[c-nsp] DHCP problems trunked C2924 to C1841
Aaron Riemer
aaronis at people.net.au
Thu Aug 23 09:20:15 EDT 2007
Hi,
You are excluding the wrong addresses with the ip dhcp excluded-address
command. You need to exclude the router ip addresses for each subnet. Also
make sure the dhcp service is running with the 'service dhcp' command.
Aaron.
-----Original Message-----
From: Moerman, Maarten [mailto:m.moerman at marktplaats.nl]
Sent: Thursday, 23 August 2007 8:56 PM
To: Simon; Aaron Riemer; cisco-nsp at puck.nether.net
Cc: Aaron Riemer
Subject: RE: [c-nsp] DHCP problems trunked C2924 to C1841
Yes,
I have IP helper addresses on the vlan interfaces on the switch.
See this snippet:
interface VLAN2
description vlan 2
ip helper-address 172.23.0.1
no ip directed-broadcast
no ip route-cache
shutdown
!
Only... the vlan interface stays down, but that makes sense, cause it is
not a L3 switch. Am wondering if that might be the problem... but such a
simple thing as a DHCP request should pass.. And... All the vlan's are
directly connected to the router, so a helper-address wouldn't even be
needed, as the requests should arrive over the trunk to the subinterface
on the C1841.
And yes, there is connectivity with static IP's, everything is working
on static IP's, but dhcp request don't arrive.
maarten
--
Network Engineer | eBay / Marktplaats.nl Randweg 25 | 8304 AS Emmeloord
E-mail: mmoerman at ebay.com | Mobile: +31 6 55 1 222 47
-----Original Message-----
From: Simon [mailto:info at pitwood.org]
Sent: Thursday, August 23, 2007 2:49 PM
To: 'Aaron Riemer'; Moerman, Maarten; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] DHCP problems trunked C2924 to C1841
Something else you should check is the IP-helper address will need to be
enabled if you are using one DHCP server
Simon
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Aaron Riemer
Sent: 23 August 2007 13:45
To: 'Moerman, Maarten'; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] DHCP problems trunked C2924 to C1841
Hi there,
You mention you have a problem with DHCP. Does this mean that you have
connectivity when assigning static IP's to workstations on each
respective
vlan?
If not I would check two things.
1. The native vlan of the switch is vlan 1 (should be by default)
2. Check that all vlan's are allowed over the trunk.
Cheers,
Aaron.
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Moerman, Maarten
Sent: Thursday, 23 August 2007 7:54 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] DHCP problems trunked C2924 to C1841
Hello,
I've got a little problem on my home network regarding DHCP.
I have a C1841, and a C2924XL, which have a trunk between them.
I've setup 3 vlans, everything is working fine , however I can't get to
get DHCP working on the C1841. I'd like to have the first vlan dhcp
being served by a linux server (will be moved to the cisco in the
future), and the 2nd and third vlan dhcp being served by the C1841.
This is my config:
FastEthernet0/22 of the C2924XL is connected to FastEthernet0/0 of the
C1841.
ip dhcp excluded-address 172.24.0.2
ip dhcp excluded-address 172.24.0.3
!
ip dhcp pool buren
network 172.24.0.0 255.255.255.0
default-router 172.24.0.1
dns-server 212.142.28.66
!
ip dhcp pool maarten
network 172.25.0.0 255.255.255.0
default-router 172.25.0.1
dns-server 212.142.28.66
!
interface FastEthernet0/0.1
encapsulation dot1Q 1 native
ip address 172.23.0.1 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip route-cache
!
interface FastEthernet0/0.2
encapsulation dot1Q 2
ip address 172.24.0.1 255.255.255.0
ip access-group 124 in
ip nat inside
ip virtual-reassembly
no ip route-cache
!
interface FastEthernet0/0.3
encapsulation dot1Q 3
ip address 172.25.0.1 255.255.255.0
ip access-group 125 in
ip helper-address 172.23.0.1
ip nat inside
ip virtual-reassembly
no ip route-cache
!
access-list 124 deny ip 172.24.0.0 0.0.0.255 172.23.0.0 0.0.0.255
access-list 124 deny ip 172.24.0.0 0.0.0.255 172.25.0.0 0.0.0.255
access-list 124 permit ip 172.24.0.0 0.0.0.255 any
access-list 125 deny ip 172.25.0.0 0.0.0.255 172.23.0.0 0.0.0.255
access-list 125 deny ip 172.25.0.0 0.0.0.255 172.24.0.0 0.0.0.255
access-list 125 permit ip 172.25.0.0 0.0.0.255 any
And of course a lot of other things which aren't interesting for this
audience. ACL's arent' the problem I think, because with debugging I
don't see them hitting the ACL's.
This is my C2924Xl config:
interface VLAN1
ip address 172.23.0.3 255.255.255.0
no ip directed-broadcast
no ip route-cache
!
interface VLAN2
description vlan 2
ip helper-address 172.23.0.1
no ip directed-broadcast
no ip route-cache
shutdown
!
interface VLAN3
description vlan 3
ip helper-address 172.25.0.1
no ip directed-broadcast
no ip route-cache
shutdown
!
interface FastEthernet0/21
switchport access vlan 2
spanning-tree portfast
!
interface FastEthernet0/22
switchport trunk encapsulation dot1q
switchport mode trunk
end
If I set all the debugging info there is, I cannot see any request for
vlan2 + 3 passing by.
Anyone have a clue?
--
Network Engineer | eBay / Marktplaats.nl Randweg 25 | 8304 AS Emmeloord
E-mail: mmoerman at ebay.com | Mobile: +31 6 55 1 222 47
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list