[RISOLTO] Cisco 877, ADSL 20Mbit e Alice Home TV
Inviato: mer 28 apr , 2010 7:36 pm
Ciao a tutti,
sto cercando di configurare il mio router casalingo personale Cisco 877 con l'ADSL a 20 mbit di telecom e (cosa più importante!) la alice home tv. Sfido chiunque a preferire l'orribile pirellone bianco ad un cisco
Ora: per quanto riguarda la navigazione internet funziona tutto correttamente, mentre per l'Home TV.. son dolori
Al momento riesco a "far vedere" il router al Set Top Box di Telecom, la procedura di startup viene eseguita correttamente e mi ritrovo il bellissimo menu' della home tv. Il problema, non poco trascurabile, è che non riesco a vedere nada.
ecco intanto uno show ver:
e la mia configurazione:
Chiedo scusa per eventuali schifezze che troverete in questa configurazione, anche perchè ho fatto un po' di prove semplicemente scopiazzando qua e la' e sperando che funzionasse... e ovviamente non so assolutamente nulla di come funzionano le reti multicast 
Ho anche qualche riga di log di IGMP (debug ip igmp, debug ip igmp snooping) ma non riesco ad interpretarle:
Ringrazio chiunque riesca a darmi una mano nella configurazione...
sto cercando di configurare il mio router casalingo personale Cisco 877 con l'ADSL a 20 mbit di telecom e (cosa più importante!) la alice home tv. Sfido chiunque a preferire l'orribile pirellone bianco ad un cisco
Ora: per quanto riguarda la navigazione internet funziona tutto correttamente, mentre per l'Home TV.. son dolori
Al momento riesco a "far vedere" il router al Set Top Box di Telecom, la procedura di startup viene eseguita correttamente e mi ritrovo il bellissimo menu' della home tv. Il problema, non poco trascurabile, è che non riesco a vedere nada.
ecco intanto uno show ver:
Codice: Seleziona tutto
Cisco IOS Software, C870 Software (C870-ADVIPSERVICESK9-M), Version 12.4(15)T4, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2008 by Cisco Systems, Inc.
Compiled Thu 13-Mar-08 13:50 by prod_rel_team
ROM: System Bootstrap, Version 12.3(8r)YI4, RELEASE SOFTWARE
Cisco877 uptime is 2 hours, 12 minutes
System returned to ROM by reload at 18:14:36 MEDT Wed Apr 28 2010
System restarted at 18:15:26 MEDT Wed Apr 28 2010
System image file is "flash:c870-advipservicesk9-mz.124-15.T4.bin"
Last reload reason: Reload Command
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
Cisco 877 (MPC8272) processor (revision 0x300) with 118784K/12288K bytes of memory.
Processor board ID FHK123629YW
MPC8272 CPU Rev: Part Number 0xC, Mask Number 0x10
4 FastEthernet interfaces
1 ATM interface
128K bytes of non-volatile configuration memory.
28672K bytes of processor board System flash (Intel Strataflash)
Configuration register is 0x3922Codice: Seleziona tutto
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname Cisco877
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
clock timezone MET 1
clock summer-time MEDT recurring last Sun Mar 2:00 last Sun Oct 3:00
!
crypto pki trustpoint TP-self-signed-1533452713
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1533452713
revocation-check none
rsakeypair TP-self-signed-1533452713
!
!
crypto pki certificate chain TP-self-signed-1533452713
certificate self-signed 01
.......
quit
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.10.1
ip dhcp excluded-address 192.168.10.200
!
ip dhcp pool VLAN10
network 192.168.10.0 255.255.255.0
default-router 192.168.10.1
dns-server 208.67.222.222 208.67.220.220
!
ip dhcp pool SERVER
host 192.168.10.10 255.255.255.0
hardware-address XXX
!
ip dhcp pool MIK-LAN
host 192.168.10.2 255.255.255.0
hardware-address XXX
!
ip dhcp pool PRINTER
host 192.168.10.4 255.255.255.0
client-identifier XXX
!
!
ip name-server 212.216.112.112
ip multicast-routing
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
no vlan accounting
!
multilink bundle-name authenticated
vpdn enable
!
!
!
username user privilege 15 secret 5 $SUPERSECRETPASSWORD$
!
!
archive
log config
hidekeys
!
!
ip ssh port 2222 rotary 1
!
class-map match-any VOIP
match protocol sip
match protocol rtp
match access-group 112
class-map match-any FILTRO-P2P
match protocol gnutella
match protocol edonkey
match protocol bittorrent
match protocol directconnect
match protocol winmx
match protocol fasttrack
match protocol kazaa2
class-map match-any WEB
match protocol dns
match protocol icmp
match protocol http
match protocol pop3
match protocol smtp
match protocol telnet
match protocol ssh
match protocol secure-ftp
match protocol secure-http
match protocol secure-imap
match protocol secure-pop3
match access-group 111
!
!
policy-map FILTRO-P2P
class FILTRO-P2P
policy-map QOS
class FILTRO-P2P
priority percent 5
class VOIP
priority percent 15
class WEB
priority percent 55
!
!
bridge irb
!
!
interface ATM0
no ip address
no ip route-cache cef
no ip route-cache
no atm ilmi-keepalive
dsl operating-mode adsl2+
!
interface ATM0.1 point-to-point
no ip route-cache
pvc 8/35
pppoe-client dial-pool-number 1
!
!
interface ATM0.2 point-to-point
no ip route-cache
ip igmp unidirectional-link
ip igmp proxy-service
atm route-bridged ip
pvc 8/36
broadcast
encapsulation aal5snap
!
bridge-group 10
bridge-group 10 spanning-disabled
!
interface FastEthernet0
switchport access vlan 10
!
interface FastEthernet1
switchport access vlan 10
!
interface FastEthernet2
switchport access vlan 10
!
interface FastEthernet3
description Connessione al STB Telecom - Cucina
switchport access vlan 20
!
interface Vlan10
description Rete interna
ip address 192.168.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Vlan20
description VLAN per STB Telecom
no ip address
no ip route-cache cef
no ip route-cache
bridge-group 10
bridge-group 10 spanning-disabled
hold-queue 100 out
!
interface Dialer0
bandwidth 8192
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp header-compression
ip tcp adjust-mss 1452
no ip mroute-cache
dialer pool 1
no keepalive
no cdp enable
ppp authentication pap callin
ppp pap sent-username aliceadsl password 7 070E2D454D0C1801041E
max-reserved-bandwidth 100
service-policy output QOS
!
interface BVI10
ip address 192.168.1.1 255.255.255.0
ip pim sparse-mode
ip tcp adjust-mss 1452
ip igmp helper-address udl ATM0.2
ip igmp mroute-proxy ATM0.2
ip igmp proxy-service
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer0
!
!
no ip http server
no ip http secure-server
ip mroute 0.0.0.0 0.0.0.0 ATM0.2
ip nat translation timeout 420
ip nat translation tcp-timeout 120
ip nat translation pptp-timeout 420
ip nat translation udp-timeout 120
ip nat translation finrst-timeout 300
ip nat translation syn-timeout 120
ip nat translation dns-timeout 300
ip nat translation icmp-timeout 120
ip nat source static tcp 192.168.10.10 3002 interface Dialer0 3002
ip nat inside source list 100 interface Dialer0 overload
!
logging trap debugging
logging 192.168.10.3
access-list 10 permit 192.168.10.0 0.0.0.255
access-list 10 deny any
access-list 100 permit ip 192.168.10.0 0.0.0.255 any
access-list 100 deny ip any any
access-list 101 remark ** ACL line vty 0 4 **
access-list 101 permit ip 192.168.10.0 0.0.0.255 any
access-list 101 deny ip any any
access-list 111 remark *** ACL class-map WEB ***
access-list 111 permit tcp any any eq www
access-list 111 permit tcp any any eq 443
access-list 111 permit tcp any any eq pop3
access-list 111 permit tcp any any eq ftp-data
access-list 111 permit tcp any any eq ftp
access-list 111 permit tcp any any eq smtp
access-list 111 permit tcp any any eq 995
access-list 111 permit tcp any any eq 993
access-list 111 permit tcp any any eq 465
access-list 111 permit udp any any eq domain
access-list 111 permit tcp any any eq telnet
access-list 111 permit tcp any any eq 22
access-list 111 permit tcp any eq www any
access-list 111 permit tcp any eq 443 any
access-list 111 permit tcp any eq pop3 any
access-list 111 permit tcp any eq ftp-data any
access-list 111 permit tcp any eq ftp any
access-list 111 permit tcp any eq smtp any
access-list 111 permit tcp any eq 995 any
access-list 111 permit tcp any eq 993 any
access-list 111 permit tcp any eq 465 any
access-list 111 permit udp any eq domain any
access-list 111 permit tcp any eq telnet any
access-list 111 permit tcp any eq 22 any
access-list 112 remark *** ACL class-map VOCE ***
access-list 112 permit udp any any eq 5060
access-list 112 permit udp any eq 5060 any
access-list 112 permit tcp any any eq 4869
access-list 112 permit tcp any eq 4869 any
access-list 112 permit udp any range 30000 30019 any
access-list 112 permit udp any any range 30000 30019
access-list 112 permit ip host 83.211.227.21 any
no cdp run
!
!
!
!
control-plane
!
bridge 10 protocol ieee
bridge 10 route ip
!
line con 0
login local
no modem enable
stopbits 1
speed 115200
line aux 0
line vty 0 4
privilege level 15
login local
rotary 1
transport preferred ssh
transport input ssh
transport output ssh
!
scheduler max-task-time 5000
ntp clock-period 17175020
ntp server 212.121.88.250
ntp server 88.33.54.219
ntp server 81.208.30.4
ntp server 193.204.114.105 prefer
endHo anche qualche riga di log di IGMP (debug ip igmp, debug ip igmp snooping) ma non riesco ad interpretarle:
Codice: Seleziona tutto
Apr 28 18:32:29.567: IGMP(0): Send v2 Report for 224.0.1.40 on BVI10
Apr 28 18:32:29.567: IGMP(0): Received v2 Report on BVI10 from 192.168.1.1 for 224.0.1.40
Apr 28 18:32:29.567: IGMP(0): Received Group record for group 224.0.1.40, mode 2 from 192.168.1.1 for 0 sources
Apr 28 18:32:29.567: IGMP(0): Updating EXCLUDE group timer for 224.0.1.40
Apr 28 18:32:29.567: IGMP(0): MRT Add/Update BVI10 for (*,224.0.1.40) by 0
Apr 28 18:32:30.711: Packet type 0 sent to IGMP PI in VLAN 20
Apr 28 18:32:30.711: IGMPSN: group: Received V2 report for group 239.192.75.187 received on Vlan 20, port Fa3
Apr 28 18:32:54.064: IGMP(0): Received v2 Query on BVI10 from 10.10.10.10
Apr 28 18:32:54.064: IGMP(0): Set report delay time to 1.6 seconds for 224.0.1.40 on BVI10
Apr 28 18:32:55.548: Packet type 0 sent to IGMP PI in VLAN 20
Apr 28 18:32:55.548: IGMPSN: group: Received V2 report for group 239.192.75.203 received on Vlan 20, port Fa3
Apr 28 18:32:56.559: IGMP(0): Send v2 Report for 224.0.1.40 on BVI10
Apr 28 18:32:56.559: IGMP(0): Received v2 Report on BVI10 from 192.168.1.1 for 224.0.1.40
Apr 28 18:32:56.559: IGMP(0): Received Group record for group 224.0.1.40, mode 2 from 192.168.1.1 for 0 sources
Apr 28 18:32:56.559: IGMP(0): Updating EXCLUDE group timer for 224.0.1.40
Apr 28 18:32:56.559: IGMP(0): MRT Add/Update BVI10 for (*,224.0.1.40) by 0
Apr 28 18:32:57.379: Packet type 0 sent to IGMP PI in VLAN 20
Apr 28 18:32:57.379: IGMPSN: group: Received V2 report for group 239.192.75.187 received on Vlan 20, port Fa3
Apr 28 18:32:59.847: Packet type 0 sent to IGMP PI in VLAN 20
Apr 28 18:32:59.847: IGMPSN: group: Received V2 report for group 239.192.75.188 received on Vlan 20, port Fa3
Apr 28 18:33:00.522: Packet type 0 sent to IGMP PI in VLAN 20
Apr 28 18:33:00.522: IGMPSN: group: Received V2 report for group 239.192.75.181 received on Vlan 20, port Fa3Ringrazio chiunque riesca a darmi una mano nella configurazione...