CiscoForums.it

Inviato: **ven 06 giu , 2008 12:37 pm**

Salve a tutti,

Da un paio di settimane mi stò sbattendo a destra e a manca per rifinire le ultime configurazioni e propio quando pensavo di aver finito tutto.. ecco che spunta un'altra cosa da sistemare..

in breve

Ho 2 pc collegati al'857w uno fisso tramite lan (fe0) e l'altro un notebook tramite WiFi,

se provo a pingare l'ip del pc fisso dal notebook il ping riesce se faccio al contrario e provo a pingare dal fisso l'ip del notebook mi da richiesta scaduta.
premetto che la wireless funziona correttamente ed è configurata in bridge con la lan, e il notebook naviga tranquillamente.

sicuramente devo inserire qualche comando per far in modo che wifi e lan dialogano in entrambe le direzioni

avete qualche idea..

Grazie come sempre

Inviato: **ven 06 giu , 2008 2:08 pm**

Ci fai vedere la config?!

Inviato: **ven 06 giu , 2008 2:31 pm**

Grazie Wizard, per il momento sono in ufficio appena rientro la posto

Inviato: **ven 06 giu , 2008 10:35 pm**

e rieccomi.. incollo la mia configurazione per l857w

Codice: Seleziona tutto

version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
!
hostname cisco857w
!
boot-start-marker
boot-end-marker
!
logging buffered 51200
logging console critical
enable secret 5 *****
!
no aaa new-model
clock timezone MET 1
clock summer-time MEDT recurring last Sun Mar 2:00 last Sun Oct 3:00
!
crypto pki trustpoint tti
 revocation-check crl
 rsakeypair tti
!
crypto pki trustpoint TP-self-signed-*****
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-*****
 revocation-check none
 rsakeypair TP-self-signed-*****
!
!
crypto pki certificate chain tti
crypto pki certificate chain TP-self-signed-*****
 certificate self-signed 01
  30820244 ***** A0030201 02020101 300D0609 2A864886 F70D0101 04050030
  31312F30 ***** 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
  69666963 6174652D 32333937 35353634 3538301E 170D3038 30363036 31383533
  30355A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 33393735
  35363435 3830819F ***** 2A864886 F70D0101 01050003 818D0030 81890281
  8100B5CE 4AA05858 E597C94D CF850E85 7225F9B7 30CEC3BA F5961D05 5405601F
  ECA45583 F4C3EDB4 714C83A7 FF10FE7E 2D5AA4F8 1CC0A960 4D01723F 255C5C7C
  26CAAB2A 61C6D9EF B2CE18CB 009DD4C1 0F6B96C3 5EC7290A 6BBC0DF7 482901E0
  CAB63B34 FE6BD618 9C93C491 A2A0000E 88537BDF C7E9B995 1C97F0A5 6408028E
  7FE10203 010001A3 6C306A30 0F060355 1D130101 FF040530 030101FF 30170603
  551D1104 10300E82 0C433835 37572E4D 41545249 58301F06 03551D23 04183016
  80149E52 3E54ADAC 414B496C F05DC6EA 93FC4678 A935301D 0603551D 0E041604
  149E523E 54ADAC41 4B496CF0 5DC6EA93 FC4678A9 35300D06 092A8648 86F70D01
  01040500 03818100 9CB50F14 09BDFB08 A20E1886 7562402A 0A0FFCE5 62CC691E
  1F4013F2 586C187F 5EE34E27 156BFFDA 122CD4A5 0FA69768 289ED913 46704FDB
  D4B01481 4E4E62F4 313C1429 FE246AD0 D593A751 8D47F451 94019DC2 819E56AF
  D3486002 554DAD1C A42429BE EADAB560 2F53CAC7 49FFCCF8 DD037C13 E0FFA36F
  6472F57F 76F6C6EA
        quit
dot11 association mac-list 700
dot11 syslog
dot11 vlan-name C857W-wifi vlan 1
!
dot11 ssid alan
   vlan 1
   authentication open
   authentication key-management wpa
   guest-mode
   wpa-psk ascii 7 ***************
!
no ip source-route
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.0.221 192.168.0.254
!
ip dhcp pool sdm-pool1
   import all
   network 192.168.0.0 255.255.255.0
   domain-name home
   dns-server 208.67.222.222 208.67.220.220
   default-router 192.168.0.221
   lease infinite
!
!
ip cef
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
no ip bootp server
ip domain name home
ip name-server 208.67.222.222
ip name-server 208.67.220.220
!
!
!
username Agostino privilege 15 secret 5 *****!
!
archive
 log config
  hidekeys
!
!
ip tcp synwait-time 10
!
bridge irb
!
!
interface ATM0
 no ip address
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip route-cache flow
 no atm ilmi-keepalive
 dsl operating-mode auto
!
interface ATM0.1 point-to-point
 description $ES_WAN$
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 pvc 8/35
  oam-pvc manage
  pppoe-client dial-pool-number 1
 !
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
 no ip address
 no dot11 extension aironet
 !
 encryption vlan 1 mode ciphers tkip
 !
 ssid alan
 !
 speed basic-1.0 basic-2.0 basic-5.5 basic-6.0 basic-9.0 basic-11.0 basic-12.0 b
asic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0
 station-role root
 l2-filter bridge-group-acl
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.1
 encapsulation dot1Q 1 native
 no cdp enable
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
 no ip address
 ip tcp adjust-mss 1452
 bridge-group 1
!
interface Dialer0
 ip address negotiated
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip mtu 1492
 ip nat outside
 ip virtual-reassembly
 encapsulation ppp
 ip route-cache flow
 dialer pool 1
 dialer idle-timeout 3600 either
 dialer-group 1
 no cdp enable
 ppp authentication chap pap callin
 ppp chap hostname [email protected]
 ppp chap password 7 ************
 ppp pap sent-username [email protected] password 7 **********
!
interface BVI1
 description $ES_LAN$
 ip address 192.168.0.221 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat inside
 ip virtual-reassembly
 ip route-cache flow
 ip tcp adjust-mss 1452
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer0
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source static tcp 192.168.0.211 443 interface Dialer0 443
ip nat inside source static tcp 192.168.0.211 5119 interface Dialer0 5119
ip nat inside source static tcp 192.168.0.211 5900 interface Dialer0 5900
ip nat inside source static tcp 192.168.0.211 5800 interface Dialer0 5800
ip nat inside source list 1 interface Dialer0 overload
!
logging trap debugging
logging 192.168.0.1
logging 192.168.0.211
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 192.168.0.0 0.0.0.255
access-list 700 permit ****.****.****   0000.0000.0000
access-list 700 permit ****.****.****   0000.0000.0000
access-list 700 permit ****.****.****   0000.0000.0000
access-list 700 deny   0000.0000.0000   ffff.ffff.ffff
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
banner login ^CAuthorized access only!
 Disconnect IMMEDIATELY if you are not an authorized user!^C
!
line con 0
 login local
 no modem enable
line aux 0
line vty 0 4
 login local
 length 0
 transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
sntp server 207.46.232.182
sntp server 192.43.244.18
end

