LinuxQuestions.org - Cisco 831 Cisco Router and Cable Modem

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Cisco 831 Cisco Router and Cable Modem (https://www.linuxquestions.org/questions/linux-networking-3/cisco-831-cisco-router-and-cable-modem-652615/)

Cisco 831 Cisco Router and Cable Modem

A friend just purchased a Cisco 831 router and wants to configure his router to grab a ip address from his cable modem and set his lan ports on his router to DHCP. Can someone give me a config file that can do that. thanks

Give this a try,

http://articles.techrepublic.com.com...1-6102399.html

and let me know what stumps you from there...

don't forget to post your configs. Also, if your IOS is not 'advipservicesk9' or something along those lines, your vlan support may be limited...you should still be able to pull the dhcp configs from this.

here, looks like you've helped plenty of other people...

this router has a bunch of stuff configured, inc port-forwarding to vncserver and http server (the ip nat source static lines), a vpn in (vpdn lines), the interfaces bridged together, etc., let me know if this is too much...

Code:

no service pad

service timestamps debug datetime msec

service timestamps log datetime msec

service password-encryption

!

hostname yourhost

!

boot-start-marker

boot-end-marker

!

enable secret 5 md5encryptedpassword

!

aaa new-model

!

!

aaa authentication ppp default local

!

!

aaa session-id common

ip cef

!

!

no ip dhcp use vrf connected

ip dhcp excluded-address 172.17.5.170 172.17.5.174

!

ip dhcp pool yourpool

  import all

  network networkaddressofdhcppool masktothispool

  default-router defaultgateway

!

!

ip domain name yourdomain.com

ip ssh authentication-retries 2

!

multilink bundle-name authenticated

vpdn enable

!

vpdn-group vpngroupname

! Default L2TP VPDN group

! Default PPTP VPDN group

 accept-dialin

  protocol any

  virtual-template 1

 l2tp tunnel password 7

!

!

!

!

!

username username privilege 15 password 7 cisco7encryptedpassword

username username2 privilege 15 password 7 cisco7encryptedpassword

username vpnuser password 7 7encpassword

!

!

!

bridge irb

!

!

!

interface FastEthernet0

 switchport access vlan 10

 spanning-tree portfast

!

interface FastEthernet1

 switchport access vlan 10

 spanning-tree portfast

!

interface FastEthernet2

 switchport access vlan 10

 spanning-tree portfast

!

interface FastEthernet3

 switchport access vlan 10

 spanning-tree portfast

!

interface FastEthernet4

 ip address dhcp

 ip nat outside

 ip virtual-reassembly

 ip tcp adjust-mss 1460

 duplex auto

 speed auto

!

interface Virtual-Template1

 ip unnumbered BVI10

 peer default ip address dhcp-pool poolforvpn

 ppp encrypt mppe auto required

 ppp authentication ms-chap ms-chap-v2 eap chap pap

!

interface Dot11Radio0

 no ip address

 !

 encryption vlan 10 mode ciphers tkip

 !

 ssid SuperCoffee

    vlan 10

    authentication open

    authentication key-management wpa

    guest-mode

    wpa-psk ascii 7 cisco7encpasswordforwireless

 !

 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0

 station-role root

 no dot11 extension aironet

 no cdp enable

!

interface Dot11Radio0.10

 encapsulation dot1Q 10

 no cdp enable

 bridge-group 10

 bridge-group 10 subscriber-loop-control

 bridge-group 10 spanning-disabled

 bridge-group 10 block-unknown-source

 no bridge-group 10 source-learning

 no bridge-group 10 unicast-flooding

!

interface Vlan1

 no ip address

!

interface Vlan10

 no ip address

 ip nat inside

 ip virtual-reassembly

 bridge-group 10

 bridge-group 10 spanning-disabled

!

interface BVI10

 ip address bridgegroupSVIaddress mask

 ip nat inside

 ip virtual-reassembly

!

ip local pool vpnpool 192.168.1.1 192.168.1.10

ip route 0.0.0.0 0.0.0.0 dhcp

!

!

no ip http server

no ip http secure-server

ip nat inside source list 1 interface FastEthernet4 overload

ip nat inside source static tcp serverip 5901 interface FastEthernet4 5901

ip nat inside source static udp serverip 5901 interface FastEthernet4 5901

ip nat inside source static tcp serverip 80 interface FastEthernet4 80

!

access-list 1 permit networkaddress wildcard(inverse)masktoyournetworkaddr

no cdp run

!

!

!

!

control-plane

!

bridge 10 route ip

!

line con 0

 exec-timeout 5 0

 logging synchronous

 no modem enable

line aux 0

line vty 0 4

 exec-timeout 5 0

 password 7 cisco7encpasswd

 logging synchronous

 transport input ssh

!

scheduler max-task-time 5000

end



host#

thanks for you help but I was able to figure it out.

Here is my friends layout:

PHP Code:




Internet
   |
   |
   |
Cable Modem
   |
   |
   |
  (E1)
Cisco 831 
  (FA2-4)
   |
   | 
   |
CentOS(Firewall/Proxy) ------------------RADIUS-------Wireless
   |
   |
   |
  LAN
   |
   |
   |
Office PC's

Here is the running-config of the Cisco 831

PHP Code:




Current configuration : 1375 bytes
!
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname DTMFP
!
enable secret 5 $1$UZQ2$901W0XeF2xN/yuWa6lkvr0
enable password mindyourdamnbizz
!
username DTMFP password 0 mindyourdamnbizz
username CRWS_Shashi privilege 15 password 0 $1$W1fA$o1oSEpa23380795
ip subnet-zero
ip name-server 4.2.2.5
ip name-server 4.2.2.6
!
ip dhcp pool DTMFP
   import all
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.1 
   dns-server 4.2.2.5 
   lease infinite
!
ip urlfilter alert
ip audit notify log
ip audit po max-events 100
!
! 
!
!
!
!
interface Ethernet0
 description CRWS Generated text. Please do not delete this:192.168.1.1-255.255.255.0
 ip address 192.168.1.1 255.255.255.0
 ip nat inside
 no cdp enable
 hold-queue 32 in
 hold-queue 100 out
!
interface Ethernet1
 description Internet
 ip address dhcp client-id Ethernet1
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 ip nat outside
 no ip mroute-cache
 duplex auto
 no cdp enable
!
ip nat inside source list 1 interface Ethernet1 overload
ip classless
ip http server
no ip http secure-server
!
!
access-list 1 permit 192.168.1.0 0.0.0.255
no cdp run
!
line con 0
 no modem enable
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
 exec-timeout 120 0
 password mindyourdamnbizz
 login local
 length 0
!
scheduler max-task-time 5000
end

Works like a champ. I this help.