[c-nsp] ADSL Keeps Dropping

Paul Stewart pauls at nexicom.net
Mon Dec 20 13:44:42 EST 2004 

Sorry to bump my own post... But just realized that this is actually
being caused by their VPN...

The customer has a Soho91 router that is doing VPN traffic for them
(hence the routes in the config).  When the client needs to access the
VPN they come to our 1711 device which in turn has routes that go to
their Soho91.  When the Soho91 needs to send the VPN traffic it comes
back to our 1711 as public IP and then travels out to the other end of
the VPN....

When client computers try to use stuff on the VPN it forces our DSL to
drop off for some unknown reason...

Paul


-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Paul Stewart
Sent: Monday, December 20, 2004 1:35 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] ADSL Keeps Dropping


We have a customer who keeps dropping their ADSL connection to us. We're
using a 1711 router with an external modem.  We've swapped the modem and
still seeing drops... Before I call the line provider, I wanted to make
sure the router config wasn't an issue.. It's identical to some others
(minus this customer has two internal VLAN's we created but they really
don't have anything to do with DSL I don't believe)...

The log just keeps showing virtualaccess1 dropping and coming back....

Thanks for any input..:)

Paul


Config:

Current configuration : 3867 bytes
!
version 12.3
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone service
timestamps log datetime msec localtime show-timezone service
password-encryption service compress-config ! hostname gw-mmanagers !
boot-start-marker boot-end-marker ! security authentication failure rate
3 log security passwords min-length 6 logging buffered 51200 debugging
logging console critical enable secret 5 XXXXXXXXXXXXXXXXXXXX ! username
admin privilege 15 secret 5 XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX mmi
polling-interval 60 no mmi auto-configure no mmi pvc mmi snmp-timeout
180 no aaa new-model ip subnet-zero no ip source-route ! ! ip dhcp
excluded-address 192.168.10.1 192.168.10.10 ! ip dhcp pool CLIENT
   import all
   network 192.168.10.0 255.255.255.0
   default-router 192.168.10.1
   dns-server 216.168.96.10 216.168.96.13
   domain-name nexicom.net
!
!
ip cef
ip domain name nexicom.net
no ip bootp server
ip ips po max-events 100
ip ssh time-out 60
ip ssh authentication-retries 2
vpdn enable
!
vpdn-group 1
 request-dialin
  protocol pppoe
!
no ftp-server write-enable
!
!
!
!
!
!
!
!
interface Null0
 no ip unreachables
!
interface FastEthernet0
 description Nexicom ADSL
 no ip address
 no ip redirects
 no ip proxy-arp
 ip nat outside
 ip virtual-reassembly
 duplex auto
 speed auto
 pppoe enable
 pppoe-client dial-pool-number 1
 no cdp enable
!
interface FastEthernet1
 description NAT - Internal LAN
 no ip address
 no cdp enable
!
interface FastEthernet2
 description Public IP - VPN Device
 switchport access vlan 2
 no ip address
 no cdp enable
!
interface FastEthernet3
 no ip address
 shutdown
 no cdp enable
!
interface FastEthernet4
 no ip address
 no cdp enable
!
interface Vlan1
 description Internal Network
 ip address 192.168.10.1 255.255.255.0
 no ip redirects
 no ip proxy-arp
 ip nat inside
 ip virtual-reassembly
 ip tcp adjust-mss 1412
!
interface Vlan2
 description Public Subnet
 ip address XXXXXXXXXXXXXX 255.255.255.248
 no ip redirects
 no ip proxy-arp
 ip tcp adjust-mss 1412
!
interface Async1
 no ip address
 shutdown
!
interface Dialer0
 description Nexicom ADSL PPPOE
 ip address negotiated
 no ip redirects
 no ip proxy-arp
 ip mtu 1452
 ip nat outside
 ip virtual-reassembly
 encapsulation ppp
 dialer pool 1
 dialer-group 1
 no cdp enable
 ppp authentication pap callin
 ppp pap sent-username mmanagers at nexicom.net password 7
XXXXXXXXXXXXXXXXXXXXXXXXX ! interface Dialer1  no ip address  shutdown
no cdp enable ! ip classless ip route 0.0.0.0 0.0.0.0 Dialer0 ip route
204.239.202.0 255.255.255.0 192.168.10.201 ip route 207.194.97.64
255.255.255.192 192.168.10.201 ip route 207.194.137.128 255.255.255.128
192.168.10.201 no ip http server ip http access-class 1 no ip http
secure-server ! ip nat inside source list 102 interface Dialer0 overload
! ! logging trap debugging access-list 102 permit ip 192.168.10.0
0.0.0.255 any dialer-list 1 protocol ip permit no cdp run ! !
control-plane ! banner login ^CPrivate System - Authorized Access Only^C
! line con 0  login local  transport output telnet line 1  stopbits 1
speed 115200  flowcontrol hardware line aux 0  login local  transport
output telnet line vty 0 4  access-class 105 in  privilege level 15
password 7 XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX  login local  transport input
telnet ssh line vty 5 15  access-class 105 in  privilege level 15
password 7 XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
 login local
 transport input telnet ssh
!
scheduler allocate 4000 1000
scheduler interval 500
End

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list