And have shortlisted the Speedtouch 585, USR 9108 and the Cisco 857W. Obviously the Cisco is top of the list but it's so expensive compared to the others. Anyone know a place to get hold of them cheap? Best i've found so far is just under £190.

I'm a huge Cisco fan boy, but unless you know how to configure one then buy something else. Cisco stuff can be made to work using the web interface (called SDM - Security Device Manager) but you'll get better results using the command line and that isn't exactly intuative.

The Speedtouches are supposed to be good, but I wouldn't touch a USR with a very long bargepole.

Hmm, this talk of Cisco makes me remember that I really should eBay my 877 and spare Pix 501.

If you're giving thought to spending that much on a Cisco, then these (http://www.draytek.co.uk/) are also worth a look. They're kinda a half-way point between the Cisco kit and the Netgear/Speedtouch stuff. All web configured too and pretty reliable if you're careful about which firmware you use (hint: if it ain't broke, don't try fixing it).

Other than that, I agree with Burble. Avoid USR (and Belkin). Haven't heard anything too bad about the Speedtouch range.

Not too worried about configuring them, have a cisco bod at work to ask if i get into any difficulty anyway. I had bad experiences with a draytek a few years ago and it's kind of put me off them.

I am really worried about getting the Speedtouch and finding it struggles under load as much as my current one.

I've read somewhere about the Cisco being ADSL2+ compatible with updated firmware, is that correct?

Not too worried about configuring them, have a cisco bod at work to ask if i get into any difficulty anyway. I had bad experiences with a draytek a few years ago and it's kind of put me off them.
Must admit mine went a bit knackered but their tech support sorted me out some custom firmware and it's been faultless ever since - regularly shove 10Mbps+ over the wireless and it's been known to do 40+ BitTorrent peers. I hope the new one I've got (upgrading for new features including VoIP) does as well.

Well the 40 torrents sounds pretty good. How did it effect browsing and gaming etc?

I've gone off the speedtouch now, QoS is on wireless only.

Must admit, it does suffer a lot if you max out the upload, and even if you get close to maxing it out, but that can be mitigated with careful setting of upload limits, and I was able to browse fairly normally. There's not a lot you can do about that without working QoS (I recently implemented throttling on my fileserver to stop it maxing out the upload pipe, and I can definitely say I noticed).

As for QoS, the router I have now has QoS settings, but I could never get them to work. Draytek has an unfortunate habit of putting half-finished functions into their firmware - that's definitely a bad point, though it's not caused me undue pain so far. Not sure if they did that with QoS, or I just didn't 'get' how to use it properly (the latter seems most likely from experience).

The new router appears to have functional QoS (turned on by default for VoIP support), but I've not tried it yet. Actually, I've not even unpacked the new router yet.

I accept that some people don't get on with/don't like them, so I won't be offended if you choose something else (why would I anyway, it's not my network :))

Oh, and it was 40 peers, not 40 torrents. Actually, I think it was about 3 torrents. I used my Mac for that job as I found a nice client (shame they stopped working on it).

I've read somewhere about the Cisco being ADSL2+ compatible with updated firmware, is that correct?

I'd be surprised if the 857 doesn't ship with an ADSL2+ compatible IOS on it.

I couldnt find anything saying definately yes or no but do remember the bit about firmware. I think i may hold out until for a bit and save for a cisco anyway, dont want to throw 50 away on something that is no better.

It isn't firmware when talking about Cisco routers. As far as Cisco routers are concerned firmware is the bootstrap (think of it as the BIOS of a PC) but the actual bit you mess about with, the operating system is called IOS. Cisco IOS's are easy to obtain if you happen to know someone with a SmartNet account ;)

My preference is always Cisco kit, as I said before I'm a huge fan of Cisco stuff but it can be a pig to configure if you don't know how way around the command line.

I'm going to be ordering one of these in the next day or so:

http://www.broadbandbuyer.co.uk/Shop/Reviews.asp?ProductID=2270&CategoryID=325&ShopGroupID=78

Anyone know somewhete i can get a better price? No idea where i found one for £190 in my original post.

Good choice. You'll need a couple of things to get this beast up and running easier.

