OSPF between 6024 and Cisco Router

Question

I recently installed a PowerConnect 6024 on our network.  I have a Cisco Router with the following OSPF configuration:   router ospf 100 router-id 10.100.1.5 log-adjacency-changes network 10.100.0.0 0.0.255.255 area 0 network 192.168.150.0 0.0.0.255 area 0   When I do a 'show ip route' on the router I see the following subnets:   Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP      D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area      N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type       E1 - OSPF external type 1, E2 - OSPF external type 2      i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level      ia - IS-IS inter area, * - candidate default, U - per-user static r      o - ODR, P - periodic downloaded static route Gateway of last resort is 12.126.23.81 to network 0.0.0.0     192.168.150.0/30 is subnetted, 6 subnetsC       192.168.150.20 is directly connected, Tunnel1C       192.168.150.16 is directly connected, Tunnel0O       192.168.150.12 [110/132] via 192.168.150.17, 11:41:28, Tunnel0O       192.168.150.8 [110/132] via 192.168.150.21, 11:41:28, Tunnel1O       192.168.150.4 [110/132] via 192.168.150.17, 11:41:28, Tunnel0O       192.168.150.0 [110/82] via 192.168.150.17, 11:41:28, Tunnel0O E2 192.168.10.0/24 [110/20] via 192.168.150.17, 11:41:28, Tunnel0    172.25.0.0/24 is subnetted, 2 subnetsO E2    172.25.0.0 [110/20] via 192.168.150.17, 11:41:28, Tunnel0O E2    172.25.10.0 [110/20] via 192.168.150.17, 11:41:28, Tunnel0    172.26.0.0/32 is subnetted, 1 subnetsO E2    172.26.0.10 [110/20] via 192.168.150.17, 11:41:28, Tunnel0    172.30.0.0/32 is subnetted, 1 subnetsO E2    172.30.0.2 [110/20] via 192.168.150.17, 11:41:29, Tunnel0    10.0.0.0/8 is variably subnetted, 35 subnets, 4 masksO       10.0.10.0/24 [110/68] via 192.168.150.17, 11:41:29, Tunnel0O       10.1.10.0/24 [110/68] via 192.168.150.21, 11:41:29, Tunnel1O       10.2.0.0/24 [110/133] via 192.168.150.17, 11:41:29, Tunnel0                   [110/133] via 192.168.150.21, 11:41:29, Tunnel1O       10.1.3.0/24 [110/68] via 192.168.150.21, 11:41:29, Tunnel1O       10.0.2.0/24 [110/68] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.2.1.0/24 [110/20] via 192.168.150.17, 11:41:29, Tunnel0O       10.1.2.0/24 [110/68] via 192.168.150.21, 11:41:29, Tunnel1O       10.0.3.0/24 [110/68] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.2.2.0/24 [110/20] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.1.1.0/24 [110/20] via 192.168.150.21, 11:41:29, Tunnel1O       10.0.0.0/24 [110/67] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.0.0.0/16 [110/20] via 192.168.150.17, 11:41:29, Tunnel0                   [110/20] via 192.168.150.21, 11:41:29, Tunnel1O       10.1.0.0/24 [110/67] via 192.168.150.21, 11:41:29, Tunnel1O E2    10.1.0.0/16 [110/20] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.0.1.0/24 [110/20] via 192.168.150.17, 11:41:29, Tunnel0O       10.0.5.0/24 [110/68] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.22.0.0/16 [110/20] via 192.168.150.17, 11:41:29, Tunnel0O       10.0.20.0/22 [110/68] via 192.168.150.17, 11:41:29, Tunnel0O E2    10.21.36.0/24 [110/20] via 192.168.150.17, 11:41:30, Tunnel0O E2    10.0.3.100/32 [110/20] via 192.168.150.17, 11:41:30, Tunnel0C       10.100.0.0/16 is directly connected, FastEthernet0/0O       10.131.1.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.131.0.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.129.1.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.128.0.0/24 [110/68] via 192.168.150.17, 11:41:30, Tunnel0O E2    10.128.0.0/16 [110/20] via 192.168.150.17, 11:41:30, Tunnel0O       10.129.0.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.1.128.0/24 [110/68] via 192.168.150.21, 11:41:30, Tunnel1O       10.134.0.0/24 [110/133] via 192.168.150.17, 11:41:30, Tunnel0O       10.133.1.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.132.0.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.133.0.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O       10.132.1.0/24 [110/70] via 192.168.150.17, 11:41:30, Tunnel0O E2    10.10.152.0/24 [110/20] via 192.168.150.17, 11:41:30, Tunnel0O E2    10.1.0.201/32 [110/20] via 192.168.150.17, 11:41:30, Tunnel0    12.0.0.0/8 is variably subnetted, 2 subnets, 2 masksC       12.126.23.81/32 is directly connected, Serial0/0C       12.126.23.80/30 is directly connected, Serial0/0O E2 192.168.2.0/24 [110/20] via 192.168.150.17, 11:41:30, Tunnel0O E2 192.168.100.0/24 [110/20] via 192.168.150.17, 11:41:30, Tunnel0S*   0.0.0.0/0 [1/0] via 12.126.23.81O    192.168.200.0/22 [110/142] via 192.168.150.17, 11:41:30, Tunnel0   On my 6024 I have configured OSPF using the following commands:   interface vlan 1ip address 10.100.1.1 255.255.0.0exitip route 0.0.0.0 0.0.0.0 10.100.1.5router ospf enablerouter ospf area 0.0.0.0router ospf router-id 10.100.1.1interface ip 10.100.1.1ospfexit   When I do a 'show ip route' on the 6024, I see the following subnets:   Maximum Parallel Paths: 4 (4 after reset) Codes: C - connected, S - static, R - RIP, O - OSPF, E - OSPF external S  0.0.0.0/0          [1/1] via  10.100.1.5  95:27:34              vlan 1C  10.100.0.0/16      is directly connected                        vlan 1O  192.168.150.16/30  [110/76] via  10.100.1.5  11:43:44           vlan 1O  192.168.150.20/30  [110/76] via  10.100.1.5  11:43:44           vlan 1   My question is, why do I only see a couple of the OSPF routes on the 6024 and not all of the routes from the router?  In other offices where I have a Cisco Layer 3 switch, I can see all of the routes from the WAN router.  Thanks.   -Sean

smull14 · Answer

Thank you.

DELL-Cuong N. · Answer

There is a beta FW that resolved some OSPF issues for the 6024. You might want to contact support and ask them about your problem. If it is determined that the beta FW will help with this issue they can provide you with this FW.

Cuong.

DELL-Cuong N. · Answer

A colleague of mine pointed out that the Cisco switch may have been misconfigured in this case and the problem is not on the 6024 side.   He refers you to this document at Cisco site (there are other places on Cisco site with similar information): http://www.ciscopress.com/articles/article.asp?p=27573&rl=1   Specifically you need to re-distribute the ODR routes into OSPF.   Cuong. Message Edited by DELL-Cuong N. on 03-08-2006 04:41 PM

smull14 · Answer

I took a look at this, but I don't see where this will help.  I am running OSPF throughout my organization.  I think this pertains to redistributing routes from another routing process like EIGRP or BGP.

Peter E. Fry · Answer

That's odd. I don't see the same issue. My network is somewhat different (I've cleverly avoided having anything >1 hop from the 6024 [i.e. it's a tiny, local network], although I've had some pretty convoluted setups in the past), and I'm running the somewhat ugly MD5 auth. But the routes come through, eventually. I assume your neighbor states show full on both sides?

I'd like to see the release notes on that beta firmware. My little tag thingie is apparently underneath the switch, and I really don't care to unshelve it right at the moment. I can't seem to even ask a question (of Support) without it. CN, would you mind posting those?

Thanks.

Peter E. Fry

DELL-Cuong N. · Answer

Since this code is still in beta phase there is no official release notes for it. I can describe briefly what it fixes though. The bug is in the OSPF area and occurs only on a large network, especially one where the routers are distributed in a wide area. Because of certain timing issues the OSPF database does not always properly update and you may get "OSPF LSA checksum error" between two routers which prevent correct propagation of new routes. The telling sign is that you get an OSPF error message in your log indicating update errors or checksum errors. In a small network or mostly local network you never see this timing problem.

I'm not certain this fix will address the original question (from smull14) so I suggest contacting support who can walk through the problem and make sure the FW will address the problem.

Cuong.

Peter E. Fry · Answer

Thanks.  Heh.  I was hoping for OSPF MD5 and SNTP fixes (both are mainly annoying, the former in particular).  I'll be curious to see what Sean's issue is. Peter E. Fry

smull14 · Answer

Well, I did open a ticket with support, so I will wait to hear back from them. Like Peter had mentioned, it looks like the 6024 is just seeing the connected subnets from the Cisco router and none of the remote subnets. I logged into the Cisco Internet Router on the same subnet as the 6024 and turned on OSPF Routing. It sees all of the routes from the WAN router just fine. I've tried chaning a number of OSPF settings on the router and switch and nothing seems to make a difference. Anyway, I will let you know if support is able to help.

DELL-Cuong N. · Answer

Sean,

One of my colleague ran a quick test and he believes that the 6024 operates correctly. Here is his setup:

Fe0/0 g1

Cisco2800----------------------------------PC6024

| fe0/1

|

| ge0/0

Cisco3825

In his test the PC6024 is receiving all the routes from the 2800 and the subnet learn from 3825.

Perhaps your network has some unique characteristics that's different from this experiment? Also can you tell us what version of FW you are running?

Here is the configuration that my colleague setup and tested:

======

PC6024

======

Router Configuration
-----------------------------

interface vlan 1
ip address 10.100.1.1 255.255.0.0
exit
ip route 0.0.0.0 0.0.0.0 10.100.1.5
router ospf enable
router ospf area 0.0.0.0
router ospf router-id 10.100.1.1
interface ip 10.100.1.1
ospf
exit

OOB host Configuration
-----------------------------

Empty configuration

console# sh ip route
Maximum Parallel Paths: 4 (4 after reset)

Codes: C - connected, S - static, R - RIP, O - OSPF, E - OSPF external

S 0.0.0.0/0          [1/1] via 10.100.1.5 1:1:16                vlan 1
C 10.100.0.0/16      is directly connected                        vlan 1
O 10.200.0.0/16      [110/11] via 10.100.1.5 0:34:27            vlan 1
O 192.168.150.5/32   [110/11] via 10.100.1.5 0:49:50            vlan 1
O 192.168.150.9/32   [110/11] via 10.100.1.5 0:49:50            vlan 1
O 192.168.150.13/32 [110/11] via 10.100.1.5 0:49:50            vlan 1
O 192.168.150.17/32 [110/11] via 10.100.1.5 0:49:50            vlan 1
O 192.168.150.21/32 [110/11] via 10.100.1.5 0:49:50            vlan 1
O 200.100.1.1/32     [110/12] via 10.100.1.5 0:34:22            vlan 1
O 200.100.2.1/32     [110/12] via 10.100.1.5 0:34:22            vlan 1
O 200.100.3.1/32     [110/12] via 10.100.1.5 0:34:22            vlan 1
O 200.100.4.1/32     [110/12] via 10.100.1.5 0:34:22            vlan 1

=========

Cisco 3825

=========

interface Loopback0
ip address 200.100.1.1 255.255.255.0
!
interface Loopback1
ip address 200.100.2.1 255.255.255.0
!
interface Loopback3
ip address 200.100.3.1 255.255.255.0
!
interface Loopback4
ip address 200.100.4.1 255.255.255.0
!
interface GigabitEthernet0/0
ip address 10.200.1.10 255.255.0.0
duplex auto
speed 100
media-type rj45
negotiation auto
!
interface GigabitEthernet0/1
no ip address
shutdown
duplex auto
speed auto
media-type rj45
negotiation auto
!
router ospf 100
router-id 10.200.1.10
log-adjacency-changes
network 10.200.0.0 0.0.255.255 area 0
network 200.100.0.0 0.0.255.255 area 0
!

