Hi there After hard work and help from few fellows here i have a 44 Net connectivity with Cisco 1005 router It has only one Ethernet and I do the tunneling on the same Ethernet it is still not perfect but work I need to add into it the 44 Net Gateways route commands ill do it in the coming days Im publishing the Config file for those that want to build Gateways from Cisco Routers
Some explain The p route 0.0.0.0 0.0.0.0 Tunnel0 169.228.66.251 line is the tunnel command to route every trafic that goes out from the LAN to e internet (in our case it is every 44.138.x.x trafic that want to go out to the internet it must be routed to UCSD because the ISP Block IP which is not belong to them (include 44 Net IP) to go out to the outside world via their routers
The ip route 8.8.8.8 255.255.255.255 Ethernet0 10.0.0.138 is to allow the router to get DNS (for translating IP to names while I do traceroute from inside the router)
The ip route 169.228.66.251 255.255.255.255 Ethernet0 10.0.0.138 is to allow the tunnel link to be routed through the regular Internet connection
Of course that following should be a route command for every 44 net gateway there are few ways to do it i will start with a script but im checking other solutions as well
If there are Cisco experts that willing to improve my config im open to suggestions last time i have touch Cisco stuff was 20 years ago ... some of the commands are new to me beside the fact that i have forgot most what i used to know
Ronen - 4Z4ZQ http://www.ronen.org
Cisco1005_HAIFA#wr t Building configuration...
Current configuration: ! version 12.0 no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Cisco1005_HAIFA ! enable secret 5 $1$y6Q5$M.vGw3VoHZph5tNmbLIFi0 enable password 7 055A565F74 ! ip subnet-zero ip name-server 8.8.8.8 ip name-server 8.8.4.4 ! ! ! interface Tunnel0 ip unnumbered Ethernet0 no ip directed-broadcast tunnel source Ethernet0 tunnel destination 169.228.66.251 tunnel mode ipip ! interface Ethernet0 description connected to EthernetLAN_HAIFA ip address 44.138.1.1 255.255.255.0 secondary ip address 10.0.0.180 255.255.255.0 no ip directed-broadcast ! interface Async1 no ip address no ip directed-broadcast ! ip default-gateway 10.0.0.138 ip classless ip route 0.0.0.0 0.0.0.0 Tunnel0 169.228.66.251 ip route 8.8.8.8 255.255.255.255 Ethernet0 10.0.0.138 ip route 169.228.66.251 255.255.255.255 Ethernet0 10.0.0.138 ip http server ! access-list 101 permit ip any 44.0.0.0 0.255.255.255 access-list 101 permit ip 44.0.0.0 0.255.255.255 any banner motd ^C Warning: Un Authorized login prohibited everything is logged you have been warned !!! ^C ! line con 0 exec-timeout 0 0 password 7 00271A150754 login transport input none line 1 line vty 0 4 password 7 072C285F4D06 login ! end
Cisco1005_HAIFA#