03-23-2006 01:02 PM - edited 03-03-2019 12:09 PM
Well, I'm trying to make a tunnel between a WiFi hotspot ADSL router and another cisco router. I try to open the tunnel but I receive "% Connection refused by remote host"
Below is my config, where have I gone wrong?
-------------------------------------
*** WiFi ADSL Cisco 827 Router ***
interface Tunnel99
description *** tunnel to 831 router ***
no ip address
tunnel source BVI1
tunnel destination X.X.17.103
!
interface Ethernet0
description outbound for WiFi users
ip address 10.0.10.1 255.255.255.0
ip nat inside
no cdp enable
hold-queue 100 out
!
interface BVI1
ip address X.X.19.130 255.255.255.224
ip nat outside
!
ip nat inside source list 102 interface BVI1 overload
ip nat inside source static tcp 10.0.10.5 80 interface BVI1 80
ip classless
ip route 0.0.0.0 0.0.0.0 BVI1
no ip http server
-----------------------------------------
*** End Cisco 831 Router ***
interface Tunnel99
description *** Tunnel to 827 Router ***
no ip address
keepalive 10 3
tunnel source Ethernet1
tunnel destination X.X.19.130
!
!
interface Ethernet1
ip address X.X.17.103 255.255.255.0
duplex auto
no cdp enable
!
ip classless
ip route 0.0.0.0 0.0.0.0 X.X.17.1
ip route X.X.19.128 255.255.255.224 Tunnel99
04-07-2006 08:53 AM
Ok everyone, thank you so much for your replies. Here is the status of my tunneling problem:
I have good connectivity from tunnel to tunnel
I can ping all the way across. From my Hotspot router I can reach 10.250.0.2 which is the IP on E0 of the AirMarshall Router.
I have two questions:
#1 - When I do a traceroute from a client machine BEHIND the HotSpot router it doesnt FORCE my traffic to go thru the tunnel. If I traceroute to yahoo.com I dont even hit the tunnel. If I traceroute to 10.250.0.2 I have a successful route and my last IP I hit is 192.168.200.10 (the tunnel IP on the AirMarshal Router)I cant go any further.
#2 - I want to force all traffic from E0 of the AirMarshall router to 10.250.0.1. The easiest way is thru Policy Based Routing correct? My source interface being E0 and next-hop being 10.250.0.1 correct? Would my match IP access-list be the IP coming thru the tunnel 10.250.10.X or something else?
*******************************************
Attached are copies of my updated config
*******************************************
Do I need to have FastEthernet1 configured differently for AirMarshall?
(See Attahced Log)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide