Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco 2612 Point to point-- can't get traffic/in out 4

Status
Not open for further replies.

ITlackey

IS-IT--Management
Joined
Apr 27, 2005
Messages
16
Location
US
With apologies for what is most likely a simple solution.

I have set up a t1 point to point connection to be used to link two plants together, bridging 2 subnets (192.168.0.0 & 192.168.1.0). I have configured the routes to run statically routed and filtered using a route map set up, and a access list configured. I can ping all four interfaces from either machine (both ethernet interfaces on either end and both serial interfaces), but cannot get traffic outside the router (e.g. 192.168.1.253 is unreachable). I am just not seeing what else needs to be done.

Any suggestions of how to fix this/do this better would be most helpful. See configuration below (less passwords):

Current configuration:
!
version 12.0
service config
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname plant2
!
!
!
!
!
!
ip subnet-zero
!
cns event-service server
!
!
--More--  !
process-max-time 200
!
interface Ethernet0/0
description ethernet interface plant 2
ip address 192.168.1.254 255.255.255.0
no ip directed-broadcast
ip route-cache policy
ip policy route-map toplant1
no cdp enable
no mop enabled
!
interface Serial0/0
description pt-pt t1
ip address 172.16.216.3 255.255.255.0
no ip directed-broadcast
no ip mroute-cache
service-module t1 clock source internal
!
interface TokenRing0/0
no ip address
no ip directed-broadcast
shutdown
--More--   ring-speed 16
no cdp enable
!
router rip
redistribute connected
network 172.16.0.0
network 192.168.1.0
distribute-list 12 out Ethernet0/0
distribute-list 12 in Ethernet0/0
distribute-list 12 out Serial0/0
distribute-list 12 in Serial0/0
!
ip classless
ip route 172.16.216.0 255.255.255.0 Ethernet0/0
ip route 192.168.0.0 255.255.255.0 172.16.216.2
ip route 192.168.1.0 255.255.255.0 Ethernet0/0
no ip http server
!
access-list 1 permit 192.168.0.0 0.0.0.255
access-list 2 permit 192.168.1.0 0.0.0.255
access-list 10 permit 192.168.1.0
access-list 10 permit any
access-list 11 permit 192.168.0.0
access-list 11 permit any
access-list 12 permit 172.16.216.0
access-list 12 permit any
dialer-list 1 protocol ip permit
dialer-list 1 protocol ipx permit
route-map toplant1 permit 10
match ip address 1
set ip next-hop 172.16.216.2
!
route-map toplant1 permit 20
match ip address 2
set interface Ethernet0/0
!
!
!
line con 0
exec-timeout 0 0
transport input none
line aux 0
line vty 0 4

login
!
end

plant2#
 
OK...

issue:
no ip directed-broadcast
on all serial and ethernet interfaces
change encapsulation to PPP on both T1 serial interfaces, write config and reload both routers. When back online do show interface serial0/0 and check status, reliability, and errors. If when you changed from hdlc to ppp earlier and did not shutdown or reload the router the new encap would not have been set in place. encap is applied when interfaces negotiate initial connection.
 
OK I tried the last couple of submissions with these results

note the configuration

Site 1 site 2
PC <--xover-->router<--t1-->router<--xover-->switch<-->PC

I can ping the PC on the far side both from the router interface and from the PC. I cannot ping beyond the site 2 router ethernet interface when using the router interface ping from site one (for me to try the PC interface would mean physically relocating over there, which I cannot do too easily). I have set up with ppp (and reloaded) and turned off ip directed-broadcast.

this is so close I can smell it. Any additional suggestions?

 
Please post output of show interface serial0/0 from both routers with new configs
 
right

Here's plant 1
_____________________________________________


Current configuration : 972 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname plant1
!
enable secret 5 **********************
enable password *****************
!
ip subnet-zero
!
!
!
call rsvp-sync
!
!
!
!
!
!
!
!
interface Ethernet0/0
ip address 192.168.0.254 255.255.255.0
ip directed-broadcast
half-duplex
!
interface Serial0/0
description pt-pt t1
ip address 172.16.216.1 255.255.255.252
ip directed-broadcast
encapsulation ppp
no ip mroute-cache
!
interface TokenRing0/0
no ip address
shutdown
ring-speed 16
!
router rip
version 2
network 172.16.0.0
network 192.168.0.0
neighbor 172.16.216.2
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 172.16.216.2
no ip http server
ip pim bidir-enable
!
!
snmp-server engineID local 00000009020000B064B1BC20
snmp-server community public RO
!
dial-peer cor custom
!
!
!
!
line con 0
line aux 0
line vty 0 4
password ***********
login
!
no scheduler allocate
end

