Question about Routers

1 Answer

How remove blocked icmp automatically

On interface
ip policy route-map test


after adding the above configuration am not able ping any of the public
IPs from same router and my isp are also telling there were not able to ping our IP

But am adding a default route on the router am able ping any IPs from the same router (0.0.0.0 0.0.0.0 isp1 gateway or isp2 or isp3 )

please give the solution for this i can't give default route on the router because my policy ISP1 want use ISP1 one likewise

sathya

Posted by on

  • sathia Feb 18, 2008

    we have three isp connected cisco 1841 router
    we have configured route-map and policy

    isp1 source ip use isp1 gateway
    isp2 source ip use isp2 gateway
    isp3 source ip use isp3 gateway


    configuration as follows
    ip access-list extended isp1
    permit ip X.X.X.X 0.0.0.15 any
    ip access-list extended isp2
    permit ip X.X.X.X 0.0.0.15 any
    ip access-list extended isp3
    permit ip X.X.X.X 0.0.0.15 any

    where x = isp ip subnet according isp ip

    route-map test permit 10
    match ip address isp1
    set ip next-hop x.x.x.x (next hop of isp1 IP)
    route-map test permit 20
    match ip address isp2
    set ip next-hop x.x.x.x (next hop of isp2 IP)

    route-map test permit 30
    match ip address isp3
    set ip next-hop x.x.x.x (next hop of isp3 IP)

    on interface
    ip policy route-map test


    after adding the above configuration am not able ping any of the public
    on interface
    ip policy route-map test


    after adding the above configuration am not able ping any of the public IPs from same router and my isp are also telling they were not able to ping our IP

    But am adding a default route on the router am able ping any IPs from the same router (0.0.0.0 0.0.0.0 isp1 gateway or isp2 or isp3 )

    please give the solution for this i can't give default route on the router because my policy ISP1 want use ISP1 one likewise

    sathya
    !

×

1 Answer

  • Level 2:

    An expert who has achieved level 2 by getting 100 points

    Hot-Shot:

    An expert who has answered 20 questions.

    Corporal:

    An expert that has over 10 points.

    Mayor:

    An expert whose answer got voted for 2 times.

  • Expert
  • 56 Answers

Type a "no" before the command of blocking command
e.g:if you want to cancel ip address10.10.10.10
you must type no ip address 10.10.10.10

Posted on Feb 18, 2008

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

I have a nortel tasman 1004 with 1 t1 port licensed. I need to have it reconfigured to a new location with new ip address and updated software if possible... I have tried to program it myself and keep...


Here are some commands to configure your tasman router :
tasman> sh configuration runn Please wait... (up to a minute)

terminal exit terminal qos exit qos module t1 1 clock_source line alarms thresholds exit thresholds exit alarms linemode exit linemode exit t1 module t1 2 clock_source line alarms thresholds exit thresholds exit alarms linemode exit linemode exit t1 interface ethernet 0 ip address 66.201.12.x 255.255.255.0 <------- for example ip multicast ospfrip2 icmp exit icmp qos exit qos vrrp_mode 0 exit ethernet interface ethernet 0.1 ip address 62.18.3.0 255.255.255.0 <------ for example ip multicast ospfrip2 icmp exit icmp qos exit qos vrrp_mode 0 exit ethernet interface ethernet 1 icmp exit icmp qos exit qos exit ethernet interface bundle MFR1 link t1 1 link t1 2 encapsulation frelay fr intf_type dte frame_size 4470 mfr fragment_size 4000 mfr seg_threshold 3999 lmi ansi exit lmi pvc 500 shaping cir 3072000 bcmax 3072000 bcmin 65536 no policing ip address 15.10.16.86 255.255.255.252 <------ WAN IP address to ISPicmp exit icmp red exit red exit pvc exit fr icmp exit icmp qos exit qos exit bundle aaa radius exit radius exit aaa snmp system_id tasman1 enable_trap exit enable_trap exit snmp hostname tasman telnet_banner exit telnet_banner event exit event system logging syslog exit syslog exit logging ip load_balance per_flowroute 0.0.0.0 0.0.0.0 15.10.16. 85 1exit ipfirewall globalalgsexit algsmax-connection-limit self 2048exit firewall firewall internetexit firewallfirewall corppolicy 1024 out permitexit policyexit firewallpolicy community_list exit community_list tasman>

Or use the link below:http://www.ipbalance.com/vendor/tasman-networks/454-mlfr-boundle-serivce-configuration-for-tasman1004-router.html

Dec 04, 2011 | Nortel Networks SR1004 4P ACTIVE T1 ...

