Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1897
Views
0
Helpful
15
Replies

Simple tunneling not working - whats wrong?

amarranca
Level 1
Level 1

‎03-23-2006 01:02 PM - edited ‎03-03-2019 12:09 PM

Well, I'm trying to make a tunnel between a WiFi hotspot ADSL router and another cisco router. I try to open the tunnel but I receive "% Connection refused by remote host"

Below is my config, where have I gone wrong?

-------------------------------------

*** WiFi ADSL Cisco 827 Router ***

interface Tunnel99

description *** tunnel to 831 router ***

no ip address

tunnel source BVI1

tunnel destination X.X.17.103

!

interface Ethernet0

description outbound for WiFi users

ip address 10.0.10.1 255.255.255.0

ip nat inside

no cdp enable

hold-queue 100 out

!

interface BVI1

ip address X.X.19.130 255.255.255.224

ip nat outside

!

ip nat inside source list 102 interface BVI1 overload

ip nat inside source static tcp 10.0.10.5 80 interface BVI1 80

ip classless

ip route 0.0.0.0 0.0.0.0 BVI1

no ip http server

-----------------------------------------

*** End Cisco 831 Router ***

interface Tunnel99

description *** Tunnel to 827 Router ***

no ip address

keepalive 10 3

tunnel source Ethernet1

tunnel destination X.X.19.130

!

!

interface Ethernet1

ip address X.X.17.103 255.255.255.0

duplex auto

no cdp enable

!

ip classless

ip route 0.0.0.0 0.0.0.0 X.X.17.1

ip route X.X.19.128 255.255.255.224 Tunnel99

Labels:
0 Helpful
15 Replies 15

amarranca
Level 1
Level 1
In response to Richard Burts

‎04-07-2006 08:53 AM

Ok everyone, thank you so much for your replies. Here is the status of my tunneling problem:

I have good connectivity from tunnel to tunnel

I can ping all the way across. From my Hotspot router I can reach 10.250.0.2 which is the IP on E0 of the AirMarshall Router.

I have two questions:

#1 - When I do a traceroute from a client machine BEHIND the HotSpot router it doesnt FORCE my traffic to go thru the tunnel. If I traceroute to yahoo.com I dont even hit the tunnel. If I traceroute to 10.250.0.2 I have a successful route and my last IP I hit is 192.168.200.10 (the tunnel IP on the AirMarshal Router)I cant go any further.

#2 - I want to force all traffic from E0 of the AirMarshall router to 10.250.0.1. The easiest way is thru Policy Based Routing correct? My source interface being E0 and next-hop being 10.250.0.1 correct? Would my match IP access-list be the IP coming thru the tunnel 10.250.10.X or something else?

*******************************************

Attached are copies of my updated config

*******************************************

Do I need to have FastEthernet1 configured differently for AirMarshall?

(See Attahced Log)

Preview file
3 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card