- A TFTP server, used for getting IOS's to the router, and config backups from it. Have a look for the Solarwinds one. I can send it to you if you can't find it.

- A decent terminal emulation program. Unless you do everything through the web interface (called the SDM, security device manager) you'll need to connect either with the console cable (over a serial link) or by telnet/ssh. PuTTY (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html) is a good choice for telnet and ssh. As for serial, you could use hyperterminal but I use SecureCRT.

Give me a shout if you need a new IOS - I've got a SmartNet account so I can download anything I like from cisco.com.

If you've got the time, try to learn the command line. The SDM will get you a working config but I personally don't like some of the commands it uses.

Is there any need for this in the home market? (I'm assuming it's for home).
I reaaly can't see what it would offer above a £100 router from Netgear or the like.

I have a TFTP server and Putty downloaded already. I will defo give you a shout about the IOS when it arrives. Part of the reason for me getting this is to learn a bit of cisco so i fully intend to do as much through the command line as possible :).

Just so you can work out how current your IOS is, the newest IOS for an 857 is 12.4.9T1, dated 5th September 2006.

It arrived today, as expected i am having problems lol. The first was due to a dodgy connection between my current adsl cable and the cisco which took me a while to figure out. I'm now at the point that i cant get an ip address no matter which settings i try (both types of ppoa and all relevant ways of aquiring an ip, i dont have the subnet to enter a static)

My current IOS is 12.4(6)T5 if that means anything to you.

Are you sure the box is sync'ing? Before trying to bring the PPP up anyway. Post your config dude, assuming you're using SDM, you can get it from one of the drop downs at the top, I forget which.

To be honest i'm not sure what it's doing lol. Here's the config. All im doing at the moment is purely trying to get the adsl and wireless up and running so i can then fiddle at my leisure.

!This is the running config of the router: 10.10.10.254
!----------------------------------------------------------------------------
!version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname yourname
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
no aaa new-model
!
resource policy
!
clock timezone PCTime 0
clock summer-time PCTime date Mar 30 2003 1:00 Oct 26 2003 2:00
!
!
ip cef
ip domain name yourdomain.com
ip name-server 194.106.56.6
ip name-server 194.106.33.42
!
!
!
!
interface ATM0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.5 point-to-point
no snmp trap link-status
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Dot11Radio0
no ip address
shutdown
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 10.10.10.254 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Dialer0
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname ADSL01954715235@f2s.gw4
ppp chap password 0 3nvha2ca
ppp pap sent-username ADSL01954715235@f2s.gw4 password 0 3nvha2ca
!
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
dialer-list 1 protocol ip permit
no cdp run
!
control-plane
!
banner login ^C
-----------------------------------------------------------------------
Cisco Router and Security Device Manager (SDM) is installed on this device.
This feature requires the one-time use of the username "cisco"
with the password "cisco". The default username and password have a privilege level of 15.

Please change these publicly known initial credentials using SDM or the IOS CLI.
Here are the Cisco IOS commands.

username <myuser> privilege 15 secret 0 <mypassword>
no username cisco

Replace <myuser> and <mypassword> with the username and password you want to use.

For more information about SDM please follow the instructions in the QUICK START
GUIDE for your router or go to http://www.cisco.com/go/sdm
-----------------------------------------------------------------------
^C
!
line con 0
login local
no modem enable
line aux 0
line vty 0 4
privilege level 15
login local
transport input telnet ssh
!
scheduler max-task-time 5000
end

Telnet to the router and do 'show int atm0' to make sure that's ok (ATM0 is up, line protocol is up). Try changing the relevent bits to this below:

interface ATM0
no ip address
no atm ilmi-keepalive
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
dsl operating-mode auto

interface Dialer1
ip address negotiated (<- or the actual IP address and mask if you know it)
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
ppp chap hostname ADSL01954715235@f2s.gw4
ppp chap password 0 3nvha2ca
Think that's right. Off the top of my head configs aren't always 100% accurate. Dont think you should need to declare that 0.5 sub-interface either.