C    200.100.4.0/24 is directly connected, Loopback4
     192.168.150.0/32 is subnetted, 5 subnets
O       192.168.150.21 [110/2] via 10.200.1.9, 00:37:49, GigabitEthernet0/0
O       192.168.150.17 [110/2] via 10.200.1.9, 00:37:49, GigabitEthernet0/0
O       192.168.150.13 [110/2] via 10.200.1.9, 00:37:49, GigabitEthernet0/0
O       192.168.150.9 [110/2] via 10.200.1.9, 00:37:49, GigabitEthernet0/0
O       192.168.150.5 [110/2] via 10.200.1.9, 00:37:49, GigabitEthernet0/0
C    200.100.1.0/24 is directly connected, Loopback0
C    200.100.2.0/24 is directly connected, Loopback1
C    200.100.3.0/24 is directly connected, Loopback3
     10.0.0.0/16 is subnetted, 2 subnets
O       10.100.0.0 [110/2] via 10.200.1.9, 00:37:50, GigabitEthernet0/0
C       10.200.0.0 is directly connected, GigabitEthernet0/0

=========

Cisco 2800

=========

!
interface Loopback0
ip address 192.168.150.21 255.255.255.252
!
interface Loopback1
ip address 192.168.150.17 255.255.255.252
!
interface Loopback2
ip address 192.168.150.13 255.255.255.252
!
interface Loopback3
ip address 192.168.150.9 255.255.255.252
!
interface Loopback4
ip address 192.168.150.5 255.255.255.252
!
interface FastEthernet0/0
ip address 10.100.1.5 255.255.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.200.1.9 255.255.0.0
duplex auto
speed auto
!
router ospf 100
router-id 10.100.1.5
log-adjacency-changes
network 10.100.0.0 0.0.255.255 area 0
network 10.200.1.0 0.0.0.255 area 0
network 192.168.150.0 0.0.0.255 area 0
!

Gateway of last resort is not set

     200.100.4.0/32 is subnetted, 1 subnets
O       200.100.4.1 [110/2] via 10.200.1.10, 00:36:43, FastEthernet0/1
     192.168.150.0/30 is subnetted, 5 subnets
C       192.168.150.20 is directly connected, Loopback0
C       192.168.150.16 is directly connected, Loopback1
C       192.168.150.12 is directly connected, Loopback2
C       192.168.150.8 is directly connected, Loopback3
C       192.168.150.4 is directly connected, Loopback4
     200.100.1.0/32 is subnetted, 1 subnets
O       200.100.1.1 [110/2] via 10.200.1.10, 00:36:43, FastEthernet0/1
     200.100.2.0/32 is subnetted, 1 subnets
O       200.100.2.1 [110/2] via 10.200.1.10, 00:36:43, FastEthernet0/1
     200.100.3.0/32 is subnetted, 1 subnets
O       200.100.3.1 [110/2] via 10.200.1.10, 00:36:45, FastEthernet0/1
     10.0.0.0/16 is subnetted, 2 subnets
C       10.100.0.0 is directly connected, FastEthernet0/0
C       10.200.0.0 is directly connected, FastEthernet0/1

Adam N · Answer

Also, just to add - This morning I created an EIGRP process on the Cisco 3825 and redistributed this into the OSPF process. The PC6024 correctly injected the External OSPF routes into its table.

Thanks

smull14 · Answer

Hmm. That is identical to my configuration on both the routers and the switch. I will reboot them all this evening to see if something is hung somewhere. I don't know if it makes a difference, but I haven't rebooted the switch since I first installed it. Do you think it would require a reboot after adding the OSPF configuration commands? Thanks.

-Sean

Adam N · Answer

Hi Sean You should not have to reboot the switch for the OSPF commands to work correctly, could you post what Hardware revision your switch is and what firmware you are running? Thanks Adam

smull14 · Answer

Well, you were right. The reboot didn't help. I did find some new information however. When I run the command 'show ip ospf database' on the 6024, I can see all of the routes in the OSPF database. They just aren't being transferred to the routing table.

gvl6024 Switch 1# sho ip ospf database

OSPF Router with ID 10.100.1.1

Router Link States(Area 0.0.0.0)

Link ID           ADV Router        Age    Seq#         Checksum    Link count
10.0.0.2          10.0.0.2          1070   0x800092c9   0x3c07      6
10.0.0.3          10.0.0.3          1067   0x8000823e   0x7848      7
10.0.0.5          10.0.0.5          1767   0x80001497   0x9e28      9
10.0.3.96         10.0.3.96         370    0x80008769   0x51b7      2
10.1.0.1          10.1.0.1          1168   0x800038f1   0x2320      5
10.1.0.5          10.1.0.5          767    0x80001301   0xb4d3      7
10.1.128.5        10.1.128.5        421    0x8000233a   0x1282      1
10.2.0.5          10.2.0.5          1624   0x80001381   0xbe24      5
10.2.0.6          10.2.0.6          1823   0x80000468   0x0b74      1
10.100.1.1        10.100.1.1        1030   0x800001e9   0x6b35      1
10.100.1.5        10.100.1.5        113    0x80000122   0xbddc      5
10.100.1.254      10.100.1.254      1567   0x800000f2   0xdbab      1
10.128.0.1        10.128.0.1        1970   0x80013a96   0xf4af      5
10.129.1.1        10.129.1.1        556    0x80000a3f   0x7114      3
10.131.1.1        10.131.1.1        347    0x80000910   0x139a      3
10.132.1.1        10.132.1.1        1183   0x80000a18   0x2080      3
10.133.1.1        10.133.1.1        84     0x80000865   0xaba5      3
10.134.0.1        10.134.0.1        1835   0x8000013a   0x2b50      3
192.168.200.1     192.168.200.1     866    0x800027b9   0x3bb6      2

Net Link States(Area 0.0.0.0)

Link ID           ADV Router        Age    Seq#         Checksum
10.0.0.5          10.0.0.5          1768   0x800009be   0xb375
10.0.2.3          10.0.0.3          1068   0x800009b0   0xf05b
10.0.3.96         10.0.3.96         371    0x80000c8d   0xcd6e
10.0.10.3         10.0.0.3          1068   0x800009b0   0x98ab
10.0.20.243       10.0.0.3          1068   0x800009b0   0xb19a
10.1.0.5          10.1.0.5          1270   0x80001339   0xbdf4
10.1.128.5        10.1.128.5        422    0x8000233a   0x0719
10.2.0.4          10.2.0.5          867    0x800003db   0xf81f
10.100.1.254      10.100.1.254      55     0x80000021   0x9f46
10.128.0.3        10.0.0.2          1071   0x80000800   0x2ec2

Type-5 AS External Link States

Link ID           ADV Router        Age    Seq#         Checksum    Tag
10.0.0.0          10.2.0.6          1823   0x8000045b   0x1610      0
10.0.1.0          10.0.0.2          1071   0x800002a2   0xaa3b      0
10.0.1.0          10.0.0.3          1068   0x800082bd   0x4df2      0
10.1.0.0          10.0.0.3          1068   0x800002a4   0xe0e8      0
10.1.0.201        10.0.0.2          1072   0x800002a2   0xc754      0
10.1.0.201        10.0.0.3          1069   0x8000615c   0x7177      0
10.1.1.0          10.1.0.1          1170   0x800038c5   0x2061      0
10.2.1.0          10.0.0.3          1069   0x80003f76   0x3cff      0
10.2.2.0          10.0.0.3          1069   0x80002338   0x0293      0
10.10.152.0       10.0.0.3          1069   0x80001953   0x11d4      0
10.21.36.0        10.0.0.3          1069   0x80001958   0x83c6      0
10.22.0.0         10.0.0.3          1069   0x80003f6c   0x6ac8      0
10.128.0.0        10.0.0.2          1072   0x80003f71   0xdcf1     0
172.25.0.0        10.0.0.2          1072   0x800002a2   0x46e4      0
172.25.0.0        10.0.0.3          1069   0x80008192   0x426f      0
172.25.10.0       10.0.0.2          1072   0x800002a2   0xd749      0
172.25.10.0       10.0.0.3          1069   0x80007cb2   0xa2e9      0
172.26.0.10       10.0.0.3          1069   0x80007424   0x75b5      0
172.30.0.2        10.0.0.3          1069   0x80000865   0x0d3e      0
192.168.2.0       10.0.0.3          1069   0x800004d3   0x11aa      0
192.168.10.0      10.0.0.2          1072   0x800002a2   0x1865      0
192.168.10.0      10.0.0.3          1069   0x80008192   0x14ef      0
192.168.100.0     10.0.0.3          1069   0x800027f5   0x29ea      0

I am going to do some research to see if I can find out what might cause this to occur.

