Cisco 1841 Configuration Guide

Cisco 1841 - 3G Bundle Router Manual

Get Cisco 1841 - 3G Bundle Router PDF manuals and user guides
UPC - 882658218231
View all Cisco 1841 manuals
Add to My Manuals
Save this manual to your list of manuals

Cisco 1841 manual content summary:

  • Cisco 1841 | Configuration Guide - Page 1
    Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Text Part Number: OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 2
    the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0501R) Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide Copyright © 2005, Cisco Systems, Inc. All rights reserved.
  • Cisco 1841 | Configuration Guide - Page 3
    Assistance 17 Cisco Technical Support Website 17 Submitting a Service Request 17 Definitions of Service Request Severity 18 Obtaining Additional Publications and Information 18 Getting Started Basic Router Configuration 1 Interface Port Labels 1 Viewing the Default Configuration 2 Information Needed
  • Cisco 1841 | Configuration Guide - Page 4
    6 Configuring ADSL 6 Verify the Configuration 7 Configuring SHDSL 7 Verify the Configuration 8 Configure Network Address Translation 9 Configuration Example 11 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration GuideCisco 1800 Series Integrated Services Routers (Fixed
  • Cisco 1841 | Configuration Guide - Page 5
    10 Configuration Example 10 Configuring VPNs Using an IPSec Tunnel and Generic Routing Encapsulation 1 Configure a VPN 3 Configure the IKE Policy 3 Configure Group Policy Information 4 Enable Policy Lookup 5 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5
  • Cisco 1841 | Configuration Guide - Page 6
    Cisco IOS Firewall IDS 4 Configuring VPNs 4 13 C H A P T E R Configuring Dial Backup and Remote Management 1 Dial Backup Feature Activation Methods 1 Backup Interfaces 1 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration GuideCisco 1800 Series Integrated Services Routers
  • Cisco 1841 | Configuration Guide - Page 7
    a Lost Password 9 Change the Configuration Register 10 Reset the Router 11 Reset the Password and Save Your Changes 12 Reset the Configuration Register Value 12 Managing Your Router with SDM 13 Reference Information Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7
  • Cisco 1841 | Configuration Guide - Page 8
    P P E N D I X Cisco IOS Software Basic Skills 1 Configuring the Router from a PC 1 Understanding Command Modes 2 Getting Help 4 Enable Secret Passwords and Enable Passwords 5 Entering Global Configuration Mode 5 Using Commands 6 Abbreviating Commands 6 Undoing Commands 6 Command-Line Error Messages
  • Cisco 1841 | Configuration Guide - Page 9
    Manually 6 Changing the Configuration Register Using Prompts 6 Console Download 7 Command Description 7 Error Reporting 8 Debug Commands 8 Exiting the ROM Monitor 9 Common Port Assignments 1 Contents OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 10
    Contents Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration GuideCisco 1800 Series Integrated Services Routers (Fixed) 10 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 11
    This software configuration guide provides instructions for using the Cisco command-line interface (CLI) to configure features of the following Cisco 1800 series integrated services fixed-configuration routers: • Cisco 1801, Cisco 1802, and Cisco 1803 DSL Access Routers • Cisco 1811 and Cisco 1812
  • Cisco 1841 | Configuration Guide - Page 12
    Provides instructions on how to configure your Cisco router for dial backup and remote management. Chapter 14 Troubleshooting Provides information on identifying and solving problems, such as how to recover a lost software password. Part 4: Reference Information Appendix A Cisco IOS Software
  • Cisco 1841 | Configuration Guide - Page 13
    you. Optional keywords and default responses to system prompts appear within square brackets. A choice of keywords (represented by x) appears in braces separated by vertical bars. You must select one. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13
  • Cisco 1841 | Configuration Guide - Page 14
    Compliance and Safety Information for Cisco 1800 Integrated Services Routers (Fixed) Cisco Modular Access Router Cable Specifications Cisco access router wireless LAN documentation Cisco Access Router Wireless Configuration Guide Cisco access router antenna documentation Declarations of
  • Cisco 1841 | Configuration Guide - Page 15
    documentation through a local account representative by calling Cisco Systems Corporate Headquarters (California, USA) at 408 526-7208 or, elsewhere in North America, by calling 1 800 553-NETS (6387). OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 15
  • Cisco 1841 | Configuration Guide - Page 16
    to use in your correspondence with PSIRT is the one that has the most recent creation date in this public key server list: http://pgp.mit.edu:11371/pks/lookup?search=psirt%40cisco.com&op=index&exact=on Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 16 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 17
    Support Website requires a Cisco.com user ID and password. If you have a valid service contract but do not have a user ID or password, you can register at this URL: http://tools.cisco.com/RPF/register/register.do Note Use the Cisco Product Identification (CPI) tool to locate your product serial
  • Cisco 1841 | Configuration Guide - Page 18
    deployment and troubleshooting tips, configuration examples, customer case studies, certification and training information, and links to scores of in-depth online resources. You can access Packet magazine at this URL: http://www.cisco.com/packet Cisco 1800 Series Integrated Services Routers (Fixed
  • Cisco 1841 | Configuration Guide - Page 19
    Journal at this URL: http://www.cisco.com/ipj • World-class networking training is available from Cisco. You can view current offerings at this URL: http://www.cisco.com/en/US/learning/index.html OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 19
  • Cisco 1841 | Configuration Guide - Page 20
    Obtaining Additional Publications and Information Preface Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 20 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 21
    PART 1 Getting Started
  • Cisco 1841 | Configuration Guide - Page 22
  • Cisco 1841 | Configuration Guide - Page 23
    of your Cisco router, including global parameter settings, routing protocols, interfaces, and command-line access. It also describes the default configuration on startup. Note that individual router models may not support every feature described throughout this guide. Features not supported by
  • Cisco 1841 | Configuration Guide - Page 24
    the initial configuration and you get a No Password Set error message, you must reset the initial password. For details, see the "Recovering a Lost Password" section in Chapter 14, "Troubleshooting". Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-2 OL-6426
  • Cisco 1841 | Configuration Guide - Page 25
