Здравствуйте, сломал себе всю голову этой задачей. Сам не специалист в тонкой настройке сетевого оборудования, поэтому прошу помощи знатоков.Есть 2 удаленные сети: 10.185.192.0 и 10.185.201.0, в 1й стоит cisco2851, во 2й cisco 1811, между которыми *раньше* был кабельный провайдер, через которого эти циски друг друга видели (была транзитная сеть 10.185.193.0, одного был ...193.1, у другого ...193.7)
Сейчас от этого провайдера отказались и временно нужно обеспечить связь м-ду сетями. Было решено воспользоваться беспроводным скайлинком. Они выдали 2 модема SmartWiser W450 с выделенными ip-адресами (77.x.x.94,77.x.x.95) и RJ45 разъемами. В модемах есть только роутинг, бриджинга нету. Их представитель предложил только использовать перенаправление портов на модемах.
Вопрос - как мне настроить эти циски (если можно с командами, т.к я в этом во всем дууууб), чтобы сети друг друга видели? Т.е нужно, чтобы как и раньше можно было в одной сети увидеть комп-р из другой сети просто обратившись к нему по его адресу.
***************Вот sh run cisco1811 на 10.185.201.0:***********************
#sh run
Load for five secs: 8%/0%; one minute: 1%; five minutes: 1%
Time source is hardware calendar, *09:01:24.846 UTC Tue Apr 6 2010
Building configuration...
Current configuration : 6558 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime localtime
service password-encryption
service sequence-numbers
!
hostname 1811_xxxxxx_xxxxxxx
!
boot-start-marker
boot-end-marker
!
logging count
logging buffered 8192 informational
logging rate-limit 5
enable secret 5 xxxxxxx
!
aaa new-model
!
!
aaa authentication login default local
!
aaa session-id common
!
resource policy
!
!
!
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool sdm-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
!
no ip domain lookup
ip domain name xxxxxxx.com
ip ssh time-out 60
ip ssh authentication-retries 2
ip ssh version 2
login block-for 30 attempts 5 within 10
login delay 2
login on-failure log every 3
!
!
crypto pki trustpoint TP-self-signed-330396662
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-330396662
revocation-check none
rsakeypair TP-self-signed-330396662
!
!
crypto pki certificate chain TP-self-signed-330396662
certificate self-signed 01
xxxxxxx
quit
username cisco privilege 15 secret 5 xxxxxxx
username jet privilege 15 secret 5 xxxxxxx
archive
log config
logging enable
logging size 200
hidekeys
path flash:Archive
write-memory
time-period 10080
!
!
!
!
!
!
interface FastEthernet0
description LAN
ip address 10.185.201.1 255.255.255.224
duplex auto
speed auto
!
interface FastEthernet1
description outside
ip address 10.185.193.7 255.255.255.128
speed auto
half-duplex
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
!
interface FastEthernet5
!
interface FastEthernet6
!
interface FastEthernet7
!
interface FastEthernet8
!
interface FastEthernet9
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-FE 2$
ip address 10.10.10.1 255.255.255.248
ip tcp adjust-mss 1452
!
interface Async1
no ip address
encapsulation slip
!
ip route 0.0.0.0 0.0.0.0 10.185.193.1
!
!
no ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
!
no cdp run
!
!
!
!
!
!
control-plane
!
banner exec ^C
% Password expiration warning.
xxxxxxx
^C
banner login ^C
xxxxxxx
^C
banner motd ^C
xxxxxxx
^C
!
line con 0
exec-timeout 0 50
privilege level 15
logging synchronous
exec prompt timestamp
line 1
modem InOut
stopbits 1
speed 115200
flowcontrol hardware
line aux 0
line vty 0 4
access-class 23 in
exec-timeout 40 0
privilege level 15
logging synchronous
exec prompt timestamp
transport input telnet ssh
line vty 5 15
access-class 23 in
exec-timeout 40 0
privilege level 15
logging synchronous
exec prompt timestamp
transport input telnet ssh
!