-Sean

Adam N · Answer

Hi Sean

If possible can you post your full cisco configs, obviously remove all passwords etc. Also can you tell me what model cisco routers your using and IOS version, as well as PC6024 HW version.

thanks

smull14 · Answer

WAN Router - Cisco 2620XM Router - IOS Ver. 12.3(6c) version 12.3service timestamps debug datetime localtimeservice timestamps log datetime localtimeservice password-encryption!hostname gvl2620wan!boot-start-markerboot system flash flash:c2600-ik9s-mz.123-6c.binboot-end-marker!logging buffered 64000 debugginglogging console informational!clock timezone EDT -5clock summer-time CDT recurringno network-clock-participate slot 1 no network-clock-participate wic 0 no aaa new-modelip subnet-zeroip cef!ip domain name cass-stl.casscorp.localip name-server 12.127.16.67ip name-server 12.127.16.72!crypto isakmp policy 1 authentication pre-share group 2crypto isakmp key ******** address 0.0.0.0 0.0.0.0!crypto ipsec transform-set trans2 esp-3des esp-sha-hmac !crypto map vpnmap1 10 ipsec-isakmp  set peer 70.252.202.218 set transform-set trans2  match address 101crypto map vpnmap1 20 ipsec-isakmp  set peer 70.225.192.250 set transform-set trans2  match address 102!interface Tunnel0 description VPN Tunnel to St> Louis bandwidth 1500 ip address 192.168.150.18 255.255.255.252 ip mtu 1440 ip tcp adjust-mss 1320 delay 1000 tunnel source 12.126.23.82 tunnel destination 70.252.202.218!interface Tunnel1 description VPN Tunnel to Columbus bandwidth 1500 ip address 192.168.150.22 255.255.255.252 ip mtu 1440 ip tcp adjust-mss 1320 delay 1000 tunnel source 12.126.23.82 tunnel destination 70.225.192.250!interface FastEthernet0/0 ip address 10.100.1.5 255.255.0.0 ip nat inside duplex auto speed auto!interface Serial0/0 ip address 12.126.23.82 255.255.255.252 ip access-group 120 in ip nat outside encapsulation ppp service-module t1 timeslots 1-24 service-module t1 remote-alarm-enable no cdp enable crypto map vpnmap1!interface Serial0/1 no ip address shutdown!router ospf 100 router-id 10.100.1.5 log-adjacency-changes network 10.100.0.0 0.0.255.255 area 0 network 192.168.150.0 0.0.0.255 area 0!ip nat inside source list 110 interface Serial0/0 overloadip http serverip http authentication localno ip http secure-serverip http timeout-policy idle 600 life 86400 requests 10000ip classlessip route 0.0.0.0 0.0.0.0 12.126.23.81!logging history errorslogging 10.0.0.55access-list 101 permit gre host 12.126.23.82 host 70.252.202.218access-list 102 permit gre host 12.126.23.82 host 70.225.192.250access-list 110 deny   ip 10.100.0.0 0.0.255.255 10.0.0.0 0.0.255.255access-list 110 deny   ip 10.100.0.0 0.0.255.255 10.1.0.0 0.0.255.255access-list 110 deny   ip 10.100.0.0 0.0.255.255 10.128.0.0 0.0.255.255access-list 110 deny   ip 10.100.0.0 0.0.255.255 172.16.0.0 0.15.255.255access-list 110 deny   ip 10.100.0.0 0.0.255.255 192.168.0.0 0.0.255.255access-list 110 permit ip 10.100.0.0 0.0.255.255 anyaccess-list 120 permit tcp any any establishedaccess-list 120 permit gre any host 12.126.23.82access-list 120 permit udp any host 12.126.23.82 eq isakmpaccess-list 120 permit esp any host 12.126.23.82access-list 120 permit icmp any host 12.126.23.82 echoaccess-list 120 permit icmp any host 12.126.23.82 echo-replyaccess-list 120 permit icmp any host 12.126.23.82 time-exceededaccess-list 120 permit icmp any host 12.126.23.82 unreachableaccess-list 120 permit udp any any eq domainaccess-list 120 permit udp any eq domain anyaccess-list 120 permit tcp any