il problema è sempre quello, dal noteboock riesco ad accedere senza problemi al pc fisso e alle cartelle sharate mentre dal fisso non riesco neanche a pingare il portatile..

tutte le idee sono ben accette..

Grazie

Saluti

Agostino

Inviato: **sab 07 giu , 2008 10:53 pm**

salve il problema l'ho risolto.. provando con un'altro notebook funzionava tutto.. quindi non era causato dal router, mi sono accorto successivamente che il portatile aveva lo stack TCP/IP rovinato.. mi sono ricordato che una volta a lavoro mi capitò una cosa simile, bastò installare zonealarm 6 (che in fase di installazione crea un bachup del sottosistema di rete) e in seguito disinstallarlo e riavviare per ripristinare lo stack tcp/ip

cmq grazie lo stasso

saluti

Agostino

Inviato: **dom 08 giu , 2008 8:16 pm**

Meglio così, la configurazione sarà cmq utile a chi deve configurare un 857w!

Inviato: **lun 23 giu , 2008 2:41 pm**

Wizard ha scritto:Meglio così, la configurazione sarà cmq utile a chi deve configurare un 857w!

io ho un cisco 877w, ho abilitato la stessa config adattandola... ma mi funziona solo tramite ethernet... cosa può essere? ecco la mia config:

Current configuration : 5838 bytes
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
no service timestamps debug uptime
no service timestamps log uptime
no service password-encryption
!
hostname cisco
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$V/Oj$vFxmlkv2/0253rFXhmXG60
!
no aaa new-model
!
!
dot11 association mac-list 700
dot11 vlan-name cisco vlan 1
!
dot11 ssid mik
vlan 1
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 7 prova123
!
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.11.254
!
ip dhcp pool RANGE1
import all
network 192.168.0.0 255.255.0.0
default-router 192.168.11.254
dns-server 193.70.152.15 193.70.152.25
lease 365
!
!
ip name-server 193.70.152.15
ip name-server 193.70.152.25
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
vpdn enable
!
vpdn-group 1
request-dialin
protocol pppoe
l2tp tunnel receive-window 256
!
!
!
username gigi privilege 15 secret 5 $1$oJdI$vX21oJJsWjcNcPzTUChAo/
!
!
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
!
bridge irb
!
!
interface ATM0
no ip address
no atm ilmi-keepalive
pvc 8/35
pppoe-client dial-pool-number 1
!
bundle-enable
dsl operating-mode auto
!
interface FastEthernet0
no cdp enable
!
interface FastEthernet1
no cdp enable
!
interface FastEthernet2
no cdp enable
!
interface FastEthernet3
no cdp enable
!
interface Dot11Radio0
no ip address
no dot11 extension aironet
!
encryption vlan 1 mode ciphers tkip
!
ssid mik
!
speed basic-1.0 basic-2.0 basic-5.5 basic-6.0 basic-9.0 basic-11.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0
station-role root
l2-filter bridge-group-acl
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.1
encapsulation dot1Q 1 native
no cdp enable
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Vlan1
no ip address
ip tcp adjust-mss 1452
bridge-group 1
!
interface Dialer0
mtu 1492
ip address negotiated
ip nat outside
no ip virtual-reassembly
encapsulation ppp
ip tcp header-compression
ip tcp adjust-mss 1452
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname telecom
ppp chap password 0 telecom1
ppp pap sent-username telecom password 0 telecom1
!
interface BVI1
ip address 192.168.11.254 255.255.0.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
!
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer0
!
!
no ip http server
no ip http secure-server
ip nat translation timeout 600
ip nat translation tcp-timeout 1200
ip nat translation udp-timeout 30
ip nat translation max-entries 2500
ip nat inside source list 1 interface Dialer0 overload
ip nat inside source static tcp 192.168.11.64 49190 interface Dialer0 49190
ip nat inside source static tcp 192.168.11.64 49191 interface Dialer0 49191
ip nat inside source static tcp 192.168.11.64 49192 interface Dialer0 49192
ip nat inside source static tcp 192.168.11.64 49193 interface Dialer0 49193
ip nat inside source static tcp 192.168.11.64 49194 interface Dialer0 49194
ip nat inside source static tcp 192.168.11.64 49195 interface Dialer0 49195
ip nat inside source static tcp 192.168.11.64 49196 interface Dialer0 49196
ip nat inside source static udp 192.168.11.64 49196 interface Dialer0 49196
ip nat inside source static udp 192.168.11.64 49195 interface Dialer0 49195
ip nat inside source static udp 192.168.11.64 49194 interface Dialer0 49194
ip nat inside source static udp 192.168.11.64 49193 interface Dialer0 49193
ip nat inside source static udp 192.168.11.64 49192 interface Dialer0 49192
ip nat inside source static udp 192.168.11.64 49191 interface Dialer0 49191
ip nat inside source static udp 192.168.11.64 49190 interface Dialer0 49190
ip nat inside source static tcp 192.168.11.64 6900 interface Dialer0 6900
ip nat inside source static udp 192.168.11.64 6900 interface Dialer0 6900
ip nat inside source static udp 192.168.11.2 49305 interface Dialer0 49305
ip nat inside source static udp 192.168.11.2 49303 interface Dialer0 49303
ip nat inside source static udp 192.168.11.2 49300 interface Dialer0 49300
ip nat inside source static udp 192.168.11.2 49301 interface Dialer0 49301
ip nat inside source static udp 192.168.11.2 49302 interface Dialer0 49302
ip nat inside source static udp 192.168.11.2 49304 interface Dialer0 49304
ip nat inside source static udp 192.168.11.2 49306 interface Dialer0 49306
ip nat inside source static tcp 192.168.11.2 49306 interface Dialer0 49306
ip nat inside source static tcp 192.168.11.2 49305 interface Dialer0 49305
ip nat inside source static tcp 192.168.11.2 49304 interface Dialer0 49304
ip nat inside source static tcp 192.168.11.2 49303 interface Dialer0 49303
ip nat inside source static tcp 192.168.11.2 49302 interface Dialer0 49302
ip nat inside source static tcp 192.168.11.2 49301 interface Dialer0 49301
ip nat inside source static tcp 192.168.11.2 49300 interface Dialer0 49300
!
access-list 1 permit 192.168.0.0 0.0.255.255
access-list 1 permit 192.168.0.0 0.0.0.255
access-list 700 permit 001b.11b6.ebea 0000.0000.0000
!
!
!
!
control-plane
!
bridge 1 protocol ieee
bridge 1 route ip
!
line con 0
no modem enable
line aux 0
line vty 0 4
privilege level 15
password telecom
login local
transport input telnet ssh
!
no scheduler max-task-time
end

Inviato: **lun 23 giu , 2008 2:48 pm**

C'è un bel topic ad inizio pagina...

http://www.ciscoforums.it/viewtopic.php?t=9006

CiscoForums.it

857W e Wireless

857W e Wireless