Man, I forgot how much bloat SDM adds to a config :/

Something odd just happened. I'd turned off the power by the switch on the router as i thought i was going to leave it for the evening and when i turned it back on it's gone back to the default setup and lost everything i'd done :(.

You have to commit any changes you make to the startup config, everything you do gets altered in running. There's a save option in SDM somewhere, or from the IOS by running either 'write config' or 'copy run star' ('copy running-config startup-config' being it's long version).

Oops lol. I best do some reading up :).

OK i'm finally getting somewhere now. Had a play this afternoon and got it synced and routing. Can browse fine etc. There is a bit of a problem though, every 2 or 3 minutes i get a "Interface ATM0, changed state to down". It brings itself back up again and works fine but i cant get it to stay up.

Just thinking, could it be the fact that im on adslmax and it's trying to find the best sync rate again as i have a new router? Sounds unlikely i know :).

Shouldn't drop the whole interface. At least, you'd certainly think/hope not, I cant say for sure. Dont think I've got any on Max.

It can drop the sync to re-negotiate the sync rate, but every 2-3 minutes isn't right.

What line stats are you getting? If you do 'show dsl interface atm0' you'll find out. Compare the stats before and after a drop and see how they vary. You'll notice that it says training data isn't available for the atm interface - don't make the mistake I did and enable it as you'll get nothing but pages and pages and pages of useless stuff back.

If you want to see the uptime of the interface, rather than looking at 'show interface blah' have a look at 'show caller' and you'll see how long the pppoa session has been established for.

I'll give it a go tomorrow and see what state my line is in.

I think the new ISO sorted the problem out re the syncing. Have a nice stable connection with decent throughput now. I am having major problems with the wireless though. Managing it through the SDM is impossible because i keep getting the following error on every page:

Error 'document.forms.0.CLOCK.value' is null or not an object

It basically stops every confirm / ok / enter button from working so i can't save anything.

EDIT

I think it must be the new IOS. I've tried different browsers and java versions. It definately worked before as i had added an SSID so the ISO is the only thing i can think of that has changed. Is there a new one out?

I think it is more likely to be an SDM bug rather than IOS since all SDM does is pass the commands to the IOS. Is there an option in the IOS for it to show you the commands it'll send to the router before it does? At least that way you could shove the commands into the console.

It's not actually part of the SDM as such, it opens in a seperate bog standard web page.

It is part of the SDM. IOS has no http interface, that's all handled through SDM.

I mean its not part of the standard sdm window. You don't have the same menu's etc to do with the commands.

Try SDM through another browser? There is an option for SDM to show you the commands it will deliver to the router, but I believe it appears after you click ok/confirm/apply/whatevr

I've tried IE6 and 7, it definately worked before at some point though.

Finally have it all working. It was the latest IOS that was causing the page errors when trying to configure the wireless. Took me a while to get the bridging sorted but all seems ok now. Can browse from all wired and wireless machines which is the main thing really. Now onto NAT and the Firewall :D, should keep me busy.

Had to upgrade the IOS again due to ATM0 going up and down all over the place. Going to be a bit of a pain if i need to change my wireless settings again but hopefuly i won't have to for a while.

I take it for whatever reason you cant just stick with the latest IOS?

The latest one doesnt let me apply any wireless settings and the previous one keeps resetting atm0. I've had to configure the wireless then upgrade to the latest to get it working properly.

It appears the disconnect issue is unrelated to the IOS version. Just had a 20min spate of constant disconnections. It was fine most of the afternoon then when it hit 16:30 it went mad. I'm posting in the few seconds that the link is up. Lots of this in the logs:

Interface Virtual-Access2, changed state to down
Interface Vi2 unbound from profile Di0
Interface ATM0, changed state to down
Line protocol on Interface ATM0, changed state to down

The sync was constant for the first 20 or so resyncs but is now fluctuating between 6 and 6.5mb.

That ain't good. What stats do you get if you do a 'show dsl interface atm0'?

Couldnt resync at all last night. Turned it off as the clicking was getting annoying. Turned it on this morning and synced straight away at 7600, noise levels etc are the same. I have a vague recollection about reading someting like this, problems during peak periods etc. I'm guessing it's going to die at around the same time tonight. Have to do some research at work today.

