Invio configurazione
Inviato: lun 03 gen , 2011 3:48 pm
Ho un router 1710 con la configurazione sotto incollata ho dei dubbi essendo poco esperto sulla configurazione del router che ad oggi funziona ma dovendo bloccare un ip che mi perseguita non riesco a farla premetto questo:
-La Nat è interna fatta dal firewall Cisco
-Il router ha un indirizzo pubblico
-Gli altri ip sono nel firewall esterno al router 16 indirizzi
-Ho un IP dei miei che viene tartassato!!!
Come posso fare a bloccare qusto IP esterno che mi perseguita?
La con è esatta o manca qualcosa?
version 12.1
no service timestamps debug uptime
no service timestamps log uptime
no service password-encryption
no service dhcp
!
hostname Pippo1
!
no logging buffered
no logging console
no logging monitor
enable secret 5 °°°°°°°######
enable password pippo!
memory-size iomem 25
ip subnet-zero
no ip finger
ip domain-name pippo.it
ip name-server 62.94.0.41
ip name-server 62.94.0.42
!
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no ip mroute-cache
atm vc-per-vp 256
no atm ilmi-keepalive
dsl operating-mode auto
no fair-queue
!
interface ATM0.1 point-to-point
ip access-group 103 in
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface ATM0.2 point-to-point
ip access-group 103 in
pvc 9/35
encapsulation aal5mux ppp dialer
dialer pool-member 2
!
!
interface BRI0
no ip address
shutdown
!
interface FastEthernet0
ip address 83.###.###.200 255.255.255.240
ip nat outside
no ip mroute-cache
speed auto
!
interface Dialer0
description Eutelia ADSL
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
ppp chap hostname #####@pippo.it
ppp chap password 7 ##########
ppp pap sent-username ######@pippo.it password 7 ########!
interface Dialer1
description Eutelia ADSL VOCE IP
ip address negotiated
encapsulation ppp
dialer pool 2
dialer-group 2
ppp chap hostname ######@voipnet1
ppp chap password 7 ###########
ppp pap sent-username ######@@@@@@@ password 7 ########!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
no ip http server
!
access-list 103 deny ip host 119.###.##.## any log <------- Indirizzo che rompe
access-list 103 permit ip any any
dialer-list 1 protocol ip permit
dialer-list 2 protocol ip permit
snmp-server engineID local ##########
snmp-server community public RO 1
!
line con 0
exec-timeout 0 0
transport input none
stopbits 1
line aux 0
line vty 0 4
exec-timeout 0 0
login
transport input none
!
end
-La Nat è interna fatta dal firewall Cisco
-Il router ha un indirizzo pubblico
-Gli altri ip sono nel firewall esterno al router 16 indirizzi
-Ho un IP dei miei che viene tartassato!!!
Come posso fare a bloccare qusto IP esterno che mi perseguita?
La con è esatta o manca qualcosa?
version 12.1
no service timestamps debug uptime
no service timestamps log uptime
no service password-encryption
no service dhcp
!
hostname Pippo1
!
no logging buffered
no logging console
no logging monitor
enable secret 5 °°°°°°°######
enable password pippo!
memory-size iomem 25
ip subnet-zero
no ip finger
ip domain-name pippo.it
ip name-server 62.94.0.41
ip name-server 62.94.0.42
!
!
!
!
interface ATM0
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip route-cache flow
no ip mroute-cache
atm vc-per-vp 256
no atm ilmi-keepalive
dsl operating-mode auto
no fair-queue
!
interface ATM0.1 point-to-point
ip access-group 103 in
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface ATM0.2 point-to-point
ip access-group 103 in
pvc 9/35
encapsulation aal5mux ppp dialer
dialer pool-member 2
!
!
interface BRI0
no ip address
shutdown
!
interface FastEthernet0
ip address 83.###.###.200 255.255.255.240
ip nat outside
no ip mroute-cache
speed auto
!
interface Dialer0
description Eutelia ADSL
ip address negotiated
encapsulation ppp
dialer pool 1
dialer-group 1
ppp chap hostname #####@pippo.it
ppp chap password 7 ##########
ppp pap sent-username ######@pippo.it password 7 ########!
interface Dialer1
description Eutelia ADSL VOCE IP
ip address negotiated
encapsulation ppp
dialer pool 2
dialer-group 2
ppp chap hostname ######@voipnet1
ppp chap password 7 ###########
ppp pap sent-username ######@@@@@@@ password 7 ########!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
no ip http server
!
access-list 103 deny ip host 119.###.##.## any log <------- Indirizzo che rompe
access-list 103 permit ip any any
dialer-list 1 protocol ip permit
dialer-list 2 protocol ip permit
snmp-server engineID local ##########
snmp-server community public RO 1
!
line con 0
exec-timeout 0 0
transport input none
stopbits 1
line aux 0
line vty 0 4
exec-timeout 0 0
login
transport input none
!
end