    Chapter 1 Basic Router Configuration Viewing the Default Configuration OL-6426-02 Example 1 Cisco 1812 Default Configuration on Startup version 12.3 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption ! hostname Router ! boot-start-marker
  • Cisco 1841 | Configuration Guide - Page 26
    the number of PVCs that your service provider has given you, along with their VPIs and VCIs. - For each PVC determine the type of AAL5 encapsulation supported. It can be one of the following: Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 27
    • Configuring a Loopback Interface • Configuring Command-Line Access to the Router A configuration example is presented with each task to show the network configuration following completion of that task. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 28
    ) into IP addresses. For complete information on the global parameter commands, see the Cisco IOS Release 12.3 documentation set. Configure Fast Ethernet LAN Interfaces The Fast Ethernet LAN interfaces on your router are automatically configured as part of the default VLAN and as such, they are not
  • Cisco 1841 | Configuration Guide - Page 29
    administratively down to administratively up. Exits interface configuration mode and returns to global configuration mode. Repeat these steps for the other Fast Ethernet WAN interface if desired. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-7
  • Cisco 1841 | Configuration Guide - Page 30
    . Enters interface configuration mode. Sets the IP address and subnet mask for the ATM interface. Enables the ATM 0 interface. Exits interface configuration mode and returns to global configuration mode. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-8 OL-6426
  • Cisco 1841 | Configuration Guide - Page 31
    LAN Connection" and the Cisco Access Router Wireless Configuration Guide. Configuring a Loopback Interface The loopback interface acts as a placeholder for the static IP address and provides default routing information. For complete information on the loopback commands, see the Cisco IOS Release 12
  • Cisco 1841 | Configuration Guide - Page 32
    (config)# Purpose Enters line configuration mode, and specifies the type of line. This example specifies a console terminal for access. Specifies a unique password for the console terminal line. 1-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 33
    session login. Exits line configuration mode, and returns to privileged EXEC mode. For complete information about the command line commands, see the Cisco IOS Release 12.3 documentation set. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-11
  • Cisco 1841 | Configuration Guide - Page 34
    EXEC mode. For complete information on the static routing commands, see the Cisco IOS Release 12.3 documentation set. For more general information on static routing, see Appendix B, "Concepts." 1-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 35
    , such as Routing Information Protocol (RIP) or Enhanced Interior Gateway Routing Protocol (EIGRP), to learn routes dynamically. You can configure either of these routing protocols on your router. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 1-13
  • Cisco 1841 | Configuration Guide - Page 36
    privileged EXEC mode. For complete information on the dynamic routing commands, see the Cisco IOS Release 12.3 documentation set. For more general information on RIP, see Appendix B, "Concepts." 1-14 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 37
    * - candidate default, U - per router configuration mode, and enables EIGRP on the router. The autonomous-system number identifies the route to other EIGRP routers and is used to tag the EIGRP information. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 38
    of last resort is not set 10.0.0.0/24 is subnetted, 1 subnets C 10.108.1.0 is directly connected, Loopback0 D 3.0.0.0/8 [90/409600] via 2.2.2.1, 00:00:02, Ethernet0/0 1-16 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 39
    PART 2 Configuring Your Router for Ethernet and DSL Access
  • Cisco 1841 | Configuration Guide - Page 40
  • Cisco 1841 | Configuration Guide - Page 41
    and VLANs" • Chapter 6, "Configuring a VPN Using Easy VPN and an IPSec Tunnel" • Chapter 7, "Configuring VPNs Using an IPSec Tunnel and Generic Routing Encapsulation" • Chapter 8, "Configuring a Simple Firewall" Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 2-1
  • Cisco 1841 | Configuration Guide - Page 42
    Chapter 2 Sample Network Deployments Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 2-2 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 43
    PPP over Ethernet with NAT The Cisco 1811 and Cisco 1812 integrated services fixed-configuration routers support Point-to-Point Protocol over Ethernet (PPPoE) clients and network address translation (NAT). Multiple PCs can be connected to the LAN behind the router. Before the traffic from these PCs
  • Cisco 1841 | Configuration Guide - Page 44
    Step 2 vpdn group name Example: Router(config-vpdn)# vpdn group 1 Router(config-vpdn-grp)# Purpose Enables VPDN on the router. Creates and associates a VPDN group with a customer or VPDN profile. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-2 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 45
    IOS Dial Technologies Command Reference. Specifies the type of sessions the VPDN subgroup can establish. Exits VPDN group configuration. Exits VPDN configuration, returning to global configuration mode. Configure the Fast Ethernet WAN Interfaces In this scenario, the PPPoE client (your Cisco router
  • Cisco 1841 | Configuration Guide - Page 46
    use for cloning. Enables the Fast Ethernet interface and the configuration changes just made to it. Exits configuration mode for the Fast Ethernet interface and returns to global configuration mode. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 47
    details about this command and additional parameters that can be set, see the Cisco IOS Security Command Reference. Specifies the dialer pool to use to connect to a specific destination subnetwork. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-5
  • Cisco 1841 | Configuration Guide - Page 48
    route for the default gateway for the dialer 0 interface. For details about this command and additional parameters that can be set, see the Cisco IOS IP Command Reference, Volume 2; Routing Protocols. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 49
    about this command and additional parameters that can be set, as well as information about enabling static translation, see the Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-7
  • Cisco 1841 | Configuration Guide - Page 50
    Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services. Enables the configuration changes just made to the Ethernet interface. Step 10 exit Example: Router(config-if)# exit Router(config)# Exits configuration mode for the Fast Ethernet interface. Step 11 access-list access-list
  • Cisco 1841 | Configuration Guide - Page 51
    chap dialer pool 1 dialer-group 1 ! dialer-list 1 protocol ip permit ip nat inside source list 1 interface dialer 0 overload ip classless (default) ip route 10.10.25.2 0.255.255.255 dialer 0 ! OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 3-9
