MLPPP monitoring second modem

MLPPP monitoring second modem
Links: home · search · speed test · login · more ·

Links: Reply New Topic
Forums » Canadian » TekSavvy » MLPPP monitoring second modem

mister_stick @ 29th Oct 09:52PM:
MLPPP monitoring second modem

Hi everyone,
Just had my second dry loop activated today and multilink came up without a hitch. However I have some questions relating to SNMP monitoring and configuring modem access.

I've been successfully getting modem stats (from my Cisco 827) using the 'route modem ip' feature. However for the second modem it looks like i'll need to manually make the changes to allow proper routing. I've poked around a bit in telnet and also found this post which looks helpful, but could use some help to identify the correct bridge group or vlan or something which will need an IP on the same network as my modem.

»How to Access Modem via Tomato Router

Any help would be appreciated.
Cheers,
IAN
reply

vitesse @ 29th Oct 09:59PM:
Re: MLPPP monitoring second modem

I don't know for your setup. I use one wrt54gl with tomato and two st-516 modem. My router use 192.168.1.x

first one is on 10.0.0.138
Second one is accessible on 192.168.1.254 (default address)
reply

mister_stick @ 29th Oct 10:06PM:
Re: MLPPP monitoring second modem

Ahh good point, i should explain my setup as it's a little complex:

ModemA (192.168.1.254) ModemB (192.168.2.254)
\ /
(/29 public IP)
Tomato
| | |
/ | \
(/29 pub Ip's for various routers>
/
ddwrt (192.168.3.1)
Cacti box trying to access Modem B (modem A is fine).

EDIT:
turns out white space doesnt post properly. I can try and post a viso diagram, but the idea is there.
reply

anon @ 29th Oct 10:41PM:
Cisco 827 and multilink? Re: MLPPP monitoring second modem

Hi,

Are you using a Cisco 827 and another modem to connect in multilink mode through a Linksys with Tomato-MLPPP firmware?

If so, I'd love to know how you've done it. I have two ST-516's right now connected to my Linksys, but I'd love to swap one out of the 516 for my old Cisco 827 which is now gathering dust.

Would you mind sharing your IOS config to get the 827 to work as a regular modem? I had the 827 working in single link MLPPP, but had to put it aside a start using the two 516s when I ordered a second dry loop.

Thanks in advance.
reply

anon @ 29th Oct 11:00PM:
Re: MLPPP monitoring second modem

You could try adding this under Administration-Scripts-WAN Up in Tomato:

ip addr add 192.168.1.10/24 dev br0 brd +
ip addr add 192.168.2.10/24 dev br1 brd +
/usr/sbin/iptables -I POSTROUTING -t nat -o br0 -d 192.168.1.0/24 -j MASQUERADE
/usr/sbin/iptables -I POSTROUTING -t nat -o br1 -d 192.168.2.0/24 -j MASQUERADE

On my Linksys, br0 is port 1 and br1 is the Internet port, if I understand your setup correctly, this means you need to plug Modem A in port 1 and Modem B in the Internet port for the routing to work.

said by mister_stick :

Ahh good point, i should explain my setup as it's a little complex:

ModemA (192.168.1.254) ModemB (192.168.2.254)
\ /
(/29 public IP)
Tomato
| | |
/ | \
(/29 pub Ip's for various routers>
/
ddwrt (192.168.3.1)
Cacti box trying to access Modem B (modem A is fine).

EDIT:
turns out white space doesnt post properly. I can try and post a viso diagram, but the idea is there.

mister_stick @ 29th Oct 11:01PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

Sure no problem! The trick is turning off any routing, and bridging the ATM and Eth interfaces. Here's the relevant part from my config:

!
!
!
interface Ethernet0
ip address 192.168.2.254 255.255.255.0
ip accounting output-packets
no ip mroute-cache
no cdp enable
bridge-group 1
hold-queue 100 out
!
interface ATM0
mtu 1492
no ip address
no ip mroute-cache
no atm ilmi-keepalive
atm ilmi-pvc-discovery
pvc 0/35
!
dsl operating-mode auto
bridge-group 1
hold-queue 224 in
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.2.253
no ip http server
!
!
no cdp run

