Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Secondary IP address Cisco 678
- Thread starter hereigns
- Start date
Aww man my old ISP used to send these out to customers in the early days of DSL quite a long time ago. My knowledge is somewhat rusty and I never had a need to configure a secondary address but you may be able to do what you want by configuring something called a virtual interface (vip).
To configure a vip. you can do the following:
set int vip0 address 10.1.1.1
Virtual interfaces are usually associated to NAT configuration and you can make them inside or outside interfaces with the following command:
set interface vip0 inside
Of course your ethernet interface is also an inside interfance. I believe if you then set the vip0 inside as well this is pretty much the same as configuring a secondary ip address for the LAN.
You can repeat this process and create an outside virtual interface (vip1) for the WAN if you need a secondary address on the WAN.
I admit I've never needed to do this before but we had to configure NAT a few times on these 600's. Hopefully this will help you out.
Give it a go and see what happens. If you're still in trouble, let me know and I'll search what documentation I can find about the 600 for you.
HTH
To configure a vip. you can do the following:
set int vip0 address 10.1.1.1
Virtual interfaces are usually associated to NAT configuration and you can make them inside or outside interfaces with the following command:
set interface vip0 inside
Of course your ethernet interface is also an inside interfance. I believe if you then set the vip0 inside as well this is pretty much the same as configuring a secondary ip address for the LAN.
You can repeat this process and create an outside virtual interface (vip1) for the WAN if you need a secondary address on the WAN.
I admit I've never needed to do this before but we had to configure NAT a few times on these 600's. Hopefully this will help you out.
Give it a go and see what happens. If you're still in trouble, let me know and I'll search what documentation I can find about the 600 for you.
HTH
- Thread starter
- #3
- Thread starter
- #4
KiskoKid,
I gave it a whirl and your steps worked like a charm. However, I'm unable to get past the router on the private subnet. I did a traceroute from the private LAN to google.com and it stopped on the route past the router. I tried adding a static route entry for the private LAN:
192.168.8.0/24 192.168.8.2 (device that talks to both WAN and LAN)
But that didn't help either, not sure why, any ideas?
Here's the running config and route table on the router
***Config****
NSOS Virtual IP Address = 00, 192.168.8.254
[[ PPP Device Driver = Section Start ]]
PPP Port Option = 00, IPCP,IP Address,3,Auto,Negotiation Not Required,Negotiable
,IP,162.2.140.11
PPP Port Option = 00, IPCP,Primary DNS Server,129,Auto,Negotiation Not Required,
Negotiable,IP,0.0.0.0
PPP Port Option = 00, IPCP,Secondary DNS Server,131,Auto,Negotiation Not Require
d,Negotiable,IP,0.0.0.0
[[ IP Routing = Section Start ]]
IP Port Address = 00, 162.2.140.11
IP Port Address Mask = 00, 255.255.255.248
IP RIP = enabled
IP Directed_Broadcast Forwarding = disabled
IP Port RIP Route Holddown = 00, enabled
IP Port RIP Split Horizon = 00, enabled
IP NAT VIP Port Side = 00, inside
[[ ATM WAN Device Driver = Section Start ]]
ATM WAN Virtual Connection Parms = 00, 0, 32, 0
[[ DHCP = Section Start ]]
[[ WEB = Section Start ]]
WEB = enabled
***routetable****
[TARGET] [MASK] [GATEWAY] [M][P] [TYPE] [IF] [AGE]
0.0.0.0 0.0.0.0 0.0.0.0 1 SA WAN0-0 0
162.2.140.10 255.255.255.248 0.0.0.0 1 LA ETH0 0
162.42.0.0 255.255.0.0 0.0.0.0 1 A WAN0-0 0
WAN Interfaces...
162.2.227.1 255.255.255.255 0.0.0.0 1 HA WAN0-0 0
I gave it a whirl and your steps worked like a charm. However, I'm unable to get past the router on the private subnet. I did a traceroute from the private LAN to google.com and it stopped on the route past the router. I tried adding a static route entry for the private LAN:
192.168.8.0/24 192.168.8.2 (device that talks to both WAN and LAN)
But that didn't help either, not sure why, any ideas?
Here's the running config and route table on the router
***Config****
NSOS Virtual IP Address = 00, 192.168.8.254
[[ PPP Device Driver = Section Start ]]
PPP Port Option = 00, IPCP,IP Address,3,Auto,Negotiation Not Required,Negotiable
,IP,162.2.140.11
PPP Port Option = 00, IPCP,Primary DNS Server,129,Auto,Negotiation Not Required,
Negotiable,IP,0.0.0.0
PPP Port Option = 00, IPCP,Secondary DNS Server,131,Auto,Negotiation Not Require
d,Negotiable,IP,0.0.0.0
[[ IP Routing = Section Start ]]
IP Port Address = 00, 162.2.140.11
IP Port Address Mask = 00, 255.255.255.248
IP RIP = enabled
IP Directed_Broadcast Forwarding = disabled
IP Port RIP Route Holddown = 00, enabled
IP Port RIP Split Horizon = 00, enabled
IP NAT VIP Port Side = 00, inside
[[ ATM WAN Device Driver = Section Start ]]
ATM WAN Virtual Connection Parms = 00, 0, 32, 0
[[ DHCP = Section Start ]]
[[ WEB = Section Start ]]
WEB = enabled
***routetable****
[TARGET] [MASK] [GATEWAY] [M][P] [TYPE] [IF] [AGE]
0.0.0.0 0.0.0.0 0.0.0.0 1 SA WAN0-0 0
162.2.140.10 255.255.255.248 0.0.0.0 1 LA ETH0 0
162.42.0.0 255.255.0.0 0.0.0.0 1 A WAN0-0 0
WAN Interfaces...
162.2.227.1 255.255.255.255 0.0.0.0 1 HA WAN0-0 0
- Thread starter
- #6
sorry bud. ive never been in one of these routers...
maybe
would help some?
maybe
would help some?
- Status
Similar threads
- Locked
- Question