  • Cisco 1841 | Configuration Guide - Page 52
    Hits: 0 Misses: 0 CEF Translated packets: 0, CEF Punted packets: 0 Expired translations: 0 Dynamic mappings: -- Inside Source [Id: 1] access-list 1 interface Dialer0 refcount 0 Queued Packets: 0 3-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 53
    Client-Cisco 1801, Cisco 1802, or Cisco 1803 router 4 Point at which NAT occurs 7 5 ATM WAN interface (outside interface for NAT) 6 PPPoA session between the client and a PPPoA server at the ISP 1 121753 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-1
  • Cisco 1841 | Configuration Guide - Page 54
    Configure the ATM WAN Interface • Configure DSL Signaling Protocol • Configure Network Address Translation An example showing the results of these configuration tasks is shown in the section "Configuration Example." Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 55
    details about this command and additional parameters that can be set, see the Cisco IOS Security Command Reference. Specifies the dialer pool to use to connect to a specific destination subnetwork. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-3
  • Cisco 1841 | Configuration Guide - Page 56
    and additional parameters that can be set, see the Cisco IOS IP Command Reference, Volume 1 of 4: Routing Protocols. Repeat these steps for any additional dialer interfaces or dialer pools needed. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 57
    : Router(config-if-atm-vc)# dialer pool-member 1 Router(config-if-atm-vc)# Specifies the ATM interface as a member of a dialer profile dialing pool. The pool number must be in the range of 1-255. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-5
  • Cisco 1841 | Configuration Guide - Page 58
    . • ADSL over ISDN-ITU full rate, ETSI, or automatic selection. Specifies the number of times a loss of margin may occur. Toggles between enabling the training log and Disabled disabling the training log. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-6 OL
  • Cisco 1841 | Configuration Guide - Page 59
    or at customer premises equipment (CPE). Exits controller configuration mode, returning to global configuration mode. Specifies the mode of the DSL controller and enters controller configuration mode. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-7
  • Cisco 1841 | Configuration Guide - Page 60
    Utopia Configured Line rate: Auto Line Re-activated 6 times after system bootup LOSW Defect alarm: ACTIVE CRC per second alarm: ACTIVE Line termination: CPE Current 15 min CRC: 0 Current 15 min LOSW Defect: 0 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 4-8 OL
  • Cisco 1841 | Configuration Guide - Page 61
    : Data, Status configure NAT for either static or dynamic address translations. Perform these steps to configure the outside ATM WAN interface with dynamic NAT, beginning in global configuration mode: OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 62
    Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services. Enables the configuration changes just made to the Ethernet interface. Step 6 exit Example: Router(config-if)# exit Router(config)# Exits configuration mode for the Fast Ethernet interface. 4-10 Cisco 1800 Series Integrated
  • Cisco 1841 | Configuration Guide - Page 63
    the Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services. Enables the configuration changes just made to the Ethernet interface. Step 10 exit Exits configuration mode for the ATM interface. Example: Router(config-if)# exit Router(config)# Step 11 access-list access-list-number
  • Cisco 1841 | Configuration Guide - Page 64
    Hits: 0 Misses: 0 CEF Translated packets: 0, CEF Punted packets: 0 Expired translations: 0 Dynamic mappings: -- Inside Source [Id: 1] access-list 1 interface Dialer0 refcount 0 Queued Packets: 0 4-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 65
    the server with the configuration data from the Network Registrar database. VLANs The Cisco 1800 series integrated services routers (fixed) support eight Fast Ethernet ports on which you can configure VLANs. See the "Switch Port Configurations" section on page 5-7 for a description of the interfaces
  • Cisco 1841 | Configuration Guide - Page 66
    appropriate for your router. See the Cisco IOS IP Configuration Guide to assign an IP address to the ports. Configure DHCP Perform these steps to configure your router for DHCP operation, beginning in global configuration mode: Step 1 Command ip domain name name Example: Router(config)# ip domain
  • Cisco 1841 | Configuration Guide - Page 67
    ! ip dhcp pool dpool1 import all network 10.10.0.0 255.255.255.0 default-router 10.10.10.10 dns-server 192.168.35.2 domain-name cisco.com ! ip domain name smallbiz.com ip name-server 192.168.11.12 OL-6426-03 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-3
  • Cisco 1841 | Configuration Guide - Page 68
    addresses 0 Router# show ip dhcp server statistics Memory usage 15419 Address pools 1 Database agents 0 Automatic bindings 0 Manual bindings 0 Expired DHCPACK DHCPNAK Router# Sent 0 0 0 0 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-4 OL-
  • Cisco 1841 | Configuration Guide - Page 69
    MTU: 1500 Translational Bridged VLAN: 1002 Translational Bridged VLAN: 1003 VLAN ISL Id: 1002 Name: fddi-default Media Type: FDDI VLAN 802.10 Id: 101002 State: Operational MTU: 1500 Bridge Type: SRB OL-6426-03 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-5
  • Cisco 1841 | Configuration Guide - Page 70
    1 Translational Bridged VLAN: 1002 VLAN ISL Id: 1004 Name: fddinet-default Media Type: FDDI Net VLAN 802.10 Id: 101004 State: Operational 0 0 1005 trnet 101005 1500 - - 1 ibm - 0 0 Router# Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-6 OL-6426-03
  • Cisco 1841 | Configuration Guide - Page 71
    Cisco HWIC-4ESW and HWIC-9ESW EtherSwitch Interface Cards document on Cisco.com. See this document to configure the switch ports. The configuration procedures described in this document are listed below. OL-6426-03 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 72
    Series. Note These security features are not supported on the switch ports: Security Access Control Lists, IP Access Control Lists (IP- ACLs) for Layer 2 ports, and VLAN ACLs Virtual ACLs. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-8 OL-6426-03
  • Cisco 1841 | Configuration Guide - Page 73
    . You can configure your router to enable multi-cast switching globally, enable IP Protocol Independent Multicast (PIM) on a Layer 3 interface, and verify the Multicast Layer 3 switching information. OL-6426-03 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 5-9
  • Cisco 1841 | Configuration Guide - Page 74
    examples and information on the features and interfaces are in the Cisco HWIC-4ESW and HWIC-9ESW EtherSwitch Interface Cards document on Cisco.com. See this document to configure the switch ports. 5-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-03
