Пытаюсь настроить домашнюю циску для работы с удаленной рабочей локалкой в офисе. Конфиги с обоих сторон прилагаются. В офисе стоит 877 циска, работа в домене. С домашней циски все пингуется и могу в инет выходить, но рабочий сервер локалки с домашнего компьютера с XP не пингуется , адрес сервера 192.168.1.1. Пробовал использовать debug ip packet detail, но в kiwi syslog на ноуте много сообщений, информации почему не пингуется не нашел. Отфильтровать не удалось. Есть всего пару дней на наладку. Заранее спасибо.Конфиг домашней циски 851:
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname murka
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
!
resource policy
!
ip subnet-zero
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool sdm-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
!
ip cef
ip domain name yourdomain.com
ip name-server 217.77.53.237
ip name-server 217.77.52.252
!
!
interface Tunnel17
ip address 172.22.9.254 255.255.255.0
ip mtu 1412
ip tcp adjust-mss 1396
tunnel source FastEthernet4
tunnel destination 217.77.52.241
tunnel path-mtu-discovery
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
description $ETH-WAN$
mac-address 0018.f8f1.b645
ip address 10.10.104.43 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 192.168.39.199 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
router rip
version 2
passive-interface Vlan1
network 172.22.0.0
network 192.168.0.0
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.10.104.254
ip route 192.168.1.0 255.255.255.0 Tunnel17 150
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface FastEthernet4 overload
!
access-list 1 permit 192.168.39.0 0.0.0.255
access-list 23 permit any
no cdp run
!
control-plane
!
!
line con 0
login local
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
end
Конфиг офисной циски 877:
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname murka
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
!
resource policy
!
ip subnet-zero
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool sdm-pool
import all
network 10.10.10.0 255.255.255.248
default-router 10.10.10.1
lease 0 2
!
!
ip cef
ip domain name yourdomain.com
ip name-server 217.77.53.237
ip name-server 217.77.52.252
!
!
interface Tunnel17
ip address 172.22.9.254 255.255.255.0
ip mtu 1412
ip tcp adjust-mss 1396
tunnel source FastEthernet4
tunnel destination 217.77.52.241
tunnel path-mtu-discovery
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
description $ETH-WAN$
mac-address 0018.f8f1.b645
ip address 10.10.104.43 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 192.168.39.199 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
!
router rip
version 2
passive-interface Vlan1
network 172.22.0.0
network 192.168.0.0
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.10.104.254
ip route 192.168.1.0 255.255.255.0 Tunnel17 150
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source list 1 interface FastEthernet4 overload
!
access-list 1 permit 192.168.39.0 0.0.0.255
access-list 23 permit any
no cdp run
!
control-plane
!
!
line con 0
login local
no modem enable
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
end