...
To be honest there's some stuff in there which may not be necessary, I pieced this together from various configs and some troubleshooting. Other than that you can set your SNMP community strings for monitoring, pop 192.168.2.254 in the route modem ip then you'll be able to grab stats from it.
I'm using cacti and have interface, CPU and a couple DSL stats graphing. If anyone's interested I'd be glad to point you to the sites I got them from.
IAN
reply

Guspaz @ 29th Oct 11:11PM:
Re: MLPPP monitoring second modem

Unless I'm misunderstanding what you're trying to do, you just need to enter the IP of the modem on the WAN port into the route modem field (alpha 4 or later), and keep the second modem on the same subnet as the accessing device.
reply

mister_stick @ 29th Oct 11:12PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

Thank you OTT!!! I wasnt sure of the correct interface, br0 is correct for Port1. I set the ips (slightly differently) via Telnet and tested succesfully. Now to make this reboot safe i'll add the commands to Init and Firewall scripts as per the link i posted above.
Cheers,
IAN
reply

mister_stick @ 29th Oct 11:15PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

Guspaz,
you are correct, I tested this by setting the modem with one of my public IP's and was able to access it fine. However i'd prefer to use a private one, and Ott's instructions worked out the way I was hoping.

Note I didnt set both the private IP's as in OTT's example as the first one was handled by the 'route modem ip' field built in to Tomato.
Cheers,
IAN
reply

anon @ 29th Oct 11:20PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

No problem Ian, it took me a while to figure out that the ports each had their own specific address.

And thanks for the IOS config. I'm going to give it a go and let you know how it turns out.

One question: in your config, what does the address 168.192.2.253 route to?

said by mister_stick :

Thank you OTT!!! I wasnt sure of the correct interface, br0 is correct for Port1. I set the ips (slightly differently) via Telnet and tested succesfully. Now to make this reboot safe i'll add the commands to Init and Firewall scripts as per the link i posted above.
Cheers,
IAN

mister_stick @ 29th Oct 11:23PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

That's the address assigned to br1 so that SNMP stats have a route to get back to my LAN.
reply

anon @ 30th Oct 01:45AM:
Re: Cisco 827 bridged / DSL Modem / MLPPP Tomato

Thanks! I can't believe it was that easy to get the Cisco 827 up and running as a straight up DSL modem along side the ST-516. I didn't know it was possible until tonight. Hopefully, I'll be able to return one of the ST-516 for a refund.

Using the same Tomato script I sent you, I can telnet to the 827 without any problems.

Let me know if you need any more help, your IOS tip was invaluable!

said by mister_stick :

That's the address assigned to br1 so that SNMP stats have a route to get back to my LAN.

mister_stick @ 30th Oct 09:27AM:
Re: Cisco 827 bridged / DSL Modem / MLPPP Tomato

My pleasure, i've browsed the forums for a while but never realized how great it was to get problems solved so quickly!

And those are great modems, solid as a rock.
Cheers,
IAN

said by Ott :

Thanks! I can't believe it was that easy to get the Cisco 827 up and running as a straight up DSL modem along side the ST-516. I didn't know it was possible until tonight. Hopefully, I'll be able to return one of the ST-516 for a refund.

Using the same Tomato script I sent you, I can telnet to the 827 without any problems.

Let me know if you need any more help, your IOS tip was invaluable!

said by mister_stick :

That's the address assigned to br1 so that SNMP stats have a route to get back to my LAN.

pcbroch @ 5th Nov 08:24AM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

said by Ott :

Hi,

I had the 827 working in single link MLPPP,

Would you by any chance still have the config for the 827/single link MLPPP? No matter what I do, as soon as I enable multilink, nothing works anymore.
reply

anon @ 12th Nov 11:32PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

said by pcbroch :

said by Ott :

Hi,

I had the 827 working in single link MLPPP,

Would you by any chance still have the config for the 827/single link MLPPP? No matter what I do, as soon as I enable multilink, nothing works anymore.

