Cisco 851 Help

[Rich]

No lol, Cisco wont take it back for an RMA i dont think

Refresh my memory, is the "internet" port on this suckers switchport 4? I know it is on the 871.
Remind me which interfaces are where on it and ill knock up a config to get you started when i get the chance.

 

[Rich]

Tip in the meantime. If when you enter a command it "complains". Press the up arrow to repeat the command, but delete back to just before the bit it doesnt like and press "?". This will tell you what you CAN type next.

 

[Rich]

I think its "int vlan1" for the interface btw. It is on the 877 i have, although that may be running a different IOS.

 

[mmj_uk]

ok thanks, yeah i just meant get them to repair it for me for a fee or whatever not return it as faulty.

Information here:
http://www.cisco.com/en/US/products/hw/routers/ps380/products_data_sheet0900aecd8028a9a9.html

WAN INTERFACE - 10/100 Mbps Fast Ethernet
LAN INTERFACE - 4-port 10/100 Mbps switch

 

[Rich]

Yeah but which interface do you have plugged into the interweb? Make it easy on me lol

 

[Rich]

Do a "sh ip int brie" for me and post it on here please, thatll be easiest.

May as well do the full "sh run" actually.

 

[mmj_uk]

my modem goes into the wan socket pc/xbox etc into any of the 4 lan sockets.

 

[mmj_uk]

sh run: www.mmj.myby.co.uk/New Text Document.txt

 

[Rich]

Ok, post a Sh run up please so i can see what that corresponds to in the config.


Edit: Cisco.com just shows interfaces fastethernet 0-4. Isnt your wan port numbered?

 

[mmj_uk]

LAN = FE0-FE3
WAN = FE4

hope this helps, i'm logging off for the night shortly but thanks again.

 

[Rich]

service password-encryption
service sequence-numbers
!
hostname MMJUK
!
boot-start-marker
boot system flash 
boot-end-marker
!
security authentication failure rate 3 log
security passwords min-length 8
logging buffered 4096 debugging
logging console debug
enable secret 5 ****YOURPASSWORDGOESHERE****
!
clock timezone GMT 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
no ip source-route
no ip gratuitous-arps
ip cef
!
!
ip inspect tcp synwait-time 10
ip inspect name INSPECT cuseeme
ip inspect name INSPECT ftp
ip inspect name INSPECT h323
ip inspect name INSPECT netshow
ip inspect name INSPECT rcmd
ip inspect name INSPECT realaudio
ip inspect name INSPECT rtsp
ip inspect name INSPECT smtp
ip inspect name INSPECT sqlnet
ip inspect name INSPECT streamworks
ip inspect name INSPECT tftp
ip inspect name INSPECT tcp
ip inspect name INSPECT udp
ip inspect name INSPECT vdolive
ip inspect name INSPECT icmp
ip tcp synwait-time 10
no ip dhcp conflict logging
ip dhcp excluded-address 192.168.1.1
!
ip dhcp pool MMJnet
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1
   dns-server ***ENTER YOUR DNS SERVERS HERE WITH SPACE BETWEEN EACH IP*** 
   lease infinite
!
no ip bootp server
no ip domain lookup
ip domain name MMJ.com
ip vrf forwarding
!
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
username mmjuk password ****YOURPASSWORDGOESHERE****
!
! 
!
!
!
!
interface FastEthernet0                       
 no ip address 
 no shut             
! 
interface FastEthernet1                       
 no ip address              
 no shut         
! 
interface FastEthernet2                       
 no ip address              
 no shut         
! 
interface FastEthernet3                       
 no ip address              
 no shut         
!
interface FastEthernet4
 description Outside Net
 ip address dhcp
 ip access-group 101 in
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat outside
 ip route-cache flow
 half-duplex
 no cdp enable
 no shut
!
interface vlan1
 description Inside Net
 ip address 192.168.1.1 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat inside
 ip inspect INSPECT in
 ip route-cache flow
 speed 100
 full-duplex
 no cdp enable
!
ip nat inside source list 10 interface FastEthernet4 overload
ip nat translation timeout 3600
ip nat translation tcp-timeout 1200
ip nat translation finrst-timeout 15
ip nat translation syn-timeout 45
ip classless
ip http server
ip http access-class 1
ip http authentication local
ip http secure-server
!
logging trap debugging
access-list 1 remark ***HTTP_SERVER_ACL***
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 1 deny   any log
access-list 10 remark ***PAT ADDRESSES***
access-list 10 permit 192.168.1.0 0.0.0.15
access-list 100 remark ***ALLOWED TO SSH TO ROUTER***
access-list 100 permit ip 192.168.1.0 0.0.0.255 any
access-list 101 remark ***ALLOWS ISP TO ASSIGN ADDRESSES***
access-list 101 permit udp any any eq bootpc
access-list 101 remark ***RFC2827_FIltering***
access-list 101 deny   ip 10.0.0.0 0.255.255.255 any log
access-list 101 deny   ip 172.16.0.0 0.15.255.255 any log
access-list 101 deny   ip 192.168.0.0 0.0.255.255 any log
access-list 101 deny   ip 127.0.0.0 0.255.255.255 any log
access-list 101 permit icmp any any echo-reply
access-list 101 permit icmp any any time-exceeded
access-list 101 permit icmp any any unreachable
access-list 101 deny   ip any any log
no cdp run
banner login ^CCThis is my router. There are many like it but this one is mine.
^C
!
line con 0
 transport output telnet
line aux 0
 transport input ssh
 transport output ssh
line vty 0 4
 access-class 100 in
 exec-timeout 120 0
 password 7 10585A0B1C044108191679
 login local
 transport input ssh
 transport output ssh
!
scheduler max-task-time 5000
scheduler interval 500
end

