1. Home
  2. Cisco Systems
  3. Setup 803 to allow dial in to a server

Setup 803 to allow dial in to a server

Hi all, need your knowledge on setting up a second dialer interface to allow a laptop to dial in from a isdn bri through to a 2000 server behind a cisco 803. The 803 currently serves as dial out for internet access. Not sure on the dhcp dns and nat aspects. I know I need to create a username and password, and config a dialer. Also will I have to setup the server for remote access as regards permissions etc, or will the user just land on the inside network with an internal ip served from the 803. I want to make sure that when the user dials in on one line the other line is still free for outbound internet access.

Help please...

Current config

ip subnet-zero ! ip inspect max-incomplete high 1100 ip inspect one-minute high 1100 ip inspect name Ethernet_0 ftp ip inspect name Ethernet_0 tcp ip inspect name Ethernet_0 smtp ip inspect name Ethernet_0 udp no ip domain-lookup ip name-server X.X.X.X isdn switch-type basic-net3 ! ! process-max-time 200 ! interface Ethernet0 description connected to EthernetLAN ip address 192.168.2.102 255.255.255.0 ip access-group 100 in no ip directed-broadcast ip nat inside ip inspect Ethernet_0 in ! interface BRI0 description connected to Internet no ip address no ip directed-broadcast ip nat outside encapsulation ppp dialer rotary-group 1 isdn switch-type basic-net3 ! interface Dialer1 description connected to Internet ip address negotiated ip access-group 101 in no ip directed-broadcast ip nat outside encapsulation ppp no ip split-horizon dialer in-band dialer idle-timeout 300 dialer string xxxxxxxx (Internet ISP Number) dialer hold-queue 10 dialer load-threshold 200 either dialer-group 1 no cdp enable ppp authentication chap pap callin ppp chap hostname ****** ppp chap password *********** ppp pap sent-username ****** password *********** ! ip nat inside source list 1 interface Dialer1 overload no ip http server ip classless ip route 0.0.0.0 0.0.0.0 Dialer1 ! access-list 1 permit 192.168.2.0 0.0.0.255 access-list 100 permit tcp any any range ftp-data ftp access-list 100 permit tcp any any eq www access-list 100 permit tcp any any eq 443 access-list 100 permit tcp any any eq pop3 access-list 100 permit tcp any any eq smtp access-list 100 permit udp any any eq domain access-list 101 deny ip any any access-list 105 deny udp any eq netbios-ns any access-list 105 deny udp any any eq netbios-ns access-list 105 deny udp any any eq netbios-dgm access-list 105 deny tcp any any eq 139 access-list 105 deny ip any host 255.255.255.255 access-list 105 permit ip 192.168.2.0 0.0.0.255 any dialer-list 1 protocol ip list 105

Helpppppppppppp

Reply to
doc918
Loading thread data ...

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.