plant1#

Serial0/0 is up, line protocol is up
Hardware is PQUICC with Fractional T1 CSU/DSU
Description: pt-pt t1
Internet address is 172.16.216.1/30
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation PPP, loopback not set
Keepalive set (10 sec)
LCP Open
Open: IPCP, CDPCP
Last input 00:00:00, output 00:00:00, output hang never
Last clearing of "show interface" counters 03:36:58
Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/2/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 1000 bits/sec, 2 packets/sec
5 minute output rate 1000 bits/sec, 2 packets/sec
234634 packets input, 16421108 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
236664 packets output, 16564939 bytes, 0 underruns
0 output errors, 0 collisions, 0 interface resets
0 output buffer failures, 0 output buffers swapped out
1 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up


Plant 2
___________________________________________________________


Current configuration : 1066 bytes
!
version 12.2
service config
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname plant2
!
enable secret 5 ********************
enable password *********
!
ip subnet-zero
!
!
!
call rsvp-sync
cns event-service server
!
!
!
!
!
!
!
!
interface Ethernet0/0
description ethernet interface plant 2
ip address 192.168.1.254 255.255.255.0
ip directed-broadcast
half-duplex
!
interface Serial0/0
description pt-pt t1
ip address 172.16.216.2 255.255.255.252
ip directed-broadcast
encapsulation ppp
no ip mroute-cache
service-module t1 clock source internal
!
interface TokenRing0/0
no ip address
shutdown
ring-speed 16
no cdp enable
!
router rip
version 2
network 172.16.0.0
network 192.168.1.0
neighbor 172.16.216.1
no auto-summary
!
ip classless
no ip http server
ip pim bidir-enable
!
!
snmp-server engineID local 00000009020000B064B1BC20
snmp-server community public RO
!
dial-peer cor custom
!
!
!
!
line con 0
exec-timeout 0 0
line aux 0
line vty 0 4
password **********
login
!
end
Serial0/0 is up, line protocol is up
Hardware is PQUICC with Fractional T1 CSU/DSU
Description: pt-pt t1
Internet address is 172.16.216.2/30
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation PPP, loopback not set
Keepalive set (10 sec)
LCP Open
Open: IPCP, CDPCP
Last input 00:00:00, output 00:00:01, output hang never
Last clearing of "show interface" counters 04:25:31
Input queue: 1/75/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/1000/64/0 (size/max total/threshold/drops)
Conversations 0/3/256 (active/max active/max total)
Reserved Conversations 0/0 (allocated/max allocated)
Available Bandwidth 1158 kilobits/sec
5 minute input rate 0 bits/sec, 1 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
237297 packets input, 16594643 bytes, 0 no buffer
Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
13 input errors, 0 CRC, 13 frame, 0 overrun, 0 ignored, 0 abort
235409 packets output, 16449179 bytes, 0 underruns
0 output errors, 0 collisions, 53 interface resets
0 output buffer failures, 0 output buffers swapped out
3 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up




 
OK...T1 looks great....now lets look into the LAN...
Please 2 ethernet 0/0 is connected to a switch....what make and model?
 
Sorry....my bad typing

Plant 2 ethernet connected to what type and model switch?
 
Also did you try using an extended ping from site one router to site 2 PC using the ethernet 0/0 ip address as the source IP?
 
plant1#ping
Protocol [ip]:
Target IP address: 192.168.1.XXX (Plant2 PC)
Repeat count [5]:
Datagram size [100]:
Timeout in seconds [2]:
Extended commands [n]: y
Source address or interface: 192.168.0.254
Type of service [0]:
Set DF bit in IP header? [no]:
Validate reply data? [no]:
Data pattern [0xABCD]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Sweep range of sizes [n]:
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.XXX , timeout is 2 seconds:
Packet sent with a source address of 192.168.0.254
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 28/29/32 ms
plant1#
 
i was going to say the same.. the T1 and router configs look good... now we need to make sure your switch is good and that the ip addressing/ default gateways are good on your pcs...
 
Need to add the following to plant2:

ip route 0.0.0.0 0.0.0.0 172.16.216.1
 
As to the switch, nothing fancy-- just a netgear FX somthing or other (unmanaged). This is a small business. GEtting some proper routers has been a pulling teeth episode. I am one switch up (a linksys) all other traffic is functioning properly. The switch has auto MDI, so its set up with a xover.

as to 0.0.0.0 route on plant 2, is that neccessary as I do not wish internet traffic to be router out that port, but only out our firewall. Or am I missing the point.