I know what you mean about the clicking, it used to drive me nuts when my 877 did it every time it lost and regained sync.

Is there an option to set target SNR or maximum sync rate on the Cisco kit? If the line is a bit borderline at peak times, helping the line training 'get things right' can yield a more stable line.

If you have these options, increase target SNR or decrease maximum sync rate (as appropriate) a little at a time until the line stabilises.

There may well be through the command line but i've not noticed anything in SDM.

I have to do it through my router's command line too, so that doesn't surprise me.

Found some info about the dsl operating-mode causing instability. I have it left set to Auto and apparently setting to UK Ansi-dmt should sort it.

Makes sense. Sort of. :)

It appears to be sorted. I was surprised to see it working when i got in from work. I'd asked for Interleaving to be turned off last night (and completely forgotten about it) and they'd done it early this morning. Has been 1 blip all day since then.

Good old interleaving. In theory a nice idea but in reality I've seen it cause so many problems.

The ADSL at my parents place has interleaving turned on for some reason (despite an 8128 sync rate, 15dB SNR & 24dB attenuation) and since it was enabled their DSL drops quite regularly. BT seem unwilling to turn it off for some reason though :huh:

Wonder why? Alll it required was a phone call from me?

No idea. Just BT being BT I suppose.

Bloody thing has started resetting itself again. Don't know what else i can try, feel like sending it back.

Try putting some debugging on the ATM interface and see if that gives you anything to go on.

How do i do that?

In the command line do 'debug <tab>' and it'll show you all the available options. I don't have any Cisco's with an ADSL WIC so can't give you the exact command.

Word of warning though, don't be tempted to do a 'debug all' unless you want the router to crash.

Tried that once for a laugh. Never again :embarassed:

Shouldnt need to be in config for that dude? Anyway, I cant say I'm hot on DSL debugging, but I can paste the options for you/someone else:

hamret-nutts-vpn-01#debug atm ?
arp Show ATM ARP events
bundle ATM VC Bundle
counters ATM Counters/Stats
errors ATM errors
events ATM Events
ilmi Show ILMI events
lfi MLP LFI over ATM PVC
multiuser ATM Multiple users configuration tracking
oam Dump OAM Cells
packet ATM or FUNI packets
pvcd Show PVCD events
state ATM or FUNI VC States
Errors and events would be a good place to start I guess. Then type 'terminal monitor' :)

No need for 'conf t' you're quite right, post edited.

Got home from work and it's actually up and has been since 17:10. Sync speed is a lot lower than normal but it seems quite stable:


CISCO#show dsl interface atm0
ATM0
Alcatel 20190 chipset information
ATU-R (DS) ATU-C (US)
Modem Status: Showtime (DMTDSL_SHOWTIME)
DSL Mode: ITU G.992.1 (G.DMT) Annex A
ITU STD NUM: 0x03 0x2
Vendor ID: 'STMI' 'TSTC'
Vendor Specific: 0x0000 0x0000
Vendor Country: 0x0F 0xB5
Capacity Used: 100% 87%
Noise Margin: 7.0 dB 10.0 dB
Output Power: 20.0 dBm 12.5 dBm
Attenuation: 34.0 dB 18.5 dB
Defect Status: None None
Last Fail Code: None
Watchdog Counter: 0xA7
Watchdog Resets: 0
Selftest Result: 0x00
Subfunction: 0x00
Interrupts: 7977 (0 spurious)
PHY Access Err: 0
Activations: 48
LED Status: ON
LED On Time: 100
LED Off Time: 100
Init FW: embedded
Operation FW: embedded
FW Version: 2.5.42

Interleave Fast Interleave Fast
Speed (kbps): 0 5856 0 832
Cells: 0 200174 0 7127206
Reed-Solomon EC: 0 0 0 0
CRC Errors: 0 19 0 1
Header Errors: 0 11 0 1
Total BER: 0E-0 1305E-10
Leakage Avarage BER: 0E-0 1305E-10

Started messing up again and now i've had to plug in my old router. That isn't 100% stable at the moment either. I have no idea whats wrong, ISP seems to think it's interference from something but the timings make no sense. At a complete loss :(.

