Hello group,
I have a Cisco 871 router that I am attempted to use replace my aging Netgear router. Things are working, er, just ok.
I utilize hotmail, my fiance uses live messenger, and I have an Xbox360. Whenever I put the 871 in as my router I can no longer sign into hotmail, live messenger, or Xbox live!
Web browsing, google talk, FTP, and other internet traffic work fine. I just am not able to get the Microsoft apps to work. They all time-out for some reason. If I put the old Netgear in, everything works normally.
I thought it was something that I did, so I did a 'write erase' and then tried to config it again.
I am running 12.4(15)T4 as that is the latest IOS out there on Cisco's website.
Xbox Live does recommend doing port-forwarding for online gaming, so that is needed as well as a couple of other ports for a internal server on my network. I am not a NAT expert by any means, so I am assuming that I have something configured wrong.
Any help on this frustrating issue would be greatly appreciated.
Here is my config on the 871 (without the crypto statements):
version 12.4 no service pad service tcp-keepalives-in service tcp-keepalives-out service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone service password-encryption service sequence-numbers ! hostname BTLR-TWT-GW1 ! boot-start-marker boot system flash:c870-advipservicesk9-mz.124-15.T4.bin boot-end-marker ! logging buffered 16384 ! no aaa new-model ! ip cef ! ! no ip dhcp use vrf connected ip dhcp excluded-address 192.168.0.1 192.168.0.192 ! ip dhcp pool Workstations import all network 192.168.0.0 255.255.255.0 default-router 192.168.0.1 dns-server 192.168.0.101 lease 3 ! ip dhcp pool Xbox360 host 192.168.0.250 255.255.255.0 client-identifier 0100.125a.f415.51 ! ! no ip bootp server ip port-map user-xbl-ctrl-udp port udp 3074 description XBOX Live control protoc ol over UDP ip port-map user-xbl-ctrl-tcp port tcp 3074 description XBOX Live control protoc ol over TCP ip port-map user-xbl-auth port udp 88 description XBOX Live Authentication ip auth-proxy max-nodata-conns 3 ip admission max-nodata-conns 3 ip ddns update method DynDNS HTTP add http://ajschroeder:@members.dyndns.org/nic/update?system=dyndns&hostname=&myip= remove http://ajschroeder:@members.dyndns.org/nic/update?system=dyndns& hostname=&myip= interval maximum 0 12 0 0 ! ! multilink bundle-name authenticated ! ! username admin privilege 15 secret 5 ! ! archive log config hidekeys ! ! ip ssh time-out 30 ! ! ! interface FastEthernet0 switchport access vlan 2 ! interface FastEthernet1 switchport access vlan 2 ! interface FastEthernet2 switchport access vlan 2 ! interface FastEthernet3 switchport access vlan 2 ! interface FastEthernet4 ip dhcp client update dns server none ip ddns update hostname ip ddns update DynDNS ip address dhcp client-id FastEthernet4 ip nat outside ip virtual-reassembly duplex auto speed auto ! interface Vlan1 no ip address shutdown ! interface Vlan2 description Local LAN ip address 192.168.0.1 255.255.255.0 ip nat inside ip virtual-reassembly ! ip forward-protocol nd ip route 0.0.0.0 0.0.0.0 FastEthernet4 permanent ! ! no ip http server ip http secure-server ip http timeout-policy idle 60 life 86400 requests 10000 ip nat inside source list 10 interface FastEthernet4 overload ip nat inside source static tcp 192.168.0.103 80 interface FastEthernet4
80 ip nat inside source static tcp 192.168.0.102 22 interface FastEthernet4 22 ip nat inside source static tcp 192.168.0.102 21 interface FastEthernet4 21 ip nat inside source static tcp 192.168.0.250 3074 interface FastEthernet4 3074 ip nat inside source static udp 192.168.0.250 88 interface FastEthernet4 88 ip nat inside source static udp 192.168.0.250 3074 interface FastEthernet4 3074 ! access-list 1 permit 10.0.0.0 0.255.255.255 access-list 1 permit 172.16.0.0 0.15.255.255 access-list 1 permit 192.168.0.0 0.0.255.255 access-list 10 remark NAT-Inside-to-Outside access-list 10 deny 192.168.0.102 access-list 10 deny 192.168.0.103 access-list 10 deny 192.168.0.250 access-list 10 permit 192.168.0.0 0.0.255.255 no cdp run ! ! ! ! control-plane ! ! line con 0 logging synchronous login local no modem enable line aux 0 line vty 0 4 access-class 1 in exec-timeout 0 0 privilege level 15 logging synchronous login local transport input telnet ssh ! scheduler max-task-time 5000 ntp clock-period 17178097 ntp server 192.168.0.102 prefer endThanks,
AJ Schroeder