[c-nsp] Problem with DHCP over wireless on 1811W

Ingimar Jónsson ingimar at hi.is
Wed Aug 19 06:49:18 EDT 2009 

Hi all.

This is my first post to this list so please bear with me.
I'm trying to configure a 1811W to act as a DHCP relay for its wireless
AP.
The scenario is like this;

The 1811W is located in a remote office and forwards RADIUS and DHCP to
local servers.
DHCP is working on FastEthernet ports on the 1811.
Clients get RADIUS authentication on the AP.
No DHCP traffic comes from the AP on the 1811.
If I put a static ip address on a client connected to the AP, it can't
ping anything.

The config on the 1811W is like this (the crucial part I think):

dot11 ssid TEST
   vlan 110
   authentication open mac-address rad_mac 
   accounting rad_acc
   guest-mode
   infrastructure-ssid
!
dot11 aaa authentication mac-authen filter-cache
dot11 holdoff-time 300
ip source-route
!
ip cef
<SNIP>
ip dhcp-server X.Y.165.53
!
no ipv6 cef
multilink bundle-name authenticated
!
vtp mode transparent
!
vlan 110
 name testing
!
ip ssh version 1
bridge irb
!
interface Loopback0
 ip address X.Y.160.21 255.255.255.255
!
interface FastEthernet0
 description Testing
 ip address X.Y.69.167 255.255.255.0
 no ip redirects
 no ip proxy-arp
 ip pim sparse-dense-mode
 ip cgmp
 ip ospf authentication
 ip ospf authentication-key 7 135C470705051C737B
 duplex auto
 speed auto
!
interface FastEthernet1
 no ip address
 shutdown
 duplex auto
 speed auto
!
interface FastEthernet2
 switchport access vlan 110
!
<SNIP>
!
interface Dot11Radio0
 no ip address
 no ip route-cache cef
 no ip route-cache
 no dot11 extension aironet
 !
 encryption mode wep mandatory 
 !        
 encryption vlan 110 key 1 size 40bit 7 XXXXXXXXX transmit-key
 encryption vlan 110 mode wep mandatory 
 !
 ssid TESTING
 !
 speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0
36.0 48.0 54.0
 channel 2437
 station-role root
 rts threshold 2312
!
interface Dot11Radio0.110
 encapsulation dot1Q 110 native
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Dot11Radio1
 no ip address
 shutdown
 speed basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
 station-role root
!
interface Vlan1
 no ip address
 ip tcp adjust-mss 1452
 shutdown
!
interface Vlan110
 ip address X.Y.72.206 255.255.255.240
 ip helper-address X.Y.165.53
 no ip redirects
 no ip proxy-arp
 ip pim sparse-dense-mode
 ip cgmp
 no autostate
!
interface BVI1
 no ip address
 ip helper-address X.Y.165.53
 no ip route-cache cef
 no ip route-cache
!
no ip forward-protocol nd
ip forward-protocol udp bootpc
ip route 0.0.0.0 0.0.0.0 X.Y.69.254
!
<SNIP>
!
bridge 1 protocol ieee
bridge 1 route ip

Thanks
Ingimar Jonsson

More information about the cisco-nsp mailing list