  • Cisco 1841 | Configuration Guide - Page 75
    The Cisco 1800 series integrated services fixed-configuration routers support the creation of Virtual Private Networks (VPNs). Cisco routers and other IPSec Tunnel 121782 2 1 5 3 4 Internet 6 OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 6-1
  • Cisco 1841 | Configuration Guide - Page 76
    network resources on the client site. After the IPSec server has been configured, a VPN connection can be created with minimal configuration on an IPSec client, such as a supported Cisco 1800 integrated services router. When the IPSec client initiates the VPN tunnel connection, the IPSec server
  • Cisco 1841 | Configuration Guide - Page 77
    . The example specifies a pre-shared key. Step 5 group {1 | 2 | 5} Example: Router(config-isakmp)# group 2 Router(config-isakmp)# Specifies the Diffie-Hellman group to be used in an IKE policy. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 6-3
  • Cisco 1841 | Configuration Guide - Page 78
    Naming Service (WINS) servers for the group by using the wins command. domain name Specifies group domain membership. Example: Router(config-isakmp-group)# domain company.com Router(config-isakmp-group)# Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 6-4 OL
  • Cisco 1841 | Configuration Guide - Page 79
    .30.30 Router(config)# Purpose Exits IKE group policy configuration mode, and enters global configuration mode. Specifies a local address pool for the group. For details about this command and additional parameters that can be set, see the Cisco IOS Dial Technologies Command Reference. Apply Mode
  • Cisco 1841 | Configuration Guide - Page 80
    Cisco IOS Security Configuration Guide and Cisco IOS Security Command Reference. username name {nopassword | password password | password encryption-type encrypted-password} Example: Router(config)# username Cisco password 0 Cisco Router(config)# Establishes a username-based authentication system
  • Cisco 1841 | Configuration Guide - Page 81
    security-association lifetime seconds 86400 Router(config)# See the Cisco IOS Security Command Reference for details. Note With manually established security associations, there is no negotiation with the peer, and both sides must specify the same transform set. Configure the IPSec Crypto Method
  • Cisco 1841 | Configuration Guide - Page 82
    )# Purpose Creates source proxy information for the crypto map entry. See the Cisco IOS Security Command Reference for details. Step 4 exit Returns to global configuration mode. Example: Router(config-crypto-map)# exit Router(config)# Step 5 crypto map map-name seq-num [ipsec-isakmp] Creates
  • Cisco 1841 | Configuration Guide - Page 83
    to the interface. See the Cisco IOS Security Command Reference for more detail about this command. Returns to global configuration mode. Create an Easy VPN Remote Configuration The router acting as the IPSec remote router must create an Easy VPN remote configuration and assign it to the outgoing
  • Cisco 1841 | Configuration Guide - Page 84
    tunnel described in this chapter. ! aaa new-model ! aaa authentication login rtr-remote local aaa authorization network rtr-remote local aaa session-id common ! username Cisco password 0 Cisco 6-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 85
    list rtr-remote crypto map dynmap client configuration address respond crypto ipsec client ezvpn ezvpnclient connect auto group 2 key secret-password ezvpn ezvpnclient inside ! Configuration Example OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 6-11
  • Cisco 1841 | Configuration Guide - Page 86
    Configuration Example Chapter 6 Configuring a VPN Using Easy VPN and an IPSec Tunnel 6-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 87
    Cisco 1800 series integrated services fixed-configuration routers support the creation of virtual private networks (VPNs). Cisco routers 6 VPN client-Another router, which controls access to the corporate network Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-1
  • Cisco 1841 | Configuration Guide - Page 88
    Router Configuration," Chapter 3, "Configuring PPP over Ethernet with NAT," Chapter 4, "Configuring PPP over ATM with NAT," and Chapter 5, "Configuring a LAN with DHCP and VLANs," as appropriate for your router. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 89
    | rsa-encr | pre-share} Example: Router(config-isakmp)# authentication pre-share Router(config-isakmp)# Specifies the authentication method used in the IKE policy. The example uses a pre-shared key. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-3
  • Cisco 1841 | Configuration Guide - Page 90
    group)# Specifies the primary Domain Name Service (DNS) server for the group. Note You may also want to specify Windows Internet Naming Service (WINS) servers for the group by using the wins command. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 91
    This example uses a local authentication database. You could also use a RADIUS server for this. See the Cisco IOS Security Configuration Guide and the Cisco IOS Security Command Reference for details. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-5
  • Cisco 1841 | Configuration Guide - Page 92
    Configuration Guide and the Cisco IOS Security Command Reference for details. username name {nopassword | password password | password encryption-type encrypted-password} Example: Router(config)# username Cisco password 0 Cisco Router(config)# Establishes a username-based authentication system
  • Cisco 1841 | Configuration Guide - Page 93
    -map)# Creates source proxy information for the crypto map entry. See the Cisco IOS Security Command Reference for details. Step 4 exit Enters global configuration mode. Example: Router(config-crypto-map)# exit Router(config)# Step 5 crypto map map-name seq-num [ipsec-isakmp] Creates a crypto
  • Cisco 1841 | Configuration Guide - Page 94
    See th e Cisco IOS Security Command Reference for more detail about this command. Enters global configuration mode. Configure a GRE Tunnel Perform these steps to configure a GRE tunnel, beginning in global configuration mode: Step 1 Command or Action interface type number Example: Router(config
  • Cisco 1841 | Configuration Guide - Page 95
    Example: Router(config-acl)# permit gre host 192.168.100.1 host 192.168.101.1 Router(config-acl)# Step 9 exit Returns to global configuration mode. Example: Router(config-acl)# exit Router(config)# OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-9
  • Cisco 1841 | Configuration Guide - Page 96
    -share group 2 ! crypto isakmp client configuration group rtr-remote key secret-password dns 10.50.10.1 10.60.10 isakmp authorization list rtr-remote crypto map dynmap client configuration address respond Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 97
    internet initiated traffic inbound. ! acl 105 matches addresses for the ipsec tunnel to/from the corporate network. access-list 105 permit ip 10.1.1.0 0.0.0.255 192.168.0.0 0.0.255.255 no cdp run OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 7-11
  • Cisco 1841 | Configuration Guide - Page 98
