Salve, grazie a questo post di therider1290, sono riuscito a configurare il mio Cisco 887MW, config che va bene anche per aliceadsl in ppoe, ma vorrei segnalare un piccolo problema che sicuramente essendo un neofita, non capisco perchè il DynDns aggiorna l'IP, ma non c'è ingresso sulla porta vorrei capire perchè, allego Grazie anticipatamente! la conf:
hostname Cisco887
!
boot-start-marker
boot-end-marker
!
security authentication failure rate 3 log
security passwords min-length 6
logging buffered 51200
logging console critical
enable secret 5 $1$Ixy2$nKnKVVSHLC2lyBII9vwPL.
!
aaa new-model
!
aaa authentication login local_authen local
aaa authorization exec local_author local
!
aaa session-id common
memory-size iomem 10
clock summer-time CET recurring last Sun Mar 2:00 last Sun Oct 3:00
!ip source-route
!
ip dhcp excluded-address 192.168.111.1
ip dhcp excluded-address 192.168.111.10
ip dhcp excluded-address 192.168.111.15
ip dhcp excluded-address 192.168.111.20
ip dhcp excluded-address 192.168.111.25
!
ip dhcp pool DSL_DHCP
import all
network 192.168.111.0 255.255.255.0
default-router 192.168.111.1
dns-server 8.8.8.8 8.8.4.4
!
ip cef
no ip bootp server
ip domain name pippo.dyndns.org
ip name-server 8.8.8.8
ip name-server 8.8.4.4
ip inspect name SDM_LOW dns
ip inspect name SDM_LOW ftp
ip inspect name SDM_LOW h323
ip inspect name SDM_LOW https
ip inspect name SDM_LOW icmp
ip inspect name SDM_LOW imap
ip inspect name SDM_LOW pop3
ip inspect name SDM_LOW netshow
ip inspect name SDM_LOW rcmd
ip inspect name SDM_LOW realaudio
ip inspect name SDM_LOW rtsp
ip inspect name SDM_LOW esmtp
ip inspect name SDM_LOW sqlnet
ip inspect name SDM_LOW streamworks
ip inspect name SDM_LOW tftp
ip inspect name SDM_LOW tcp router-traffic
ip inspect name SDM_LOW udp router-traffic
ip inspect name SDM_LOW vdolive
ip ddns update method DynDNS
HTTP
add
http://[username]:[Passwd]@members.dynd ... 13.248.116
remove
http://[username]:[Passwd]@members.dynd ... 13.248.116
interval maximum 28 0 0 0
interval minimum 28 0 0 0
!
no ipv6 cef
!
license udi pid CISCO887MW-GN-E-K9 sn FGL1543204S
!
ip tcp synwait-time 10
!
interface Null0
no ip unreachables
!
interface BRI0
no ip address
encapsulation hdlc
shutdown
isdn termination multidrop
!
interface ATM0
description DSL Interface
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
no atm ilmi-keepalive
!
interface ATM0.1 point-to-point
description Outside Interface
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
pvc 8/35
pppoe-client dial-pool-number 1
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface wlan-ap0
description Service module interface to manage the embedded AP
no ip address
arp timeout 0
!
interface Wlan-GigabitEthernet0
description Internal switch interface connecting to the embedded AP
!
interface Vlan1
description Internal Interface$FW_INSIDE$
ip address 192.168.111.1 255.255.255.0
ip access-group 100 in
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1412
!
interface Dialer1
ip ddns update hostname pippo.dyndns.org
ip ddns update DynDNS host members.dyndns.org
ip address negotiated
ip access-group 101 in
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1492
ip nat outside
ip inspect SDM_LOW out
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname aliceadsl
ppp chap password 7 094D42001A0016161800
ppp pap sent-username aliceadsl password 7 045A070F0C244D4A1A15
!
ip forward-protocol nd
ip http server
ip http secure-server
!
ip nat inside source list DSL_ACCESSLIST interface Dialer1 overload
ip nat inside source static tcp 192.168.111.15 15500 interface Dialer1 15500
ip route 0.0.0.0 0.0.0.0 Dialer1
!
ip access-list extended DSL_ACCESSLIST
permit ip 192.168.111.0 0.0.0.255 any
!
logging trap debugging
access-list 100 remark auto generated by SDM firewall configuration##NO_ACES_3##
access-list 100 remark SDM_ACL Category=1
access-list 100 deny ip host 255.255.255.255 any
access-list 100 deny ip 127.0.0.0 0.255.255.255 any
access-list 100 permit ip any any
access-list 101 remark auto generated by SDM firewall configuration##NO_ACES_13##
access-list 101 remark SDM_ACL Category=1
access-list 101 deny ip 192.168.111.0 0.0.0.255 any
access-list 101 permit udp host 8.8.8.8 eq domain any
access-list 101 permit udp host 8.8.4.4 eq domain any
access-list 101 permit icmp any any echo-reply
access-list 101 permit icmp any any time-exceeded
access-list 101 permit icmp any any unreachable
access-list 101 deny ip 10.0.0.0 0.255.255.255 any
access-list 101 deny ip 172.16.0.0 0.15.255.255 any
access-list 101 deny ip 192.168.0.0 0.0.255.255 any
access-list 101 deny ip 127.0.0.0 0.255.255.255 any
access-list 101 deny ip host 255.255.255.255 any
access-list 101 deny ip host 0.0.0.0 any
access-list 101 deny ip any any log
access-list 101 permit tcp host 204.13.248.116 eq www any log
!
control-plane
!
banner motd ^CC!!! Accesso Vietato!!!^C
!
line con 0
password 7 15130F010D2429282B
no modem enable
line aux 0
line 2
password 7 094D4A04100B151E08
logging synchronous
login authentication local_authen
no activation-character
no exec
transport preferred none
transport input all
line vty 0 4
password 7 0207005602080D2D4F
login authentication local_authen
transport output telnet
!
scheduler max-task-time 5000
end
Cisco887#
Forse Dio vuole che incontriamo un po’ di gente sbagliata prima di incontrare quella giusta, cosi quando finalmente la incontreremo... sapremo come essere riconoscenti per quel Regalo!