
line con 0
 exec-timeout 0 0
 logging synchronous
 login local
line aux 0
line 2
 login local
 no activation-character
 no exec
 transport preferred none
 transport input all
 transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
 stopbits 1
line vty 0 4
 access-class 23 in
 exec-timeout 0 0
 privilege level 15
 login local
 transport preferred none
 transport input telnet ssh
 transport output all
line vty 5 15
 access-class 23 in
 exec-timeout 0 0
 privilege level 15
 login local
 transport preferred none
 transport input telnet ssh
 transport output all
line vty 16 1114
 login local
 transport preferred none
 transport input telnet ssh
 transport output all
!
scheduler allocate 20000 1000
!
end

2c430-C2900-184#

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents