Configurare un Cisco 827
Inviato: dom 13 mag , 2007 1:27 am
Salve, ho acquistato un router cisco 827 su ebay e nell'attesa del suo arrivo ho già stilato la configurazione da inviare, ho letto però da un utente frequentatore di questo forum, possessore di un 827 che ci possono dei problemi di "saturazione" utilizzando emule per molto tempo.
Lui dice infatti "e putroppo per mia esperienza ed anche di altri a meno di fare modifiche ad i parametri di nat (facendo varie prove) rischi di saturare la memoria quando tieni aperto emule per un bel po', specialmente se usi una configurazione bella piena".
Ora vi posto la mia configurazione e analizzatela e ditemi se è giusta e se c'e' qualcosa da aggiungere/migliorare.
La mia configurazione e' la seguente :
hostname Cisco827
no cdp run
no boot network
no service config
no ip source-route
no ip finger
no ip identd
no service pad
no service tcp-small-servers
no service udp-small-servers
no ip bootp server
no snmp-server
no tftp-server
no ip http server
no service dhcp
service password-encryption
enable secret <miapasswordsegreta>
ip name-server 62.94.0.1
ip name-server 62.94.0.2
interface Ethernet0
description HOME LAN
ip address 192.168.1.1 255.255.255.0
ip nat inside
hold-queue 100 out
no shutdown
exit
interface dialer0
description CONNESSIONE ADSL SUPERADSL 4MBIT
ip address negotiated
encapsulation ppp
ip nat outside
dialer pool 1
ppp chap hostname xxxxxxxxxx
ppp chap password ahpb9v
ppp pap sent-username xxxxxxxxxx password xxxxxxx
exit
interface atm0
description ADSL INTERFACCIA ATM
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
no shutdown
exit
access-list 1 permit 192.168.1.0 0.0.0.255
ip nat translation timeout 420
ip nat translation tcp-timeout 120
ip nat translation udp-timeout 120
ip nat translation syn-timeout 120
ip nat translation dns-timeout 300
ip nat translation icmp-timeout 120
ip nat inside source list 1 interface Dialer0 overload
ip route 0.0.0.0 0.0.0.0 dialer0
ip nat inside source static tcp 192.168.1.2 4662 interface Dialer0 4662
ip nat inside source static udp 192.168.1.2 4672 interface Dialer0 4672
ip nat inside source static 192.168.1.2 17203 interface Dialer0 17203
ip nat inside source static 192.168.1.2 6881 interface Dialer0 6881
ip nat inside source static tcp 192.168.1.2 6666 interface Dialer0 6666
ip nat inside source static tcp 192.168.1.2 90 interface Dialer0 90
ip nat inside source static 192.168.1.2 6346 interface Dialer0 6346
ip nat inside source static tcp 192.168.1.2 3389 interface Dialer0 3389
ip nat inside source static tcp 192.168.1.3 21 interface Dialer0 21
ip nat inside source static 192.168.1.10 3478 interface Dialer0 3478
ip nat inside source static 192.168.1.10 5060 interface Dialer0 5060
ip nat inside source static 192.168.1.10 5061 interface Dialer0 5061
ip nat inside source static udp 192.168.1.10 8000 interface Dialer0 8000
ip nat inside source static udp 192.168.1.10 8001 interface Dialer0 8001
ip nat inside source static udp 192.168.1.10 16348 interface Dialer0 16348
line vty 0 4
password xxxxxxx
login
Aspetto vostri consigli!
Grazie.
Lui dice infatti "e putroppo per mia esperienza ed anche di altri a meno di fare modifiche ad i parametri di nat (facendo varie prove) rischi di saturare la memoria quando tieni aperto emule per un bel po', specialmente se usi una configurazione bella piena".
Ora vi posto la mia configurazione e analizzatela e ditemi se è giusta e se c'e' qualcosa da aggiungere/migliorare.
La mia configurazione e' la seguente :
hostname Cisco827
no cdp run
no boot network
no service config
no ip source-route
no ip finger
no ip identd
no service pad
no service tcp-small-servers
no service udp-small-servers
no ip bootp server
no snmp-server
no tftp-server
no ip http server
no service dhcp
service password-encryption
enable secret <miapasswordsegreta>
ip name-server 62.94.0.1
ip name-server 62.94.0.2
interface Ethernet0
description HOME LAN
ip address 192.168.1.1 255.255.255.0
ip nat inside
hold-queue 100 out
no shutdown
exit
interface dialer0
description CONNESSIONE ADSL SUPERADSL 4MBIT
ip address negotiated
encapsulation ppp
ip nat outside
dialer pool 1
ppp chap hostname xxxxxxxxxx
ppp chap password ahpb9v
ppp pap sent-username xxxxxxxxxx password xxxxxxx
exit
interface atm0
description ADSL INTERFACCIA ATM
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
no shutdown
exit
access-list 1 permit 192.168.1.0 0.0.0.255
ip nat translation timeout 420
ip nat translation tcp-timeout 120
ip nat translation udp-timeout 120
ip nat translation syn-timeout 120
ip nat translation dns-timeout 300
ip nat translation icmp-timeout 120
ip nat inside source list 1 interface Dialer0 overload
ip route 0.0.0.0 0.0.0.0 dialer0
ip nat inside source static tcp 192.168.1.2 4662 interface Dialer0 4662
ip nat inside source static udp 192.168.1.2 4672 interface Dialer0 4672
ip nat inside source static 192.168.1.2 17203 interface Dialer0 17203
ip nat inside source static 192.168.1.2 6881 interface Dialer0 6881
ip nat inside source static tcp 192.168.1.2 6666 interface Dialer0 6666
ip nat inside source static tcp 192.168.1.2 90 interface Dialer0 90
ip nat inside source static 192.168.1.2 6346 interface Dialer0 6346
ip nat inside source static tcp 192.168.1.2 3389 interface Dialer0 3389
ip nat inside source static tcp 192.168.1.3 21 interface Dialer0 21
ip nat inside source static 192.168.1.10 3478 interface Dialer0 3478
ip nat inside source static 192.168.1.10 5060 interface Dialer0 5060
ip nat inside source static 192.168.1.10 5061 interface Dialer0 5061
ip nat inside source static udp 192.168.1.10 8000 interface Dialer0 8000
ip nat inside source static udp 192.168.1.10 8001 interface Dialer0 8001
ip nat inside source static udp 192.168.1.10 16348 interface Dialer0 16348
line vty 0 4
password xxxxxxx
login
Aspetto vostri consigli!
Grazie.