Pinging with extended ping did not help either.

thanks for the help

 
WOULD YOU PLEASE POST THE OUTPUT FROM PLANT2 SHOW INTERFACE ETHERNET 0/0

OK then put on plant 2:
ip router 192.168.0.0 255.255.255.0 172.16.216.1

Also sounds like there is another device involved here. You have another device connected to lan and internet?
 
I agree with plshlpme for the site2 PC IP and default gateway configuration. Since if you got the default gateway setup incorrectly, site1 will be unreachable to the PC and the echo-reply packets will not be able to return back to site1 PC.

Also even if the default gateway of site2 PC is incorrect, you can still ping from site2 router to site2 PC if the IP addresses are within the same subnet.

So if possible, also post the IP configuration of both site1 and site2 PCs.
 
OK. You are right that we have multiple gateways. this project is trying to replace some of these.

at plant one we have a firewall pointed outward. We also have a temporary router connecting to a cable modem that is running a VPN (this is what we are trying to replace). This is the connection we are attempting to replace. I have manually configured the test computers to use the point to point as gateways with limited results (see above). at this point, I have a static route in the firewall redirecting VPN traffic to the cable modem. the assumption is that this can co-exist with the other equipment to be a inter-plant link. Secondly, this doesn't account (to my limited knowledge) as to why ping results from inside the routers themselves (i.e. from ios command lines) fail.

what I am after would be to have the point to point be a direct link between the plants, that all traffic from plant one would come across this a default link, and then to either local services (servers) or out our public IP link. A fiarly simple hub and spoke.

that said, here is the ethernet results:

plant2#show interfaces ethernet 0/0
Ethernet0/0 is up, line protocol is up
Hardware is AmdP2, address is 00b0.64f3.5aa0 (bia 00b0.64f3.5aa0)
Description: ethernet interface plant 2
Internet address is 192.168.1.254/24
MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:00, output 00:00:00, output hang never
Last clearing of "show interface" counters never
Queueing strategy: fifo
Output queue 0/40, 0 drops; input queue 0/75, 0 drops
5 minute input rate 3000 bits/sec, 4 packets/sec
5 minute output rate 1000 bits/sec, 2 packets/sec
69417 packets input, 6979046 bytes, 0 no buffer
Received 59712 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 input packets with dribble condition detected
24644 packets output, 2036034 bytes, 0 underruns
8 output errors, 0 collisions, 6 interface resets
0 babbles, 0 late collision, 7 deferred
8 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out

plant1#show interfaces ethernet 0/0
Ethernet0/0 is up, line protocol is up
Hardware is AmdP2, address is 00b0.64b1.bc20 (bia 00b0.64b1.bc20)
Internet address is 192.168.0.254/24
MTU 1500 bytes, BW 10000 Kbit, DLY 1000 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Keepalive set (10 sec)
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:01:58, output 00:00:04, output hang never
Last clearing of "show interface" counters never
Queueing strategy: fifo
Output queue 0/40, 0 drops; input queue 0/75, 0 drops
5 minute input rate 0 bits/sec, 0 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
47902 packets input, 3682701 bytes, 0 no buffer
Received 25278 broadcasts, 0 runts, 0 giants, 0 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
0 input packets with dribble condition detected
30852 packets output, 2544648 bytes, 0 underruns
11 output errors, 2 collisions, 3 interface resets
0 babbles, 0 late collision, 2 deferred
11 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
 
Add the command "ip classless" and "ip subnet-zero" to both routers.

Even though the routers know how to get traffic across the link, they are exhibiting classful behavior and auto-summarizing the routes at the major network boundaries. They "assume" they know everything about about the connected networks and won't forward traffic. The "ip subnet-zero lets you do VLSM. Otherwise, different masks are not supported.
 
At this point it looks like the point to point is fully functional. Think the problem now resides in the current PC configurations and/or other network devices. Have you tried using tracert from the PC's to see were the packets are stopping.
 
As you're fighting with the configurations, be sure to clear the arp cache on all devices before doing connectivity checks. Also, check the duplex settings and make sure cables test good.
 
I have had run ins with the 2600 in the past. Its ethernet interface are old 10Base-T half duplex but can be set to full duplex. Have had issues doing this when connected to unmanaged switches. No problem when connected to managed switch locked in at 10 full on the port. Make sure to watch the interface for errors if you change the duplex setting.
 
We stepped through the various switches/hubs that this passes through and I think we got it. I really don't want to think how long it has been running and we just haven't realized it. So it goes

THANK YOU to all who have patiently walked through this issue with me. It is greatly appreciated. I just hope to return the favor sometime.

blm
 
What was the problem.......curious about what it was.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top