Tip

HOW TO CONFIGURE STATIC ROUTING ON LINKSYS ROUTER


Show Routing Table button will open a chart displaying how data is routed through your LAN. Use the example below on how to configure a static routing:

STATIC ROUTING:

192.168.2.2 192.168.1.2
ROUTER C ----------------- ROUTER B ----------------- ROUTER A--------------PUBLIC IP ADDRESS
192.168.3.1 192.168.2.1 192.168.1.1

ROUTER A: Gateway Mode ROUTER C: Router Mode

1STENTRY 1ST ENTRY
DESIP: 192.168.2.0 DES IP: 192.168.2.0
SM: 24 SM: 24
DG: 192.168.1.2 DG: 192.168.2.2
HOP COUNT: 2 HOP COUNT: 3
INTERFACE: LAN INTERFACE: WAN


2NDENTRY 2ND ENTRY
DESIP: 192.168.3.0 DES IP: 192.168.1.0
SM: 24 SM: 24
DG: 192.168.1.2 DG: 192.168.2.2
HOP COUNT: 3 HOP COUNT: 2
INTERFACE: LAN INTERFACE: WAN


*********************************************************************************************************************************************************

ROUTER B: Router Mode


1STENTRY
DESIP: 192.168.1.0 WAN IP: 192.168.1.2
SM: 24 SM: 24
DG: 192.168.1.2 DG: 192.168.1.1
HOP COUNT: 2 DNS: DNS of 1st router
INTERFACE: WAN


2NDENTRY
DESIP: 192.168.3.0
SM: 24
DG: 192.168.2.2
HOP COUNT: 2
INTERFACE: LAN


*********************************************************************************************************************************************************
1stRouter must be set on Gateway Mode
2ndRouter must be on Router Mode
Use Static Routing
Select Entry
Destination IP = IP Subnet of the 1st Router
Subnet Mask = Subnet Mask of the 1st Router
Default Gateway = Interface IP
Hop Count = 1 + n
Interface= Connection to the 1st Router

Hope this help everyone.

on Jan 26, 2010 | Linksys Wireless-G WRT54G Router

1 Answer

I have configured Cisco ASA Firewall and I have given ICMP Inspect also But I cant able to ping the PC Kept in the DMZ from the Outside interface


HI,


  • · Please check the whether the security level for DMZ and outside interface, If DMZ is high security level. Please do the NAT configuration
  • · If it's having the same security level. Please issue the command "same-security-traffic permit inter-interface "in the global config mode.

Mar 01, 2011 | Routers

1 Answer

Router ar 410, wan port is eth0 with statick ip, public, and switch port 1 is on vlan2 with pirvate ip address 192.168.18.253. how tu add default route for acces to internet eth0 is connected on shdsl...


Does the DSL router have a model number? Also for the public address, can you give me the first couple of digits. I just want to make sure it is truly a public IP address and not a class A or B private address because only an ISP can hand out public addresses.
If the IP address on eth0 is indeed private, I am guessing you have to get into the DSL router and set a static route to point to let it know about both of the the ar410 networks on each interface. Keep in mind it might not understand VLSM so when you static route in the DSL to the 192 network you will only need to specify it as 192.168.18.0 as class C default mask is 24.

Mar 01, 2011 | Allied Telesyn AT AR410 Router

1 Answer

How do i forward a port i want to play call of duty black ops but i cant find an online game, the game website says to forward these ports, TCP [80] UDP [88, 3074, 22728, 33233] but i dont know how to...


http://www.netopia.com/support/hardware/technotes/NQG_025.html
Server List (Port Forwarding) NQG_025 With NAT enabled, the IP addresses of nodes on your LAN are private since they are hidden from the Internet. IP Servers let you pass specific types of network traffic through the Netopia router's NAT interfaces. Once configured, selected types of network traffic, such as FTP requests or HTTP (Web) connections, will be forwarded to a specific host or server behind the Netopia router. Please Note: From the LAN (Local Area Network), you will also be able to access the servers that are responding to requests from the internet, but only using the internal private IP address. Access via the public IP address is not supported from a local ethernet connection. If your ISP is routing you multiple public IP addresses, you can also configure the router to forward all ports in one public IP to a designated private IP address on your LAN via Easy PAT List entries. For those instructions, see Quick Guide NQG_024: IP Mapping (Address Forwarding).
Please Note: If your router is currently running Netopia Residential Firmware with a web "GUI" configuration menu, this technote is not applicable to you. Most 3300 Series Netopia Gateways can be upgraded to Enterprise level firmware. Click Here! to purchase the upgrade key.
Related documents: NQG_039 NAT and the Basic Firewall
Firmware References:
  • v8.2 R1 (and up) - 3300 Enterprise Series
  • v5.3.7 (and up) - 4000 Series
  • v4.8.2 (and up) - R-Series

