CiscoForums.it

Ciao a tutti
chiedo aiuto per la configurazione del mio Cisco 1841 (sono assolutamente inesperto) fatta dopo aver consultato il forum.
Ho un collegamento ADSL Tele2 2MB e 2 pc con indirizzo 192.168.0.2 (pc con Strong DC++) - 192.168.0.4, appena accendo il router riesco a navigare in internet ma quando poi attivo Strong DC++ dopo un po' non visualizzo piu' nulla con explorer e non riesco nemmeno a pingare i siti dal pc, mentre riesco a pingare dal router, Strong invece continua a funzionare.
Posto la mia config e vi ringrazio anticipatamente

Building configuration...

Current configuration : 2201 bytes
!
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no aaa new-model
ip subnet-zero
ip cef
!
!
!
!
ip name-server 130.244.127.161
ip name-server 130.244.127.162
no ftp-server write-enable
!
!
!
!
interface FastEthernet0/0
ip address 192.168.0.10 255.255.255.0
ip nat inside
no ip mroute-cache
duplex auto
speed auto
hold-queue 100 out
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
hold-queue 224 in
pvc 8/35
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface BRI0/1/0
no ip address
shutdown
!
interface Dialer0
ip address negotiated
ip nat outside
encapsulation ppp
dialer pool 1
dialer-group 1
ppp chap hostname [email protected]
ppp chap password XXXXXXX
ppp pap sent-username [email protected] password 0 XXXXXXX
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
!
!
ip http server
no ip http secure-server
ip nat inside source list 1 interface Dialer0 overload
ip nat inside source static udp 192.168.0.2 8080 interface Dialer0 8080
ip nat inside source static tcp 192.168.0.2 8080 interface Dialer0 8080
ip nat inside source static tcp 192.168.0.2 1755 interface Dialer0 1755
ip nat inside source static udp 192.168.0.2 1755 interface Dialer0 1755
ip nat inside source static udp 192.168.0.2 7212 interface Dialer0 7212
ip nat inside source static tcp 192.168.0.2 7212 interface Dialer0 7212
ip nat inside source static udp 192.168.0.4 7070 interface Dialer0 7070
ip nat inside source static tcp 192.168.0.4 7070 interface Dialer0 7070
!
access-list 1 permit 192.168.0.0 0.0.0.255
access-list 1 permit 0.0.0.0 255.255.255.0
access-list 101 permit ip 192.168.0.0 0.0.0.255 any
access-list 101 permit ip any any
dialer-list 1 protocol ip permit
!
!
!
control-plane
!
!
line con 0
stopbits 1
line aux 0
line vty 0 4
exec-timeout 30 0
login local
length 0
!
no scheduler max-task-time
end

Ciao

Prova a mettere queste righe:

Ho provato a modificare

Codice:

ip nat translation timeout 420
ip nat translation tcp-timeout 120
ip nat translation syn-timeout 120
ip nat translation udp-timeout 120
ip nat translation dns-timeout 300
ip nat translation icmp-timeout 120

ma non è cambiato nulla, dopo qualche ora explorer non visualizza, dal router riesco a pingare i DNS di Tele2 mentre dal pc no, non riesco a navigare neanche sull'altro pc mentre MSN messenger funziona

Se avete qualche altro consiglio ve ne saro' grato

Ciao

Riesci a gestire il numero di connessioni sul client dc++? Se si metti massime 500, massime in un minuto 500.
Se non puoi proverei con la configurazione del ip inspect sul router sperando che tu abbia la ios adeguata.

Provero' a vedere sul client, ma eventualmente quali comandi devo dare per configurare IP inspect e come verifico la IOS se è adeguata..?

grazie per la pazienza

Ciao

Fai uno "sh ver" e posta qui il risultato

Sul client non pare sia possibile gestire le connessioni

Ecco comunque lo sh ver

Cisco IOS Software, 1841 Software (C1841-SPSERVICESK9-M), Version 12.3(11)T5, RE
LEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2005 by Cisco Systems, Inc.
Compiled Sat 02-Apr-05 08:54 by yiyan

ROM: System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1)

Router uptime is 23 hours, 5 minutes
System returned to ROM by power-on
System image file is "flash:c1841-spservicesk9-mz.123-11.T5.bin"


This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
[email protected].