!
webvpn context Default_context
ssl authenticate verify all
!
no inservice
!
end
******************************************************************
******************************************************************
******************************************************************
******************************************************************
******************************************************************
******************************************************************
******************************************************************
***************Вот sh run cisco2851 на 10.185.192.0:***********************
sh run
Building configuration...
Current configuration : 3909 bytes
!
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec
service timestamps log datetime localtime
service password-encryption
service sequence-numbers
!
hostname c2851_xxxxxxx
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
logging console critical
enable secret 5 xxxxxx
enable password 7 xxxxxx
!
aaa new-model
!
!
aaa authentication login default local
!
aaa session-id common
!
resource policy
!
ip subnet-zero
no ip source-route
no ip gratuitous-arps
!
!
ip cef
!
!
no ip bootp server
no ip domain lookup
ip domain name xxxxxx.ru
!
username cisco privilege 15 secret 5 xxxxxx
username jet privilege 15 secret 5 xxxxxx
archive
log config
logging enable
logging size 200
notify syslog
hidekeys
path flash:Archive
maximum 14
write-memory
time-period 10080
!
!
!
interface GigabitEthernet0/0
ip address 10.185.196.1 255.255.255.224 secondary
ip address 10.185.195.6 255.255.255.252 secondary
ip address 10.185.195.14 255.255.255.252 secondary
ip address 10.185.193.1 255.255.255.128
duplex auto
speed auto
!
interface GigabitEthernet0/1
description "to_ASA5520_Tr2"
ip address 10.185.192.18 255.255.255.248
duplex auto
speed auto
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.185.192.17
ip route 10.185.192.0 255.255.240.0 10.185.192.9
ip route 10.185.196.64 255.255.255.224 10.185.193.10 name xxxxxx
ip route 10.185.197.0 255.255.255.224 10.185.193.3 name xxxxxx
ip route 10.185.197.64 255.255.255.224 10.185.193.11 name xxxxxx
ip route 10.185.198.0 255.255.255.224 10.185.193.4 name xxxxxx
ip route 10.185.199.0 255.255.255.224 10.185.193.5 name xxxxxx
ip route 10.185.200.0 255.255.255.224 10.185.193.6 name xxxxxx
ip route 10.185.201.0 255.255.255.224 10.185.193.7 name xxxxxx
ip route 10.185.202.0 255.255.255.224 10.185.193.8 name xxxxxx
ip route 10.185.203.0 255.255.255.224 10.185.193.9 name xxxxxx
!
no ip http server
ip http access-class 23
ip http authentication local
ip http timeout-policy idle 60 life 86400 requests 10000
!
logging trap debugging
logging facility local2
access-list 23 permit 10.10.10.0 0.0.0.7
access-list 101 permit ip any host 10.185.200.30
access-list 101 permit ip host 10.185.200.30 any
!
control-plane
!
banner motd ^CC
xxxxxx
^C
alias configure roo router ospf 1
alias exec srs show run | s
alias exec ii show ip int br
alias exec iiu show ip int br | ex unass
alias exec iii show run | s interface
alias exec pp show ip protocol
alias exec oo sh ip ospf
alias exec bb show ip bgp
alias exec rr show ip route
alias exec ro show ip route ospf
alias exec rrr show ip route rip
alias exec re show ip route eigrp
alias exec rb show ip route bgp
alias exec un undebug all
alias exec p ping
alias exec zz show access-list
alias exec bbc clear ip bgp *
alias exec zzz show run | i permit|deny|access-list|access-group|remark
alias exec vv show vlan b
alias exec tt show int trunk
alias exec cc conf t
alias exec sr show run
alias exec srb show run | b
alias exec sri show run | i
alias exec sra show run | i ^(( permit)|( deny)|( remark)|(ip.* access)|(access-listte bgp
alias exec rm show run | s route-map
alias exec uu undeb all
!
line con 0
exec-timeout 30 0
logging synchronous
line aux 0
line vty 0 4
exec-timeout 30 0
privilege level 15
logging synchronous
transport input telnet
line vty 5 15
exec-timeout 30 0
privilege level 15
logging synchronous
transport input telnet
!
scheduler allocate 20000 1000
!
end
c2851_xxxxxx#
Вариант для распечатки