    Configuration Example Chapter 7 Configuring VPNs Using an IPSec Tunnel and Generic Routing Encapsulation 7-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 99
    Firewall The Cisco 1800 integrated services routers support network traffic filtering by means of access lists. The router also supports packet inspection and dynamic temporary access lists by means of Context-Based Access Control (CBAC). Basic traffic filtering is limited to configured access list
  • Cisco 1841 | Configuration Guide - Page 100
    Configuration," Chapter 3, "Configuring PPP over Ethernet with NAT," and Chapter 4, "Configuring PPP over ATM with NAT," as appropriate for your router. You may have also configured DHCP, VLANs, and secure tunnels. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 101
    reaching the local (inside) network of the router, and which compares source and destination ports. See the Cisco IOS IP Command Reference, Volume 1 of 4: Addressing and Services for details about this command. Step 2 access-list access-list-number {deny | permit} protocol source source-wildcard
  • Cisco 1841 | Configuration Guide - Page 102
    mode. Enters interface configuration mode for the outside network interface on your router. Assigns the defined ACLs to the outside interface on the router. Returns to global configuration mode. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 8-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 103
    internet initiated traffic inbound. ! acl 105 matches addresses for the ipsec tunnel to/from the corporate network. access-list 105 permit ip 10.1.1.0 0.0.0.255 192.168.0.0 0.0.255.255 no cdp run ! OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 8-5
  • Cisco 1841 | Configuration Guide - Page 104
    Configuration Example Chapter 8 Configuring a Simple Firewall Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 8-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 105
    integrated services fixed-configuration routers support a secure, affordable, and easy-to-use wireless LAN solution that combines mobility and flexibility with the enterprise-class features required by networking professionals. With a management system based on Cisco IOS software, the Cisco routers
  • Cisco 1841 | Configuration Guide - Page 106
    Extensible Authentication Protocol [PEAP]) can use the access point. Note This command is not supported on bridges. See the Cisco IOS Commands for Access Points and Bridges document for more details. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-2 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 107
    config-if)# rts threshold 2312 Router(config-if)# (Optional) Specifies the Request to Send (RTS) threshold or the number of times to send a request before determining the wireless LAN is unreachable. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-3
  • Cisco 1841 | Configuration Guide - Page 108
    . The example specifies integrated routing and bridging. Enters interface configuration mode. We want to set up bridging on the VLANs, so the example enters the VLAN interface configuration mode. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 109
    root station interface. Step 2 description string Example: Router(config-subif)# description Cisco open Router(config-subif)# Provides a description of the subinterface for the administrative user. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-5
  • Cisco 1841 | Configuration Guide - Page 110
    -key vlan 1 change 45 ! ! encryption vlan 1 mode ciphers tkip ! ssid cisco vlan 1 authentication open authentication network-eap eap_methods authentication key-management wpa ! ssid ciscowep vlan 2 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 111
    50 power local ofdm 30 channel 2462 station-role root ! interface Dot11Radio0.1 description Cisco Open encapsulation dot1Q 1 native no cdp enable bridge-group 1 bridge-group 10.0.2.1 255.255.255.0 OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-7
  • Cisco 1841 | Configuration Guide - Page 112
    Configuration Example ! interface BVI3 ip address 10.0.3.1 255.255.255.0 ! Chapter 9 Configuring a Wireless LAN Connection Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 9-8 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 113
    auth-port 1812 acct-port 1813 ! aaa authentication login eap_methods group rad_eap aaa session-id common ip subnet-zero ip cef ! vpdn enable vpdn-group 1 request-dialin protocol pppoe ! interface dialer 1 OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 114
    ip address 192.1.12.2 255.255.255.0 no ip directed-broadcast (default) ip nat outside ip access-group 103 in no cdp enable crypto ipsec client ezvpn ezvpnclient outside crypto map static-map 10-2 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 115
    list rtr-remote crypto map dynmap client configuration address respond crypto ipsec client ezvpn ezvpnclient connect auto group 2 key secret-password mode power local cck 50 power local ofdm 30 channel 2462 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 10-3
  • Cisco 1841 | Configuration Guide - Page 116
    Dot11Radio0.1 description Cisco Open encapsulation 168.1.1 255.255.255.0 no ip directed-broadcast (default) ip nat inside crypto ipsec client ezvpn ezvpnclient inside Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide Chapter 10 Sample Configuration OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 117
    transport preferred all transport output all line aux 0 transport preferred all transport output all line vty 0 4 password cisco123 transport preferred all transport input all transport output all ! OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 10-5
  • Cisco 1841 | Configuration Guide - Page 118
    Chapter 10 Sample Configuration 10-6 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 119
    PART 3 Configuring Additional Features and Troubleshooting
  • Cisco 1841 | Configuration Guide - Page 120
  • Cisco 1841 | Configuration Guide - Page 121
    , "Troubleshooting" The descriptions contained in these chapters do not describe all of your configuration or troubleshooting needs. See the appropriate Cisco IOS configuration guides and command references for additional details. Note To verify that a specific feature is compatible with your router
  • Cisco 1841 | Configuration Guide - Page 122
    Chapter 11 Additional Configuration Options 11-2 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 123
    selected security features that can be configured on the Cisco 1800 integrated services fixed-configuration routers. Note Individual router models may not support every feature described throughout this guide. Features not supported by a particular router are indicated whenever possible. This
  • Cisco 1841 | Configuration Guide - Page 124
    name followed by deny {source | source-wildcard | any} ip access-list extended name followed by {permit | deny} protocol {source-addr [source-mask] | any}{destination-addr [destination-mask] | any} 12-2 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 125
