|
Posted by Merv on May 30, 2008, 4:24 am
If you were Registered and logged in, you could reply and use other advanced thread options > Hello, tomarseneault!
>
> t> I have a 2811 with the advanced security feature pack. I'm configuring
> t> it to replace our old pix and 2621 but I can't set the default route
> t> to an "outside" interface (FastEthernet0/1), I can set it to an inside
> t> interface easy enough. The line in the config file is the same for
> t> both setups:
>
> t> ip route 0.0.0.0 0.0.0.0 FastEthernet0/0
>
> Default route to inside network?
>
> t> ip route 0.0.0.0 0.0.0.0 FastEthernet0/1
>
> Change route records to:
>
> ip route 0.0.0.0 0.0.0.0 ip.add.ress.GATE1
> ip route 0.0.0.0 0.0.0.0 ip.add.ress.GATE2
>
> t> But when I enter in the 2nd line I get "Gateway of last resort is not
> t> set". I have tried using the IP of the next hop router as well, same
> t> results. I also compared it to our existing 2621 and it looks the
> t> same. Here are the interface setups:
>
> t> interface FastEthernet0/0
> t> description Inside$ES_LAN$$ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0/0$
> t> $FW_INSIDE$
> t> ip address 10.10.3.1 255.255.255.0
> t> ip access-group 100 in
> t> ip nat inside
> t> ip virtual-reassembly
> t> duplex full
> t> speed 100
> t> !
> t> interface FastEthernet0/1
> t> description Outside$ES_WAN$$ETH-WAN$$FW_OUTSIDE$
> t> ip address 65.123.2.2 255.255.255.128
> t> ip access-group 101 in
> t> ip verify unicast reverse-path
> t> ip inspect SDM_LOW out
> t> ip nat outside
> t> ip virtual-reassembly
> t> duplex full
> t> speed 100
> t> crypto map SDM_CMAP_1
> t> !
>
> With best regards, Andrew Lutov. E-mail: andrew_l @ newmail.ru
try configuring:
ip routing
ip clasless
to see if it makes any difference
| 
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map