Cisco 1812J 設定例

投稿日時: 投稿者:

フレッツ光で複数IPアドレスの設定
IOSバージョン15.1

version 15.1
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
!
hostname gw
!
boot-start-marker
boot-end-marker
!
!
logging buffered 512000
!
no aaa new-model
!
memory-size iomem 15
clock timezone JST 9 0
crypto pki token default removal timeout 0
!
!
dot11 syslog
ip source-route
!
!
!
!
!
ip cef
ip domain name example.jp
ip name-server 10.0.0.2

!
multilink bundle-name authenticated
!

no spanning-tree vlan 1
no spanning-tree vlan 4
!

interface BRI0
 no ip address
 encapsulation hdlc
 shutdown
!
interface FastEthernet0
 no ip address
 duplex auto
 speed auto
 pppoe enable group global
 pppoe-client dial-pool-number 1
!
interface FastEthernet1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet2
 switchport access vlan 4
!
interface FastEthernet3
 switchport access vlan 4
!
interface FastEthernet4
!
interface FastEthernet5
!
interface FastEthernet6
!
interface FastEthernet7
!
interface FastEthernet8
!
interface FastEthernet9
!
interface Vlan1
 ip address 192.168.0.254 255.255.255.0
 ip mtu 1454
 ip nat inside
 ip virtual-reassembly in
 ip tcp adjust-mss 1414
!
interface Vlan4
 ip address 192.0.0.1 255.255.255.248
 ip mtu 1454
 ip nat outside
 ip virtual-reassembly in
 ip tcp adjust-mss 1414
!
interface Dialer0
 ip unnumbered Vlan4
 ip mtu 1454
 ip verify unicast source reachable-via any allow-default allow-self-ping
 ip nat outside
 ip virtual-reassembly in
 encapsulation ppp
 ip tcp adjust-mss 1414
 dialer pool 1
 dialer-group 1
 ppp authentication chap pap callin
 ppp chap hostname XXX@example.jp
 ppp chap password 0 PASSWORD

ip forward-protocol nd
no ip http server
no ip http secure-server
!
!
ip dns server
ip nat inside source list 1 interface Vlan4 overload
ip route 0.0.0.0 0.0.0.0 Dialer0

access-list 1 permit 192.168.0.0 0.0.0.255
dialer-list 1 protocol ip permit
no cdp run

control-plane
!
!
line con 0
 exec-timeout 0 0
line aux 0
line vty 0 4
access-class 1 in
 login local
!
ntp update-calendar
ntp server 10.0.0.3
end

FastEthernetの2と3ポートをvlan4に設定
vlan 4をDMZとしPPPoEで振られる192.0.0.0/29の固定IPアドレスを使う
内部はvlan 1で192.168.0.0/24を使いNAPTする

ntp update-calendarを入れないとハードウェアのクロックを更新してくれない

注意:これでとりあえず繋がるが、フィルタが全くかかっていないので

コメントを残す

メールアドレスが公開されることはありません。 が付いている欄は必須項目です