    configuration. For additional information about configuring a CBAC firewall, see the "Configuring Context-Based Access Control" section of the Cisco IOS Release 12.3 Security Configuration Guide. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 12
  • Cisco 1841 | Configuration Guide - Page 126
    Detection System" section of the Cisco IOS Release 12.3 Security Configuration Guide. Configuring VPNs A virtual private network (VPN) connection provides a secure connection between two networks over a public network such as the Internet. Cisco 1800 series fixed-configuration access routers support
  • Cisco 1841 | Configuration Guide - Page 127
    routers support dial-in (for remote management) and dial-out (for dial backup) capabilities. By allowing you to configure a backup modem line connection, the Cisco 1800 integrated services fixed-configuration routers provide protection against WAN downtime. Dial backup is inactive by default
  • Cisco 1841 | Configuration Guide - Page 128
    . Floating static routes are also encapsulation independent. Note When static routes are configured, the primary interface protocol must go down in order to activate the floating static route. 13-2 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 129
    routes. Perform these steps to configure the static and dynamic routes on your router, beginning in global configuration mode: Step 1 Command ip route prefix mask {ip protocol convergence times. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-3
  • Cisco 1841 | Configuration Guide - Page 130
    the primary route. 22.0.0.2 is the peer IP interface-number [ip-address]} [distance] address of the primary interface. Example: Router(config)# ip route 0.0.0.0 0.0.0.0 22.0.0.2 Router(config)# 13-4 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 131
    initial seconds} Example: Router(config)# dialer watch-list 2 ip 22.0.0.2 255.255.255.255 Router(config)# Assigns an IP address to the watch list. If the connection ), dial backup is not supported. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-5
  • Cisco 1841 | Configuration Guide - Page 132
    WAN interface, it is not supported across the auxiliary port. Configuration Example The following three examples show sample configurations for the three dial backup methods. Example 13-1 Configuring 13-6 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 133
    !Specifies interesting traffic to trigger backup ISDN traffic dialer-list 1 protocol ip permit Example 13-2 Configuring Dial Backup Using Floating Static Routes ! vpdn enable ! pppoe-client dial-pool-number 2 ! Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-7
  • Cisco 1841 | Configuration Guide - Page 134
    !Specifies interesting traffic to trigger backup ISDN traffic dialer-list 1 protocol ip permit Example 13-3 Configuring Dial Backup Using Dialer Watch ! vpdn enable ! vpdn client dial-pool-number 2 ! 13-8 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 135
    interface and floating static routes methods. Traffic of interest is not needed for the dialer watch to activate the backup ISDN line. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-9
  • Cisco 1841 | Configuration Guide - Page 136
    . For details on other switch types supported, see the Cisco IOS Dial Technologies Command Reference. interface type number Example: Enters configuration mode for the ISDN Basic Rate Interface (BRI). Router(config)# interface bri 0 Router(config-if)# Step 3 encapsulation encapsulation-type
  • Cisco 1841 | Configuration Guide - Page 137
    group. In the example, dialer-list 1 corresponds to dialer-group 1. For details about this command and additional parameters that can be set, see the Cisco IOS Dial Technologies Command Reference. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-11
  • Cisco 1841 | Configuration Guide - Page 138
    BRI0 description "to 836-dialbackup" no ip address encapsulation ppp dialer pool-member 1 isdn switch-type basic-net3 ! interface Dialer0 ip address 192.168.2.2 255.255.255.0 encapsulation ppp dialer pool 1 13-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 139
    type that you want to leverage. Step 3 encapsulation encapsulation-type Example: Router(config-if)# encapsulation ppp Router(config-if)# Sets the encapsulation type to PPP for the interface. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-13
  • Cisco 1841 | Configuration Guide - Page 140
    use the ip local pool global configuration command. Step 9 exit Example: Router(config-if)# exit Router(config)# Exits asynchronous interface configuration, and enters global configuration mode. 13-14 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 141
    . Note We recommend all for use with the dial backup feature. Step 5 exit Example: Router(config-line)# exit Router(config)# Exits line configuration mode, and enters global configuration mode. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 13-15
  • Cisco 1841 | Configuration Guide - Page 142
    Configuring Dial Backup and Remote Management Through a V.92 Modem Chapter 13 Configuring Dial Backup and Remote Management 13-16 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 143
    ready: • Chassis type and serial number • Maintenance agreement or warranty information • Type of software and version number • Date you received the hardware • Brief description of the problem OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 14-1
  • Cisco 1841 | Configuration Guide - Page 144
    description of the steps you have taken to isolate the problem ADSL Troubleshooting If you experience trouble with the ADSL connection, verify the following: • The ADSL line is connected and is using pins 3 and 4. For more information on the ADSL connection, see the hardware guide for your router
  • Cisco 1841 | Configuration Guide - Page 145
    ) and logical interfaces on the router. Example 14-2 shows sample command output. Example 14-2 Viewing the Status of Selected Interfaces Router# show interface atm 0 ATM0 is up, line protocol is up OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 14-3
  • Cisco 1841 | Configuration Guide - Page 146
    ATM interface has been disabled with the shutdown command or • The ATM line is down, possibly because the ADSL cable is disconnected or because the wrong type of cable is connected to the ATM port. 14-4 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 147
    , Current VCCs: 0 VCIs per VPI: 1024, Max. Datagram Size: 4528 PLIM Type: ADSL - 4608Kbps Upstream, DMT, TX clocking: LINE 0 input, 0 output, 0 IN fast, 0 OUT fast Avail bw = 4608 Config. is ACTIVE OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 14-5
  • Cisco 1841 | Configuration Guide - Page 148
    Cisco IOS Debug Command Reference. debug atm errors Command Use the debug atm errors command to display ATM errors. The no form of this command disables debugging output. Example 14-4 shows a sample output. 14-6 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 149
    14-6 Viewing ATM Interface Processor Events-Failure Router# debug atm events Router# 00:02:57: DSL: Send ADSL_OPEN command. 00:02:57: DSL: Using subfunction 0xA 00:02:57: DSL: Using subfunction 0xA OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide 14-7
  • Cisco 1841 | Configuration Guide - Page 150
    it only when network traffic is low, so that other system activities are not adversely affected. The command syntax is: debug atm packet [interface atm number [vcd debug atm packet command output. 14-8 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 151
    Methods Several methods are available for upgrading software on the Cisco 1800 series integrated services fixed-configuration routers, including: • Copy the new software image to flash memory over the LAN or WAN while the existing Cisco IOS software image is operating. • Copy the new software image
  • Cisco 1841 | Configuration Guide - Page 152
    of bit 8 in the configuration register), enter the config-register 0x01 command from privileged EXEC mode. • Break enabled-Bit 8 is set to 0. • Break disabled (default setting)-Bit 8 is set to 1. 14-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 153
    password, it is not displayed in the show startup-config command output. Complete the password recovery process by performing the steps in the following "Reset the Password and Save Your Changes" section. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 154
    to the configuration being used before you recovered the lost enable password, do not save the configuration changes before rebooting the router. Step 4 Reboot the router, and enter the recovered password. 14-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL
  • Cisco 1841 | Configuration Guide - Page 155
    Chapter 14 Troubleshooting Managing Your Router with SDM Managing Your Router with SDM The Cisco SDM tool is a free software configuration utility, supporting the Cisco 1800 series integrated services fixed-configuration routers. It includes a web-based GUI that offers the following features: •
  • Cisco 1841 | Configuration Guide - Page 156
    Managing Your Router with SDM Chapter 14 Troubleshooting 14-14 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 157
    PART 4 Reference Information
  • Cisco 1841 | Configuration Guide - Page 158
  • Cisco 1841 | Configuration Guide - Page 159
    : • Configuring the Router from a PC • Understanding Command Modes • Getting Help • Enable Secret Passwords and Enable Passwords • Entering Global Configuration Mode • Using Commands • Saving Configuration Changes • Summary • Where to Go Next If you are already familiar with Cisco IOS software
  • Cisco 1841 | Configuration Guide - Page 160
    can see a list of available commands for a particular mode by entering a question mark (?) at the prompt. For a description of each command, including syntax, see the Cisco IOS 12.3 documentation set. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-2 OL-6426
  • Cisco 1841 | Configuration Guide - Page 161
    the exit command. and serial interfaces or • To exit to privileged subinterfaces. EXEC mode, enter the end command, or press Ctrl-Z. • To enter subinterface configuration mode, specify a subinterface with the interface command. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed
  • Cisco 1841 | Configuration Guide - Page 162
    parameters and statistics exception exception information ... To redisplay a command you previously entered, press the Up Arrow key. You can continue to press the Up Arrow key for more commands. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 163
    to your router configuration. Enter the configure terminal command to enter global configuration mode: Router# configure terminal Router(config)# You can now make changes to your router configuration. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-5
  • Cisco 1841 | Configuration Guide - Page 164
    . You entered the command Enter a question mark (?) to incorrectly. The error occurred display all of the commands that where the caret mark (^) appears. are available in this command mode. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 165
    they are not lost if there is a system reload or power outage. Where to Go Next To configure your router, go to Chapter 1, "Basic Router Configuration," and Chapter 2, "Sample Network Deployments." OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-7
  • Cisco 1841 | Configuration Guide - Page 166
    Where to Go Next Appendix A Cisco IOS Software Basic Skills Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide A-8 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 167
    IP (Phase 2) • QoS • Access Lists ADSL is a technology that allows both data and voice to be transmitted over the same setup), makes ADSL ideal for Internet and intranet surfing, video on demand, and remote LAN access. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 168
    setup), makes SHDSL ideal for LAN access. Network Protocols Network protocols enable the network to pass data from its source to a specific destination over LAN or WAN Routing Protocol (Enhanced IGRP) Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-2 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 169
    . Best route is one with lowest hop count. By default, every 30 seconds. You can reconfigure this value and also Cisco IOS Release 12.3 documentation set. Enhanced IGRP Enhanced IGRP is an advanced Cisco Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-3
  • Cisco 1841 | Configuration Guide - Page 170
    to any single attack. • The corporate office router controls the frequency and timing of the authentication attempts. Note We recommend using CHAP because it is the more secure of the two protocols. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 171
    -configuration routers support the Terminal Access Controller Access Control System Plus (TACACS+) protocol through Telnet. TACACS+ is a Cisco proprietary authentication protocol that provides remote access authentication and related network security services, such as event logging. User passwords
  • Cisco 1841 | Configuration Guide - Page 172
    the cells at the receiver. Cisco routers support the AAL5 format, which provides a streamlined data transport service that functions with less overhead to be used in a dialer pool. While the primary Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 173
    in the routing table. Because the backup interface command is dependent on the router's identifying that an interface is physically down, it router connecting the inside network to the outside domain. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 174
    for the manual configuration of individual computers, printers, and shared file systems • Preventing the simultaneous use of the same IP address by two clients • Allowing configuration from a central site Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-8 OL
  • Cisco 1841 | Configuration Guide - Page 175
    refers to the capability of a network to provide better service on extended access-list classification. This service classes to be established using existing network queuing mechanisms (such as class-based weighted Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-9
