Ho configurato un route SOHO97 su una connessione ALICE BUSINESS.
Il router ha funzionato egregiamente fino a domenica scorsa. Da allora, senza alcuna modifica alla configurazione, la connessione non funziona più. Ovvero la portante ADSL è presente, il router si allinea, ma navigazione 0.
Se uso il router di ALICE, invece, tutto OK.
Ho provato ad effettuare un ping direttamente dal router ad un indirizzo IP pubblico (i vari DNS), ma niente.
Ho verificato il router su una connessione ALICE domestica (ovviamente con la configurazione adeguata) e tutto funziona regolarmente.
Qualcuno sa se è cambiato qualcosa?
Per completezza allego la configurazione.
Grazie in anticipo
Codice: Seleziona tutto
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname XXXXXXXX
!
boot-start-marker
boot-end-marker
!
enable secret 5 XXXXXXXX
enable password 7 XXXXXXXX
!
aaa new-model
!
!
aaa authentication login default local
aaa authentication login VPN_AUTH local
aaa authorization exec default local
aaa authorization network VPN_GROUP local
aaa authorization auth-proxy default local group RADIO
!
aaa session-id common
!
resource policy
!
clock timezone GTM1 1
clock summer-time SUM recurring last Sun Mar 2:00 last Sun Oct 2:00
no ip subnet-zero
!
!
no ip cef
ip domain name XXXXXXXX.XXXXXXXX
ip name-server 212.216.112.222
ip name-server 192.168.0.2
no ip bootp server
ip ssh version 2
!
!
!
username XXXXXXXX privilege 15 password 7 XXXXXXXX
!
!
!
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
!
crypto isakmp client configuration group VPN
key XXXXXXXX
dns 192.168.1.1
pool VPN_POOL
acl 101
max-users 5
!
!
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
!
crypto dynamic-map VPN_MAP 1
set transform-set ESP-3DES-SHA
reverse-route
!
!
crypto map VPN_CMAP client authentication list VPN_AUTH
crypto map VPN_CMAP isakmp authorization list VPN_GROUP
crypto map VPN_CMAP client configuration address respond
crypto map VPN_CMAP 65535 ipsec-isakmp dynamic VPN_MAP
!
!
!
interface Ethernet0
ip address 192.168.0.1 255.255.255.0
ip nat inside
no ip mroute-cache
no cdp enable
hold-queue 100 out
!
interface ATM0
description INTERFACCIA ATM/ADSL
bandwidth 480
no ip address
no ip mroute-cache
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
ip address XX.XX.XX.XX 255.255.255.254
ip nat outside
no snmp trap link-status
crypto map VPN_CMAP
pvc 8/35
!
!
ip local pool VPN_POOL 192.168.2.2 192.168.2.10
ip default-gateway 192.168.0.1
ip route 0.0.0.0 0.0.0.0 ATM0.1
ip route 192.168.1.0 255.255.255.0 192.168.0.2
no ip http server
no ip http secure-server
!
ip nat inside source list ACL-NAT interface ATM0.1 overload
ip nat inside source static tcp 192.168.0.2 80 interface ATM0.1 80
ip nat inside source static tcp 192.168.0.2 8000 interface ATM0.1 8000
ip nat inside source static tcp 192.168.0.2 10022 interface ATM0.1 10022
!
!
ip access-list extended ACL-NAT
deny ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
permit ip 192.168.1.0 0.0.0.255 any
permit ip 192.168.0.0 0.0.0.255 any
access-list 101 permit ip 192.168.1.0 0.0.0.255 any
no cdp run
!
control-plane
!
!
line con 0
exec-timeout 0 0
no modem enable
stopbits 1
line aux 0
stopbits 1
line vty 0 4
exec-timeout 120 0
password 7 XXXXXXXX
length 0
transport input ssh
transport output all
!
scheduler max-task-time 5000
sntp server 193.204.114.232
sntp server 193.204.114.233
end
