Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
cisco 837 adsl
- Thread starter azima786
- Start date
NettableWalker
IS-IT--Management
Hi Azima,
Try this one. obviously stick your own details in where the xxxxx are. you can probably leave the IP address to be autonegotiated on the dialer1 interface, if it won't wotk then just change it.
CAuthorised Use Only,
Please exit now, Your IP Address has been logged.
User Access Verification
Username: rayc
Password:
ADSLRouter#sh run
Building configuration...
Current configuration : 3563 bytes
!
version 12.2
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname ADSLRouter
!
logging queue-limit 100
logging buffered 51200 debugging
logging console critical
enable secret xxxxxxxxx
!
username xxxxx privilege 15 password xxxxxxx
ip subnet-zero
no ip source-route
no ip domain lookup
ip name-server xxxxxxx
ip name-server xxxxxxx
!
!
no ip bootp server
ip cef
ip inspect name DEFAULT100 cuseeme
ip inspect name DEFAULT100 ftp
ip inspect name DEFAULT100 h323
ip inspect name DEFAULT100 netshow
ip inspect name DEFAULT100 rcmd
ip inspect name DEFAULT100 realaudio
ip inspect name DEFAULT100 rtsp
ip inspect name DEFAULT100 smtp
ip inspect name DEFAULT100 sqlnet
ip inspect name DEFAULT100 streamworks
ip inspect name DEFAULT100 tftp
ip inspect name DEFAULT100 tcp
ip inspect name DEFAULT100 udp
ip inspect name DEFAULT100 vdolive
ip inspect name DEFAULT100 icmp
ip audit notify log
ip audit po max-events 100
ip ssh time-out 60
ip ssh authentication-retries 2
no ftp-server write-enable
!
!
!
!
!
!
!
interface Null0
no ip unreachables
!
interface Ethernet0
description Connected to Local Network
ip address xxxxxxxxxINTERNAL IP ADDRESS MASK
ip nat inside
ip route-cache flow
hold-queue 100 out
!
interface ATM0
description Connected to ADSL Wan Circuit
no ip address
no ip mroute-cache
atm vc-per-vp 64
no atm ilmi-keepalive
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
!
interface Dialer1
description Connected to ADSL Circuit
ip address negotiated
ip nat outside
ip inspect DEFAULT100 in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname xxxxxxxxxxxxx
ppp chap password xxxxxxxxxxxxxx
ppp pap sent-username xxxxxxxxxxxxxx password xxxxxxxxxxxxxx
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
ip nat inside source list 102 interface Dialer1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
ip http access-class 1
ip http authentication local
ip http secure-server
!
access-list 1 remark HTTP Access-class list
access-list 1 permit xxxxxxxxxINTERNAL IP ADDRESS MASK
access-list 1 deny any
access-list 10 remark Telnet access
access-list 10 permit xxxxxxxxxINTERNAL IP ADDRESSE MASK
access-list 102 permit ip xxxxxxxxxINTERNAL IP ADDRESS MASK any
dialer-list 1 protocol ip permit
banner login ^CAuthorised Use Only,
Please exit now, Your IP Address has been logged.^C
!
line con 0
login local
no modem enable
transport output telnet
stopbits 1
line aux 0
login local
transport output telnet
stopbits 1
line vty 0 4
session-timeout 15 output
access-class 10 in
password xxxxxxxxxxxxxxxxxxx
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler interval 500
!
end
Hope this helps.
if not, it might need a tweak with the ip addresses and masks and/or the access-lists and masks. easy stuff. hope this helps.
Ray
Try this one. obviously stick your own details in where the xxxxx are. you can probably leave the IP address to be autonegotiated on the dialer1 interface, if it won't wotk then just change it.
CAuthorised Use Only,
Please exit now, Your IP Address has been logged.
User Access Verification
Username: rayc
Password:
ADSLRouter#sh run
Building configuration...
Current configuration : 3563 bytes
!
version 12.2
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname ADSLRouter
!
logging queue-limit 100
logging buffered 51200 debugging
logging console critical
enable secret xxxxxxxxx
!
username xxxxx privilege 15 password xxxxxxx
ip subnet-zero
no ip source-route
no ip domain lookup
ip name-server xxxxxxx
ip name-server xxxxxxx
!
!
no ip bootp server
ip cef
ip inspect name DEFAULT100 cuseeme
ip inspect name DEFAULT100 ftp
ip inspect name DEFAULT100 h323
ip inspect name DEFAULT100 netshow
ip inspect name DEFAULT100 rcmd
ip inspect name DEFAULT100 realaudio
ip inspect name DEFAULT100 rtsp
ip inspect name DEFAULT100 smtp
ip inspect name DEFAULT100 sqlnet
ip inspect name DEFAULT100 streamworks
ip inspect name DEFAULT100 tftp
ip inspect name DEFAULT100 tcp
ip inspect name DEFAULT100 udp
ip inspect name DEFAULT100 vdolive
ip inspect name DEFAULT100 icmp
ip audit notify log
ip audit po max-events 100
ip ssh time-out 60
ip ssh authentication-retries 2
no ftp-server write-enable
!
!
!
!
!
!
!
interface Null0
no ip unreachables
!
interface Ethernet0
description Connected to Local Network
ip address xxxxxxxxxINTERNAL IP ADDRESS MASK
ip nat inside
ip route-cache flow
hold-queue 100 out
!
interface ATM0
description Connected to ADSL Wan Circuit
no ip address
no ip mroute-cache
atm vc-per-vp 64
no atm ilmi-keepalive
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
dsl operating-mode auto
!
interface Dialer1
description Connected to ADSL Circuit
ip address negotiated
ip nat outside
ip inspect DEFAULT100 in
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname xxxxxxxxxxxxx
ppp chap password xxxxxxxxxxxxxx
ppp pap sent-username xxxxxxxxxxxxxx password xxxxxxxxxxxxxx
ppp ipcp dns request
ppp ipcp wins request
hold-queue 224 in
!
ip nat inside source list 102 interface Dialer1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
ip http server
ip http access-class 1
ip http authentication local
ip http secure-server
!
access-list 1 remark HTTP Access-class list
access-list 1 permit xxxxxxxxxINTERNAL IP ADDRESS MASK
access-list 1 deny any
access-list 10 remark Telnet access
access-list 10 permit xxxxxxxxxINTERNAL IP ADDRESSE MASK
access-list 102 permit ip xxxxxxxxxINTERNAL IP ADDRESS MASK any
dialer-list 1 protocol ip permit
banner login ^CAuthorised Use Only,
Please exit now, Your IP Address has been logged.^C
!
line con 0
login local
no modem enable
transport output telnet
stopbits 1
line aux 0
login local
transport output telnet
stopbits 1
line vty 0 4
session-timeout 15 output
access-class 10 in
password xxxxxxxxxxxxxxxxxxx
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler interval 500
!
end
Hope this helps.
if not, it might need a tweak with the ip addresses and masks and/or the access-lists and masks. easy stuff. hope this helps.
Ray
- Thread starter
- #3
- Status
Similar threads
- Locked
- Question