Options
Think I need to configure my DNS server correctly, what do you think? Config in post.
inscom.brigade
Member Posts: 400 ■■■□□□□□□□
in CCNA & CCENT
I have a 871w:
It is connected directly behind my Modem that I have Comcast service connected to.
At CLI:
I can ping 4.2.2.2, 75.75.76.76, and many other ip's.
At cmd:
ipconfig /release | /renew,
I reciev a ip, and a gatway address.
I think I have DHCP, NAT, and PAT configured correctly, but I am pretty sure my trouble is in the DNS server config.
Maybe 75.75.76.76 is not correct?
Do you see what I need to add or omit?
Thanks
Router#show running-config
Building configuration...
Current configuration : 2466 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
clock timezone EST -5
clock summer-time EDT recurring
!
!
dot11 syslog
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 10.10.10.1 10.10.10.5
ip dhcp excluded-address 192.168.100.1 192.168.100.8
!
ip dhcp pool 871w_Comcast
network 192.168.100.0 255.255.255.0
default-router 192.168.100.2
dns-server 75.75.75.75 75.75.76.76
!
!
no ip bootp server
no ip domain lookup
ip domain name A_Vilar_Technology
ip name-server 75.75.76.76
ip name-server 75.75.75.75
ip name-server 10.10.10.1
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
!
bridge irb
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
description comcast wan outside
ip address dhcp client-id FastEthernet4
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
ip route-cache flow
duplex auto
speed auto
!
interface Dot11Radio0
no ip address
shutdown
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Vlan1
ip address 192.168.100.2 255.255.255.0
ip nat inside
ip virtual-reassembly
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip dns name-list 1 permit MSD1.MD.COMCAST.COM
ip dns server
ip dns primary HSD1.MD.COMCAST.NET soa HSD1.MD.COMCAST.NET word 21600 900 7776000 86400
ip nat inside source list 2 interface FastEthernet4 overload
!
ip access-list standard NAT.ADDRESS
deny 192.168.100.66
permit 192.168.0.0 0.0.255.255
!
access-list 2 permit 192.168.0.0 0.0.0.255
!
!
!
!
control-plane
!
alias exec s show ip interface brief
alias exec c show cdp neighbors
!
line con 0
exec-timeout 0 0
password 7 13061E010803
logging synchronous
login
no modem enable
transport output telnet
line aux 0
exec-timeout 0 0
password 7 104D000A0618
logging synchronous
login local
transport output telnet
line vty 0 4
exec-timeout 0 0
password 7 02050D480809
logging synchronous
login
!
scheduler max-task-time 5000
end
Router#
It is connected directly behind my Modem that I have Comcast service connected to.
At CLI:
I can ping 4.2.2.2, 75.75.76.76, and many other ip's.
At cmd:
ipconfig /release | /renew,
I reciev a ip, and a gatway address.
I think I have DHCP, NAT, and PAT configured correctly, but I am pretty sure my trouble is in the DNS server config.
Maybe 75.75.76.76 is not correct?
Do you see what I need to add or omit?
Thanks
Router#show running-config
Building configuration...
Current configuration : 2466 bytes
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
clock timezone EST -5
clock summer-time EDT recurring
!
!
dot11 syslog
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 10.10.10.1 10.10.10.5
ip dhcp excluded-address 192.168.100.1 192.168.100.8
!
ip dhcp pool 871w_Comcast
network 192.168.100.0 255.255.255.0
default-router 192.168.100.2
dns-server 75.75.75.75 75.75.76.76
!
!
no ip bootp server
no ip domain lookup
ip domain name A_Vilar_Technology
ip name-server 75.75.76.76
ip name-server 75.75.75.75
ip name-server 10.10.10.1
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
!
multilink bundle-name authenticated
!
!
!
!
archive
log config
hidekeys
!
!
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh authentication-retries 2
!
bridge irb
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
description comcast wan outside
ip address dhcp client-id FastEthernet4
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
ip route-cache flow
duplex auto
speed auto
!
interface Dot11Radio0
no ip address
shutdown
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Vlan1
ip address 192.168.100.2 255.255.255.0
ip nat inside
ip virtual-reassembly
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
ip dns name-list 1 permit MSD1.MD.COMCAST.COM
ip dns server
ip dns primary HSD1.MD.COMCAST.NET soa HSD1.MD.COMCAST.NET word 21600 900 7776000 86400
ip nat inside source list 2 interface FastEthernet4 overload
!
ip access-list standard NAT.ADDRESS
deny 192.168.100.66
permit 192.168.0.0 0.0.255.255
!
access-list 2 permit 192.168.0.0 0.0.0.255
!
!
!
!
control-plane
!
alias exec s show ip interface brief
alias exec c show cdp neighbors
!
line con 0
exec-timeout 0 0
password 7 13061E010803
logging synchronous
login
no modem enable
transport output telnet
line aux 0
exec-timeout 0 0
password 7 104D000A0618
logging synchronous
login local
transport output telnet
line vty 0 4
exec-timeout 0 0
password 7 02050D480809
logging synchronous
login
!
scheduler max-task-time 5000
end
Router#
Comments
-
Options
Legacy User
Unregistered / Not Logged In Posts: 0 ■□□□□□□□□□
For starters what issue are you having? -
Optionsinscom.brigade
Member Posts: 400 ■■■□□□□□□□
I can ping dns servers and also ip address, when I am telnet into my router.
I cannot get an internet connection.
I have 3 plus days on this,
now I am going to begin tring to do it with SDM. -
OptionsLegacy User
Unregistered / Not Logged In Posts: 0 ■□□□□□□□□□
Can you ping a dns name like yahoo.com. What do you see when you do the cmd
sh ip nat translation -
Options
networker050184
Mod Posts: 11,962 Mod
Don't give up that easy man!
Where are your hosts connected to on the router?An expert is a man who has made all the mistakes which can be made. -
OptionsLegacy User
Unregistered / Not Logged In Posts: 0 ■□□□□□□□□□
Good question I see fa0/4 going to the outside but nothing for internal. I don't see an ip route going out try
ip route 0.0.0.0 0.0.0.0 fa0/4 -
Optionsnetworker050184
Mod Posts: 11,962 Mod
When you use dhcp on an interface as on f4 a default route is automatically generated. So, no need to manually define one here.
Also wanted to add a default route should never be pointed to a multiaccess interface without a next hop defined. The router will send an ARP request for every destination you try to reach rather than just the next hop. This can create extremely large ARP tables that can tip the router over and decrease performance.An expert is a man who has made all the mistakes which can be made. -
Optionsinscom.brigade
Member Posts: 400 ■■■□□□□□□□
I am finding all kinds messed up stuff!
Boy this is a different animal, whew,,,
example: show vlan, is show vlan-switch
you cannot do int fa0/0 | ip address 192.168.1.1 255.255.255.0
you must do int vlan 1 | ip address 192.168.1.1 255.255.255.0 |
exit
int fa 0 switchport access vlan 1,
well anyway I have not given in to the SDM.
I do not think it will be complete tonight, but hopfully tomorrow
thanks for the encoragement, and pointers
It sure will be nice to learn this though, I bought it because it is supposed to have same/similer IOS configuration to the 18xx, 28xx?
