--begin ciscomoderator note-- The following post has been edited to remove potentially confidential information. Please refrain from posting confidential information on the site to reduce security risks to your network. -- end ciscomoderator note --
I have a 1720 router which I use for VPN and internet use. The vpn works fine and so does the internet, however users cannot open internet pages. HTTPS works fine so does FTP but 90% of HTTP does not.
I have included my config so any help would be much appreciated.
Current configuration : 3918 bytes
service timestamps debug uptime
service timestamps log uptime
hostname --moderator edit-- Router
logging buffered 16000 debugging
no logging monitor
enable secret 5 --moderator edit--
memory-size iomem 15
clock timezone London 0
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
no ip domain-lookup
ip dhcp excluded-address 192.168.1.1
ip dhcp pool local
network 192.168.0.0 255.255.0.0
dns-server --moderator edit-- 10.10.10.9
no ip bootp server
ip inspect name IOSFirewall cuseeme timeout 3600
ip inspect name IOSFirewall ftp timeout 3600
ip inspect name IOSFirewall http timeout 3600
ip inspect name IOSFirewall smtp timeout 3600
ip inspect name IOSFirewall tftp timeout 3600
ip inspect name IOSFirewall udp timeout 3600
ip inspect name IOSFirewall tcp timeout 3600
ip audit notify log
ip audit po max-events 100
crypto isakmp policy 1
crypto isakmp policy 2
crypto isakmp key ******** address IP address no-xauth
I have the same problem which is actually with you. I have installed the router 1710. If you know how to configure it, please let me know. I got another problem in this environment. I cannot receive some of the e-mail from Internet. Do you have a same problem?
I have had a similar problem with the emails. If I recall correctly it was related to the fact that microsoft uses esmtp and since you are inspecting smtp, some esmtp commands will be invalid and discarded. Try to remove the line inspect smtp.
I am having the same trouble. We cannot send/receive mail with a small number of domains. We discovered that the trouble is related to a NAT statement on the router, - 'IP nat inside source 192.xxx.xxx.xxx 200.xxx.xxx.xxx' (not real numbers).
If the previous message concerning inspecting smtp doesn't answer your question, maybe it NAT related. I'd do more than point you in the direction, however, I still haven't worked out a solution.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :