Navigazione lenta con pix501 e 857
Inviato: mer 20 gen , 2010 7:24 pm
Salve a tutti,
ho una rete composta da un pix 501 e da un
837 ed ho un contratto Alice Business 20 MB.
Con questa situazione riuscivo a navigare
velocemente e a scaricare ad un onorevole 1 Mb.
Ho sostituito il vecchio cisco 837 con un 857 perchè
volevo migliorare le prestazioni della navigazione, ma
da quel momento la velocità di navigazione
è calata eil download è crollato a 150/200 Kb.
La cosa che mi fa in....re è che se mi metto con il pc
dietro al router (quindi con un numero pubblico), navigo velocemente
e scarico a 7Mb. Mi potete aiutare? Non riesco a capire
dove diavolo sbaglio.
Qui di seguito allego la config del router:
___________________________________________________
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname 857
!
boot-start-marker
boot-end-marker
!
logging buffered 51200
logging console critical
enable secret 5 $1$63mS$oxKmgHmNpJgmiwnLW2Y94.
!
no aaa new-model
clock timezone PCTime 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
!
crypto pki trustpoint TP-self-signed-283886731
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-283886731
revocation-check none
rsakeypair TP-self-signed-283886731
!
!
crypto pki certificate chain TP-self-signed-283886731
certificate self-signed 01
3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32383338 38363733 31301E17 0D313030 31313431 30343735
355A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3238 33383836
37333130 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
B7C31B40 12218301 D9756246 3262DB37 5E6B4B75 00CE6550 6E449910 A5879F2A
5487D0D7 B7B4F1AD 507D3252 A2FB3A7B 371E79CC 339CFC4D EF6B6290 72006ECF
0427F28F A750FED0 FED917CF 8ED46103 B9C9FCCA 7B057FD1 73D4207B D8865139
0A35EC43 AFE8C61B 5C3156C3 D001B735 CC43B287 DB224F77 E9E5C218 A746AC17
02030100 01A37730 75300F06 03551D13 0101FF04 05300301 01FF3022 0603551D
11041B30 19821738 35374332 3030302E 796F7572 646F6D61 696E2E63 6F6D301F
0603551D 23041830 168014F2 7D12544E ACF9767A CFCE1BC9 DCCAF051 BAA65F30
1D060355 1D0E0416 0414F27D 12544EAC F9767ACF CE1BC9DC CAF051BA A65F300D
06092A86 4886F70D 01010405 00038181 009A74A9 2FD559C6 4F31169F 2B7F99B1
D65EF5A1 5B518610 9490B84E 701C1827 B7587A00 DE695C41 99CA5E09 6C32CA07
CBB2050B 1C43AEBC F248CF01 B05F1F54 BC05A6CA 85B0F9C5 95A46FA9 C738051F
C7F9973B 3095CB1A 718388D8 7807D0EE 59749B63 5BCD84E8 4394426B 3061EE5C
68E7C430 28A47393 5ED79F0A 63974732 39
quit
dot11 syslog
no ip source-route
!
!
ip cef
no ip bootp server
no ip domain lookup
ip domain name yourdomain.com
!
!
!
username admin privilege 15 secret 5 $1$arfC$xXCcgYGD5U55/Y0pm33.g1
!
!
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
description $ES_WAN$$FW_OUTSIDE$
ip unnumbered Vlan1
ip virtual-reassembly
pvc 8/35
encapsulation aal5snap
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address xx.xx.xx.249 255.255.255.248
no ip redirects
no ip unreachables
no ip proxy-arp
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 ATM0.1
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface ATM0.1 overload
!
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit xx.xx.xx.248 0.0.0.7
no cdp run
!
control-plane
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.
It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.
username <myuser> privilege 15 secret 0 <mypassword>
Replace <myuser> and <mypassword> with the username and password you
want to use.
-----------------------------------------------------------------------
^C
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line vty 0 4
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
___________________________________________________
Grazie in anticipo.
ho una rete composta da un pix 501 e da un
837 ed ho un contratto Alice Business 20 MB.
Con questa situazione riuscivo a navigare
velocemente e a scaricare ad un onorevole 1 Mb.
Ho sostituito il vecchio cisco 837 con un 857 perchè
volevo migliorare le prestazioni della navigazione, ma
da quel momento la velocità di navigazione
è calata eil download è crollato a 150/200 Kb.
La cosa che mi fa in....re è che se mi metto con il pc
dietro al router (quindi con un numero pubblico), navigo velocemente
e scarico a 7Mb. Mi potete aiutare? Non riesco a capire
dove diavolo sbaglio.
Qui di seguito allego la config del router:
___________________________________________________
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname 857
!
boot-start-marker
boot-end-marker
!
logging buffered 51200
logging console critical
enable secret 5 $1$63mS$oxKmgHmNpJgmiwnLW2Y94.
!
no aaa new-model
clock timezone PCTime 1
clock summer-time PCTime date Mar 30 2003 2:00 Oct 26 2003 3:00
!
crypto pki trustpoint TP-self-signed-283886731
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-283886731
revocation-check none
rsakeypair TP-self-signed-283886731
!
!
crypto pki certificate chain TP-self-signed-283886731
certificate self-signed 01
3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32383338 38363733 31301E17 0D313030 31313431 30343735
355A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3238 33383836
37333130 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
B7C31B40 12218301 D9756246 3262DB37 5E6B4B75 00CE6550 6E449910 A5879F2A
5487D0D7 B7B4F1AD 507D3252 A2FB3A7B 371E79CC 339CFC4D EF6B6290 72006ECF
0427F28F A750FED0 FED917CF 8ED46103 B9C9FCCA 7B057FD1 73D4207B D8865139
0A35EC43 AFE8C61B 5C3156C3 D001B735 CC43B287 DB224F77 E9E5C218 A746AC17
02030100 01A37730 75300F06 03551D13 0101FF04 05300301 01FF3022 0603551D
11041B30 19821738 35374332 3030302E 796F7572 646F6D61 696E2E63 6F6D301F
0603551D 23041830 168014F2 7D12544E ACF9767A CFCE1BC9 DCCAF051 BAA65F30
1D060355 1D0E0416 0414F27D 12544EAC F9767ACF CE1BC9DC CAF051BA A65F300D
06092A86 4886F70D 01010405 00038181 009A74A9 2FD559C6 4F31169F 2B7F99B1
D65EF5A1 5B518610 9490B84E 701C1827 B7587A00 DE695C41 99CA5E09 6C32CA07
CBB2050B 1C43AEBC F248CF01 B05F1F54 BC05A6CA 85B0F9C5 95A46FA9 C738051F
C7F9973B 3095CB1A 718388D8 7807D0EE 59749B63 5BCD84E8 4394426B 3061EE5C
68E7C430 28A47393 5ED79F0A 63974732 39
quit
dot11 syslog
no ip source-route
!
!
ip cef
no ip bootp server
no ip domain lookup
ip domain name yourdomain.com
!
!
!
username admin privilege 15 secret 5 $1$arfC$xXCcgYGD5U55/Y0pm33.g1
!
!
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.1 point-to-point
description $ES_WAN$$FW_OUTSIDE$
ip unnumbered Vlan1
ip virtual-reassembly
pvc 8/35
encapsulation aal5snap
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address xx.xx.xx.249 255.255.255.248
no ip redirects
no ip unreachables
no ip proxy-arp
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 ATM0.1
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface ATM0.1 overload
!
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit xx.xx.xx.248 0.0.0.7
no cdp run
!
control-plane
!
banner exec ^C
% Password expiration warning.
-----------------------------------------------------------------------
Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.
It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.
username <myuser> privilege 15 secret 0 <mypassword>
Replace <myuser> and <mypassword> with the username and password you
want to use.
-----------------------------------------------------------------------
^C
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line vty 0 4
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
end
___________________________________________________
Grazie in anticipo.