Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Router Config Assistance (Stub Network on Static WAN)

Ok, I will be the first to tell you that I do not have "Real World" experience with Cisco routers

I did take CCNA 1-4 in school several years ago - and honestly, forget most of it due to no use.

So I'm one of those "do more damage kind of people"

Tomorrow (August 8th,2008) - I will be putting the router to test for a few hours. This test will be

to make sure outbound connectivity is there and hopefully finding out if exchange still works and PPTP to

windows still works. Our IP's have changed with this service - meaning I have one months grace before

switch services.

Concerns:

VPN -> I can connect to the VPN Server and obtain an IP, no gateway displayed (no connectivity)

VPN -> Not sure if you can set VPN Security Policies (ACL's) per user. See additional notes in next section

Servers --> Are things setup to allow connections properly with NAT to our server and their services.

DHCP --> do I need to forward DHCP, since it's handled by Windows Server

Any advice would be great.

See attached for Running Config

-----------------------

Internal Servers

Windows 2003 Small Business Server IP: 10.0.0.15 / VPN on 10.0.0.19 I believe!

AD configured as mydomain.local

DNS requests are forwarded to ISP

SBS Exchange -using Webmail with SSL certificate (Port:443)

SBS VPN (PPTP) being used as VPN solution for staff.

Additional Notes:

- Replacing Cisco 800 router owned by ISP, no configurable options with 871w that we purchased.

- Changed DSL package to Static, 5-IP , no PPP

- We are replacing a SOHO Watchguard with the Cisco 871w because it's dying

- Watchguard has 5 vpn licenses, only 1 in use with external client who gets the ip 10.0.0.249. The

client connects, this allows us to send invoices/purchase orders to their line printer.

* This functionality needs to be setup on the Cisco 871w. I would like to see 1 way communication - so client

could not access local resources.

--------------------------------------------------------------------

External DNS

* all addresses are examples

IN A <isp IP>

www IN A <isp IP>

ftp IN A <isp IP>

remote IN A 192.168.100.230

remote1 IN A 172.16.0.139 ** Added to point to 1 new static IP

webmail IN A 192.168.100.230

IN MX 10 remote.domainname.com.

IN MX 15 remote1.domainname.com. ** Added

pop3 IN CNAME <ISP hostname>

smtp IN CNAME remote.domainname.com.

Additional switch will be: webmail will point to 172.16.0.140

-----------------------------------------

222
Views
0
Helpful
0
Replies