any eq domainaccess-list 120 permit tcp any eq domain anyaccess-list 120 deny   ip any any!snmp-server engineID local 0000000902000002B91B9D40snmp-server community casspublic RWsnmp-server community cassprivate RWsnmp-server packetsize 4096snmp-server enable traps ttysnmp-server enable traps syslogsnmp-server host 10.0.0.43 casspublic !line con 0line aux 0 password 7 131718071F0916 login modem InOut transport input all stopbits 1 flowcontrol hardwareline vty 0 4 exec-timeout 30 0 password 7 00161C13105E19 login transport input telnet!scheduler allocate 20000 1000ntp clock-period 17180348ntp server 140.142.16.34ntp server 192.93.2.20 INET Router - Cisco 2801 Router - IOS Ver. 12.3(8)T5version 12.3service tcp-keepalives-inservice timestamps debug datetime msecservice timestamps log datetimeservice password-encryption!hostname MISCAS01!boot-start-markerboot-end-marker!logging buffered 4096 debugging!mmi polling-interval 60no mmi auto-configureno mmi pvcmmi snmp-timeout 180no aaa new-modelip subnet-zerono ip source-routeip cef!no ip bootp serverip domain name cassinfo.comip name-server 12.127.16.67ip name-server 12.127.16.68no ftp-server write-enable!interface FastEthernet0/0 description connection to customer LAN ip address 12.179.75.9 255.255.255.248 ip access-group 103 in no ip redirects no ip unreachables no ip proxy-arp no ip mroute-cache duplex auto speed auto no cdp enable!interface FastEthernet0/1 ip address 10.100.1.254 255.255.0.0 ip nat inside duplex auto speed auto no cdp enable!interface Serial0/1/0 description connection to  stlsmo09 AR7 (DHEC.170062) bandwidth 1536 ip address 12.124.139.218 255.255.255.252 ip access-group 101 in no ip redirects no ip unreachables no ip proxy-arp ip nat outside encapsulation ppp no ip mroute-cache service-module t1 remote-alarm-enable service-module t1 fdl both no cdp enable!router ospf 100 router-id 10.100.1.254 log-adjacency-changes network 10.100.0.0 0.0.255.255 area 0!ip classlessip route 0.0.0.0 0.0.0.0 Serial0/1/0ip route 10.0.0.0 255.255.0.0 10.100.1.1no ip http serverip nat inside source list 110 interface Serial0/1/0 overload!access-list 101 deny   53 any anyaccess-list 101 deny   55 any anyaccess-list 101 deny   77 any anyaccess-list 101 deny   pim any anyaccess-list 101 deny   ip 12.179.75.8 0.0.0.7 any logaccess-list 101 deny   ip 127.0.0.0 0.255.255.255 anyaccess-list 101 deny   ip 10.0.0.0 0.255.255.255 anyaccess-list 101 deny   ip 172.16.0.0 0.15.255.255 anyaccess-list 101 deny   ip 192.168.0.0 0.0.255.255 anyaccess-list 101 deny   ip 240.0.0.0 15.255.255.255 anyaccess-list 101 deny   udp any any eq snmpaccess-list 101 deny   udp any any eq snmptrapaccess-list 101 permit ip any anyaccess-list 103 deny   53 any anyaccess-list 103 deny   55 any anyaccess-list 103 deny   77 any anyaccess-list 103 deny   pim any anyaccess-list 103 permit ip any anyaccess-list 110 permit ip 10.100.0.0 0.0.255.255 anyno cdp run!control-plane!line con 0line aux 0 modem InOut modem autoconfigure discovery transport input all stopbits 1 flowcontrol hardwareline vty 0 4 exec-timeout 30 0 login transport input telnetline vty 5 15 exec-timeout 0 0 login!ntp clock-period 17179996ntp server 135.89.154.147 preferntp server 135.89.152.51ntp server 135.89.152.52ntp server 135.89.154.148ntp server 12.38.168.18 Dell 6024 SW version    2.0.0.01 ( date  10-Apr-2005 time  08:28:21 )Boot version  1.0.0.13 ( date  13-Aug-2003 time  15:28:31 )HW version    00.01.64 Thanks.   Sean

Networking General

Was this post helpful?