Cisco 1841 (revision 5.0) with 116736K/14336K bytes of memory.
Processor board ID FCZ092021ME
2 FastEthernet interfaces
1 ISDN Basic Rate interface
1 ATM interface
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
31360K bytes of ATA CompactFlash (Read/Write)

Configuration register is 0x2102

Prova a fare così:

Il comando IP INSPECT non me lo accetta, ti posto quali comandi IP prende:



Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#ip ?
Global IP configuration subcommands:
access-list Named access-list
accounting-list Select hosts for which IP accounting information is
kept
accounting-threshold Sets the maximum number of accounting entries
accounting-transits Sets the maximum number of transit entries
address-pool Specify default IP address pooling mechanism
alias Alias an IP address to a TCP port
arp IP ARP global configuration
as-path BGP autonomous system path filter
bgp-community format for BGP community
bootp Config BOOTP services
cef Cisco Express Forwarding
classless Follow classless routing forwarding rules
community-list Add a community list entry
default-gateway Specify default gateway (if not routing IP)
default-network Flags networks as candidates for default routes
dhcp Configure DHCP server and relay parameters
dhcp-client Configure parameters for DHCP client operation
dhcp-server Specify address of DHCP server to use
dns Configure DNS server for a zone
domain IP DNS Resolver
domain-list Domain name to complete unqualified host names.
domain-lookup Enable IP Domain Name System hostname translation
domain-name Define the default domain name
dvmrp DVMRP global commands
extcommunity-list Add a extended community list entry
finger finger server
flow-aggregation Configure flow aggregation
flow-cache Configure netflow cache parameters
flow-egress Configure netflow egress
flow-export Specify host/port to send flow statistics
flow-top-talkers Configure netflow top talkers
forward-protocol Controls forwarding of physical and directed IP
broadcasts
ftp FTP configuration commands
gdp Router discovery mechanism
gratuitous-arps Generate gratuitous ARPs for PPP/SLIP peer addresses
host Add an entry to the ip hostname table
host-routing Enable host-based routing (proxy ARP and redirect)
hp-host Enable the HP proxy probe service
http HTTP server configuration
icmp ICMP options
identd Ident server
igmp IGMP global configuration
local Specify local options
mobile Enable Mobile IP services
mrm Configure IP Multicast Routing Monitor test
parameters
mroute Configure static multicast routes
msdp MSDP global commands
multicast Global IP Multicast Commands
multicast-routing Enable IP multicast forwarding
name-server Specify address of name server to use
nat NAT configuration commands
nbar NBAR - Network Based Application Recognition
options IP Options treatment
ospf OSPF
pgm PGM Reliable Transport Protocol
pim PIM global commands
policy-list Define IP Policy list
prefix-list Build a prefix list
radius RADIUS configuration commands
rcmd Rcmd commands
reflexive-list Reflexive access list
route Establish static routes
routing Enable IP routing
rsvp Configure static RSVP information
rtcp RTCP parameters
sap Global IP Multicast SAP Commands
scp Scp commands
security Specify system wide security information
source-route Process packets with source routing header options
source-track Source Tracker
ssh Configure ssh options
subnet-zero Allow 'subnet zero' subnets
tacacs TACACS configuration commands
tcp Global TCP parameters
telnet Specify telnet options
tftp tftp configuration commands
traffic-export IP traffic export configuration commands
trigger-authentication Trigger-authentication configurations parameters
udptn UDPTN configuration commands
vrf Configure an IP VPN Routing/Forwarding instance
wccp Web-Cache Coordination Protocol Commands

Senza attivare Strong DC il router non ha avuto mai problemi (da 1 giorno intero)
Ciao

Aggiorna alla versione di ios advanced security se puoi.

Potresti aiutarmi specificando cosa installare o richiedere e come fare ?

Ciao

Devi installare sul router la ios advanced security (sistema operativo).
Per scaricare la ios in oggetto ci vorrebbe un account Cisco CCO (si ha se si ha un contratto smartnet). Come fare poi ad installare la nuova ios sul router il forum è pieno di post con queste informazioni