I configured VLAN 102 as the outside network and assigned FA 0 to it. I configured VLAN 1 as the inside network and assigned the rest of the ports to it. I configured "ip nat outside" on VLAN 102. I configured "IP nat inside" on VLAN 1. I configured nat with "ip nat inside source list 1 int vlan 102 overload". I configured VLAN 102 to get it's ip address from DHCP. I configured a default route using "ip route 0.0.0.0 0.0.0.0 dhcp".
So far, it's working. The next step is to configure the ip inspect firewall. The problem i'm running into right now is that when i place an acl on vlan 102 inbound, it prevents vlan 102 from getting an IP address from dhcp.
What is the best way to allow the dhcp offer to come in? Since vlan 102 doesn't have an IP address yet, I don't know how to craft the acl entry. I also don't want to compromise the LAN by allowing dhcp offers to hit all the hosts on the inside.
Re: Configure 877W router as firewall with DHCP assigned WAN IP
The fact that my WAN IP is assigned dynamically is really messing it up form.
I'm having a hard time configuring the acl on the outside interface to allow incoming dial-up vpn connections. The problem is that, like the dhcp problem, I don't know what the WAN IP address is so I can't create an acl entry for it.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...