Fridges, central heating and so on can cause interference.

The atm stats look okish, your downstream SNR isn't especially healthy and knowing that as sync rate increases, SNR decreases (hence SNR targets and so on), what SNR do you get when it syncs at 7Mbit or whatever it was?

There is nothing in this house that comes on at the times when the connection gets flakey. 17:30 on Mon, 18:30 Yesterday and 16:20 Today. It's pretty much unusable for the rest of the evening until i turn it back on in the morning. My Zyxel has been synced for over 10 mins now but if i switch the cable over to the Cisco it just won't connect. Stats on the Zyxel:

noise margin upstream: 9 db
output power downstream: 19 db
attenuation upstream: 19 db

noise margin downstream: 10 db
output power upstream: 12 db
attenuation downstream: 36 db

The noise margins always used to be bwteen 15 and 20 from what i remember (with previous isp though). I can't believe the Zyxel is so much more robust that it isn't effected by whatever the problem is supposed to be.

What Sync speed is the Zyxel reporting?

What microfilters are you using?

WAN Port Statistics:
Link Status: Up
Upstream Speed: 832 kbps
Downstream Speed: 5408 kbps
Node-Link Status TxPkts RxPkts Errors Tx B/s Rx B/s Up Time
1-PPPoA Up 16017 15076 0 0 0 0:33:05

The router plugs directly into the main incoming wall socket which is in the study. I only have 1 splitter in the house and that's where the phone is in the living room.

So does that mean you have a faceplace with a built-in filter?

The sync speed the Zyxel is reporting and the speeds you reported the Cisco trying to sync at suggests the Cisco is trying to negotiate a faster speed than the line can handle. Back to my previous suggestion (going to need a DSL command-line expert for that).

Nope, you dont need a filter unless you have a phone plugged into the socket.

I think it's dropped like that due to all the swapping i've been doing. Will leave it on for a while and see how it syncs next time, i think it will be higher.

Nope, you dont need a filter unless you have a phone plugged into the socket.
I'd fit one anyway tbh dude. I know what you're saying, but I know guys in the same position as you who've had all their problems vanish with a filter. Not least because anything incoming will upset the connection, phone on the end or not.

I did try one in but it hasn't made any difference to my problem. I've had adsl since it first came out and I've never used a filter before, never had any problems.

I got myself an NTE5 (faceplate filter) from day one. Not regretted that one bit. However, at least in that case the ADSL side does nothing (I've run a phone on the ADSL side without a problem).

Newer filters like the XTE-2005 (http://www.adslnation.com/products/xte2005.php) may well be different.

Been stable for over 2 hours on the Zyxel now.

Back to my previous suggestion (going to need a DSL command-line expert for that).

Found this command:

dsl linerate {kbps | auto }

Will have a play tomorrow and see if it helps.

Seems the Zyxel had problems in the middle of the night:

4 11/23/2006 05:36:39 ppp:IPCP Opening
5 11/23/2006 05:36:39 ppp:IPCP Starting
6 11/23/2006 05:36:39 ppp:CHAP Opening
7 11/23/2006 05:36:39 ppp:LCP Opening
8 11/23/2006 05:36:39 ppp:LCP Starting
9 11/23/2006 05:36:39 ppp:LCP Closing
10 11/23/2006 05:36:39 ppp:LCP Opening
11 11/23/2006 05:36:36 ppp:LCP Starting
12 11/23/2006 05:36:36 board 0 line 0 channel 0, call 37, C02 OutCall Connected 512000 CALL DETAIL RECORD
13 11/23/2006 05:36:36 board 0 line 0 channel 0, call 37, C01 Outgoing Call dev=5 ch=0 CALL DETAIL RECORD
14 11/23/2006 05:36:33 board 0 line 0 channel 0, call 36, C02 Call Terminated CALL DETAIL RECORD
15 11/23/2006 05:35:33 ppp:LCP Starting
16 11/23/2006 05:35:33 board 0 line 0 channel 0, call 36, C02 OutCall Connected 512000 CALL DETAIL RECORD
17 11/23/2006 05:35:33 board 0 line 0 channel 0, call 36, C01 Outgoing Call dev=5 ch=0 CALL DETAIL RECORD
18 11/23/2006 05:35:30 board 0 line 0 channel 0, call 35, C02 Call Terminated CALL DETAIL RECORD
19 11/23/2006 05:34:30 ppp:LCP Starting
20 11/23/2006 05:34:30 board 0 line 0 channel 0, call 35, C02 OutCall Connected 512000 CALL DETAIL RECORD
21 11/23/2006 05:34:30 board 0 line 0 channel 0, call 35, C01 Outgoing Call dev=5 ch=0 CALL DETAIL RECORD
22 11/23/2006 05:34:27 board 0 line 0 channel 0, call 34, C02 Call Terminated CALL DETAIL RECORD
23 11/23/2006 05:33:27 ppp:LCP Starting
24 11/23/2006 05:33:27 board 0 line 0 channel 0, call 34, C02 OutCall Connected 512000 CALL DETAIL RECORD
25 11/23/2006 05:33:27 board 0 line 0 channel 0, call 34, C01 Outgoing Call dev=5 ch=0 CALL DETAIL RECORD
26 11/23/2006 05:33:24 board 0 line 0 channel 0, call 33, C02 Call Terminated CALL DETAIL RECORD
27 11/23/2006 05:32:24 ppp:LCP Starting
28 11/23/2006 05:32:24 board 0 line 0 channel 0, call 33, C02 OutCall Connected 512000 CALL DETAIL RECORD
29 11/23/2006 05:32:24 board 0 line 0 channel 0, call 33, C01 Outgoing Call dev=5 ch=0 CALL DETAIL RECORD
30 11/23/2006 05:32:23 ppp:IPCP Closing
31 11/23/2006 05:32:23 ppp:LCP Closing
32 11/23/2006 05:32:23 board 0 line 0 channel 0, call 32, C02 Call Terminated CALL DETAIL RECORD

WTF is going on? There is exactly 1 minute between the LCP Starting and Call Terminated on 4 occasions. That can't be a coincidence.

You haven't got a Sky box or anything like that on the line, have you?

I have a sky box but never have it plugged in unless i'm trying to ppv.

Time to shout loudly at your ISP then.

Yeah i'm going to get them to do a full test tonight.

Linerate isn't a valid command apparently so i can't force the sync speed.

Zyxel has been synced for 26 hours now. It's definately looking like a problem with the Cisco.

Been having BT checking everything out the last few days and they came to the conclusion it has to be background noise. The engineeer came round today and fitted an NTE5 box to the front of my main socket. Got home, powered up the cisco and so far so good. Line stats are massively improved, no CRC errors at all:


ATM0
Alcatel 20190 chipset information
ATU-R (DS) ATU-C (US)
Modem Status: Showtime (DMTDSL_SHOWTIME)
DSL Mode: ITU G.992.1 (G.DMT) Annex A
ITU STD NUM: 0x03 0x2
Vendor ID: 'STMI' 'TSTC'
Vendor Specific: 0x0000 0x0000
Vendor Country: 0x0F 0xB5
Capacity Used: 100% 85%
Noise Margin: 14.0 dB 11.0 dB
Output Power: 19.5 dBm 12.5 dBm
Attenuation: 33.0 dB 18.0 dB
Defect Status: None None
Last Fail Code: None
Watchdog Counter: 0x23
Watchdog Resets: 0
Selftest Result: 0x00
Subfunction: 0x00
Interrupts: 7658 (0 spurious)
PHY Access Err: 0
Activations: 1
LED Status: ON
LED On Time: 100
LED Off Time: 100
Init FW: embedded
Operation FW: embedded
FW Version: 2.5.42

Interleave Fast Interleave Fast
Speed (kbps): 0 6272 0 832
Cells: 0 11910 0 1548842
Reed-Solomon EC: 0 0 0 0
CRC Errors: 0 0 0 0
Header Errors: 0 0 0 0
Total BER: 0E-0 0E-0
Leakage Avarage BER: 0E-0 0E-0


Hopefuly that will be the end of it.