First, make sure that you have a firmware that supports multilink (ie. IP Plus), otherwise it won't work. You can check which IOS supports multilink at »tools.cisco.com/ITDIT/CFN/jsp/index.jsp, or if you have an 827 you can use c820-sy6-mz.123-4.T.bin (search for it online, note: sy6 in title indicates IP Plus version which supports MLPPP, s6 indicates IP version which doesn't support MLPPP).

You could try this config (remember to add username/passwords)

Good luck!
--------------------

!
version 12.3
no parser cache
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service linenumber
service sequence-numbers
!
hostname Router
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 debugging
logging console informational
enable secret ADD_PASSWORD
!
username USER password ADD_PASSWORD
clock timezone EST -5
clock summer-time EDT recurring
aaa new-model
!
!
aaa authentication login default local enable
aaa session-id common
ip subnet-zero
no ip source-route
ip domain name mydomain.com
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp excluded-address 10.10.10.1 10.10.10.10
!
ip dhcp pool DHCP_POOL
import all
network 10.10.10.0 255.255.255.0
default-router 10.10.10.1
!
!
!
no ip bootp server
ip cef
vpdn enable
!
vpdn-group pppoe
request-dialin
protocol pppoe
!
!
!
!
interface Ethernet0
ip address 10.10.10.1 255.255.255.248
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip tcp adjust-mss 1430
no cdp enable
hold-queue 100 out
!
interface ATM0
description Teksavvy DSL
no ip address
no ip mroute-cache
no atm ilmi-keepalive
bundle-enable
dsl operating-mode auto
hold-queue 224 in
!
interface ATM0.1 point-to-point
pvc 0/35
pppoe-client dial-pool-number 1
!
!
interface ATM0.35 point-to-point
!
interface Dialer0
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1486
ip nat outside
ip flow ingress
encapsulation ppp
ip route-cache flow
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication pap callin
ppp pap sent-username USERNAME@ISP.COM password ADD_PASSWORD
ppp link reorders
ppp multilink
ppp multilink fragment disable
ppp multilink links minimum 1
!
interface Dialer1
mtu 1477
ip address negotiated
ip nat outside
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication pap callin
ppp pap sent-username USERNAME@ISP.COM password ADD_PASSWORD
ppp ipcp dns request
ppp ipcp address accept
ppp multilink
!
ip nat inside source list 1 interface Dialer1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1
no ip http server
!
!
logging trap debugging
access-list 1 permit 10.10.10.0 0.0.0.255
access-list 101 deny udp any any eq netbios-ns
access-list 102 deny udp any any eq netbios-ns
access-list 103 deny udp any any eq netbios-ss
access-list 110 deny ip 172.16.0.0 0.15.255.255 any log-input
access-list 111 deny ip 10.0.0.0 0.255.255.255 any log-input
access-list 112 deny ip 10.0.0.0 0.255.255.255 any log-input
access-list 112 deny ip 127.0.0.0 0.255.255.255 any log-input
access-list 113 deny ip 255.0.0.0 0.255.255.255 any log-input
access-list 114 deny ip 224.0.0.0 31.255.255.255 any log-input
access-list 115 deny ip host 0.0.0.0 any log-input
no cdp run
!
!
control-plane
!
!
line con 0
exec-timeout 5 0
transport preferred all
transport output all
stopbits 1
line vty 0 4
exec-timeout 0 0
transport preferred all
transport input all
transport output all
!
scheduler max-task-time 5000
scheduler interval 500
!
end
reply

anon @ 12th Nov 11:32PM:
Re: Cisco 827 and multilink? Re: MLPPP monitoring second modem

Another thing, you need at least 24MB ram to install c820-sy6-mz.123-4.T.bin

»tools.cisco.com/ITDIT/CFN/Dispat···=display

said by pcbroch :

said by Ott :

Hi,

I had the 827 working in single link MLPPP,

Would you by any chance still have the config for the 827/single link MLPPP? No matter what I do, as soon as I enable multilink, nothing works anymore.