Try this, and be sure to edit the bits i have starred out to your needs (apart from the remarks, they can stay as is)


Edit:

Just go to the router, type "en" followed by enter and then "conf t" followed by enter and then paste the above in. If you are doing it over console you will have to do it bit by bit, maybe 20 lines at a time.

 

[mmj_uk]

do i have to type all that in? or is there a way i can just run it?

if typed in i'll have to leave it while tomorrow im afraid, thanks a lot though mate.

edit: ah ok, 2mins.

 

[mmj_uk]

for the ip address and gateway do i use what's currently showing in ipconfi with just my modem plugged in?

 

[Rich]

When you plug your router into the cable, make sure your network card is on DHCP and you will be ready to rock. Just make sure you add your DNS servers into the config as noted in the above code!

 

[mmj_uk]

is DNS servers all three addresses from ipconfig? ip/subnet mask/default gateway?

 

[Rich]

Nope, its just your DNS servers. They are used to map Names (ocuk.co.uk) to ipaddresses.

Do an ipconfig /all and it will list them both

 

[mmj_uk]

well the activity lights flash which is something that hasnt happened since i screwed it all up, but the internet doesnt work i just get page cannot be displayed messages, i even tried renewing ip manually release/renew.

strangely if i reboot it then it works during boot but once everything has loaded it stops.

i'm logging off for night now anyhow, thanks again mate i must be hard work i suppose this is good experience for me though in an area i suck at lol.

 

[Rich]

No probs!

When you are up tommorow, make sure your machine has gotten an address starting with 192.168.1.whatever and make sure it has the DFG of 192.168.1.1. Also try to ping 192.168.1.1 and see what happens.

Ill be out all day tommorow so im sure somebody else will try and help.

 

[tolien]

Run "setup" at the command line, and it should hold your hand through getting to something resembling the default config it came with.

 

[mmj_uk]

Well i've given up, tried running setup also but it is by no means simple.

I'm just gonna retire it until I can find someone to come and sort it for me or maybe find a decent book on Cisco IOS.

Is this any good do you reckon?
http://www.amazon.co.uk/gp/product/076451668X/202-9164037-6720665?v=glance&n=266239