Yup. NTE5 or XTE2005 is the way to go for these things. I'm getting consistant sync at 7,616,000bps and still have SNR margin to spare. :cool:

Any idea why QoS is unavailable on the 12.4(9)T1 ISO?

QoS is usually only part of the Advanced IP Services feature set, which doesn't seem to exist for the 857.

Ah, the blurb for the router said it could do QoS, quite annoying if it doesnt.

It may do something basic like FWQ with the Advanced Security feature set, but I know for all the other routers I've setup you've needed Adv. IP Services.

Ah well, very unlikely my torrents will use up all my bandwidth anyway. What is FWQ btw?

FWQ = Fair Weight(ed) Queueing. Basically FIFO with a sprinkling of QoS thrown over it.

Thanks, i'll do a bit of reading.

How's this for a basic firewall config?

no acc 101

! allow any established
acc 101 permit tcp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 established

! Torrents
acc 101 permit tcp 0.0.0.0 255.255.255.255 host 10.10.10.1 eq 55896

! PES6
acc 101 permit tcp 0.0.0.0 255.255.255.255 host 10.10.10.1 eq 5739


! all other access
acc 101 deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255

int atm0
ip access 101 in
no ip source-route


Anything obvious i'm missing out? Also how do i turn on packet inspection. Where do i set for the torrent and pes ports to be forwarded onto my pc?

Err, I seem to have totally forgotten how to do NAT type stuff in IOS. PIX OS (or whatever they're calling it today) I can remember, but not IOS.

I've got some old NAT based configs somewhere on a server in the office, but I'm not back there until next month.

Ok no probs, have asked on the other side :).

Still having problems with this :(.

Here's my access list:

ip access-list extended WAN-IN
remark Torrent uses TCP and UDP
permit tcp any host 87.127.112.125 eq 55896
permit udp any host 87.127.112.125 eq 55896
remark PES6
permit tcp any host 87.127.112.125 eq 5739
remark Established
permit tcp any host 87.127.112.125 established
remark DNS
permit udp any host 87.127.112.125 eq domain
remark NTP
permit udp any host 87.127.112.125 eq ntp
remark Log Other
deny ip any any log

Here's how i applied it to the dialer:

interface Dialer0
ip access-group WAN-IN in

Here's the results from show access-list:

Extended IP access list WAN-IN
10 permit tcp any host 87.127.112.125 eq 55896
20 permit udp any host 87.127.112.125 eq 55896
30 permit tcp any host 87.127.112.125 eq 5739
40 permit tcp any host 87.127.112.125 established (653 matches)
50 permit udp any host 87.127.112.125 eq domain
60 permit udp any host 87.127.112.125 eq ntp (9 matches)
70 deny ip any any log (141 matches)

And here's the log:

http://www.cliff-jodie.co.uk/stuff/cisco-log.jpg

I can't browse or ping by name or ip address. The entries show my 2 DNS servers sending on port 53 but they appear to be arriving as random ports, trying 2 then changing again.

EDIT

Just had a thought, is there a command i need to enter to make the cisco act as a dns server? As when i change my pc's tcp settings to point at the router dns stops working.

Got it all working now at last. The DNS was getting stopped as although the source was 53 it's destination was a different port. I changed the DNS bit from:

remark DNS
permit udp any host 87.127.112.125 eq domain

To:

remark DNS
permit udp host 195.74.102.146 eq domain host 87.127.112.125
permit udp host 195.74.102.147 eq domain host 87.127.112.125
permit udp host 195.74.113.58 eq domain host 87.127.112.125
permit udp host 195.74.113.62 eq domain host 87.127.112.125

Which allows it in from 4 possible DNS servers.

Just a little update. Once the connection is stable (sometimes tries a few times) it is rock solid. Not had any drops and only a negligable hit on browsing when downloading torrents. I'm finding that every torrent has more peers / seeds than on my old router, i guess it just couldnt handle them. I had 8 downloading at a total speed of around 380kbps and i would say the browsing speed was increased by a fraction of a second on some pages. Very impressive. Next step is to get syslogging and NTOP sorted :).