Before You Start
Telnet into the Netopia router's Main Menu at 192.168.1.1 (if using the default IP setting). If your network has a different IP addressing scheme, modify this accordingly. Click Here! for instructions on using telnet and Hyperterminal (serial connection).
Login with the user name and password. The Superuser login is required to save changes. If you are unsure of this, contact your network administrator.
Don't forget to press the Enter key to save any entries. Hitting the back space, delete or tab without first hitting enter will undo any changes.
The Esc key will take you back towards the main menu screen.
Once you have completed your configuration, you should reboot the Netopia to save and apply your changes.

home_telnet.gif
The Netopia Main Menu Interface

Server List Configuration

  1. From the Main Menu of router console screens, go to Quick Menus, and select Network Address Translation.
  2. Select Show/Change Server List.
  3. Select Easy-Servers.
  4. From the Show/Change NAT Server List screen, select Add Server.
  5. Select Service and the service and port you want to allow. If your service and port are not available in the pull-down menu, select Other. Selecting Other will allow you to enter a specific service port or a range of ports since fields are provided for both a First Port Number and a Last Port Number. To allow a specific service port, the First Port Number and Last Port Number should be the same. Select Okay.
  6. Next, enter the Server Private IP Address, or the private IP address of the host/server you are forwarding the service to, and the Public IP Address you want to associate with the same host/server. This value can be left set to 0.0.0.0 if you are using the WAN IP as the Public IP address. Note: If your ISP is routing you multiple static IP addresses, other then the one used for Internet access, you may create more than one server for specific service as long as all servers have a different Public IP Address specified. For example, with two web servers on your LAN you would need to create two Server List entries for TCP 80 (www-http). Since each specific port (service) can only be mapped once using any given Public IP Address, a distinct public address must be used for each TCP 80 server list entry. It is not necessary for you to specify more than one Local WAN IP Address or Public IP Address in your router's configuration. As long as you are connecting to your ISP via a public IP address used for NAT, they are responsible for routing all other IP addresses via that connection.

Conclusion
You have now configured your router for TCP/UDP port forwarding. If you have a switched connection (ISDN or Analog), you will need to either disconnect and reconnect your Internet connection, or restart your router for the Nat Server List changes to take effect. If you wish to filter traffic for your static IP mappings, please see the following Netopia Technote:
NQG_039: NAT and the Basic Firewall

Nov 12, 2010 | Netopia CAYMAN 3387W-ENT CABLE/DSL...

1 Answer

Cicso router 1841 not connecting to the internet


When using Public IP addresses on one interface, usually facing your ISP, and using Private IP addresses (AKA RFC 1918) on another interface, usually facing your LAN, one needs to utilize network address translation (NAT) in order to connect LAN computing resources to the Internet.
Cisco has a fantastic article on how to perform the necessary procedures on their web site.
http://www.cisco.com/en/US/tech/tk648/tk361/technologies_configuration_example09186a0080093f8e.shtml

Sep 06, 2008 | Cisco (1841) Router (cisco1841)

2 Answers

Troubleshooting


Telnet is an application layer protocol. If you can telnet to the other router, then you do not have any network issues. However, the fact that you can telnet but not ping suggests that icmp messages have been blocked in the configuration of one or both routers. This is a security feature, because attacks can be launched via icmp messages.

Apr 18, 2008 | Routers

1 Answer

Automatically ping and trace disabled after PBR


please add me on yahoo messenger or mail me , let me know when ur online , my id is samrat101@yahoo.com and we will be able to resolve it sooner,,, mails takes time.

Samrat

Feb 20, 2008 | Routers

1 Answer

Route-map policy block the ICMP


honestly, I dont think anyone here will know how to handle this problem. Try to show this problem to a trained professional.

Feb 18, 2008 | Routers

1 Answer

ICMP blocked automatically


return, cut this configuration, but put route the her isp´s.

You can ping after this?

Can´t ping you has other problem.

Good luck!

Feb 18, 2008 | Routers

Not finding what you are looking for?
Routers Logo

Related Topics:

297 people viewed this question

Ask a Question

Usually answered in minutes!

Top Routers Experts

Les Dickinson
Les Dickinson

Level 3 Expert

18297 Answers

Mike

Level 3 Expert

4331 Answers

Brian Sullivan
Brian Sullivan

Level 3 Expert

27725 Answers

Are you a Router Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...