  • Cisco 1841 | Configuration Guide - Page 176
    priority queuing allows delay-sensitive data to be dequeued and sent first (before packets in other queues are dequeued), giving delay-sensitive data preferential treatment over other traffic. B-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 177
    and static extended access lists, you can approximate session filtering by using the established keyword with the permit command. The established keyword list applied permanently to an interface. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide B-11
  • Cisco 1841 | Configuration Guide - Page 178
    Access Lists Appendix B Concepts B-12 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 179
    mode. If an enable password is configured, you must enter the enable command and the enable password to enter privileged EXEC mode. Enters global configuration mode. Resets the configuration register. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-1
  • Cisco 1841 | Configuration Guide - Page 180
    in ROM monitor and does not boot the Cisco IOS software. As long as the configuration value is 0x0, you must manually boot the operating system from the console. See the boot command in the "Command Descriptions" section in this appendix. After the router reboots, it is in ROM monitor mode. The
  • Cisco 1841 | Configuration Guide - Page 181
    Variables This section describes the system variables that can be set in ROM monitor mode and that are used during the TFTP download process. There are both required variables and optional variables. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-3
  • Cisco 1841 | Configuration Guide - Page 182
    download process; for example: • Initializing interface. • Interface link state up. • ARPing for 1.4.0.1 • ARP reply for 1.4.0.1 received. MAC address 00:00:0c:07:ac:01 Command TFTP_VERBOSE= setting Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-4 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 183
    : Do you wish to continue? y/n: [n]:y The router begins to download the new file. If you mistakenly entered yes, you can enter Ctrl-C or Break to stop the transfer before the flash memory is erased. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-5
  • Cisco 1841 | Configuration Guide - Page 184
    Configuration Register Manually To change the virtual configuration register from the ROM monitor manually, enter the confreg command boot helper image 2-15 = boot system [0]: 0 Configuration Summary Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-6 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 185
    executed. destination_ Name of the system image file or the system configuration file. In order for the router to file_name recognize it, the name of the configuration file must be router_confg. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-7
  • Cisco 1841 | Configuration Guide - Page 186
    fffffff DBCR0 = 0xffffffff DBCR1 = 0xffffffff DBCR2 = 0xffffffff ffffffff IAC2 = 0xffffffff DAC1 = 0xffffffff MCSRR1 = 0xffffffff 03af88 MSR = 0x00029220 • frame-Displays an individual stack frame. Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide C-8 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 187
    : rommon 8> sysret System Return Info: count: router will boot the Cisco IOS image in flash memory. The configuration register will change to 0x2101 the next time the router is reset or power cycled. OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide
  • Cisco 1841 | Configuration Guide - Page 188
    Exiting the ROM Monitor Appendix C ROM Monitor C-10 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 189
    - Description Reserved Unassigned Remote job entry Echo Discard Active users Daytime Netstat Quote of the day Character generator File Transfer Protocol (data) File Transfer Protocol Any private dial-out service Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide D-1
  • Cisco 1841 | Configuration Guide - Page 190
    UNIX remote execution (control) TCP-UNIX remote login UDP-UNIX broadcast name service TCP-UNIX remote shell UDP-system log UNIX line printer remote spooling Routing Information Protocol Time server Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide D-2 OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 191
    , user 11 authentication protocols See PPP authentication protocols AutoSecure configuring 2 B backup interfaces for dial backup activation 1 b command 3 b flash command 3 boot commands 3 bridging OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide IN-1
  • Cisco 1841 | Configuration Guide - Page 192
    CHAP 4, 4 Cisco IOS firewall IDS 4 Cisco IOS queues 10 class-based weighted fair queuing See CBWFQ command conventions 13 command-line access configuration example 12 command-line access to router, configuring 10 command modes 2 to 4 commands abbreviating 6 access list 2 ATM troubleshooting 3 to
  • Cisco 1841 | Configuration Guide - Page 193
    remote configuration 9 verify configuration 10 EIGRP configuration example 16 configuring 15 configuring for IP 15 to 16 overview 2, 3 enable password recovering 12 setting 5 enable secret password OL-6426-02 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide IN-3
  • Cisco 1841 | Configuration Guide - Page 194
    4 help command 3 help with commands 4 hop count, defined 3 I i command 3 IGMP snooping 10 IKE policy configuring 3 inspection rules applying to interfaces 4 configuring 3 interface configuration mode 3 IN-4 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426
  • Cisco 1841 | Configuration Guide - Page 195
    configuring with PPPoA 9 configuring with PPPoE 1, 7 overview 7 to 8 See also Easy IP (Phase 1) NCP 4 network address translation See NAT network configuration, preparing for 4 Network Control Protocols See NCP Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide IN
  • Cisco 1841 | Configuration Guide - Page 196
    types 6 overview 6 Q QoS parameters 9 to 10 queues, ATM 10 R radio station subinterfaces configuring 5 related documents 14 remote access VPN with Easy VPN and IPSec tunnel 1 remote management IN-6 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • Cisco 1841 | Configuration Guide - Page 197
    Timesaver, defined 13 transform set configuring 6 translation See NAT triggered extensions to RIP 3 troubleshooting commands, ATM 3 to 9 U UDP port numbers, currently assigned 1 to 2 undoing commands 6 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide IN-7
  • Cisco 1841 | Configuration Guide - Page 198
    ) 8 VPDN 2 VPNs configuration example 10 configuration tasks 2, 3 configuring 1, 4 W WAN interfaces configuring 7, 3, 5 wireless LAN configuration example 6 configuration tasks 2 X xmodem command 7 IN-8 Cisco 1800 Series Integrated Services Routers (Fixed) Software Configuration Guide OL-6426-02
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
Corporate Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 526-4100
Cisco 1800 Series Integrated Services
Routers (Fixed) Software Configuration
Guide
Text Part Number: OL-6426-02