i'm having troubles with a DHCP server, which is unable to give IPs to hosts that are on a different VLAN than the server.I have this little scenario, one L3 switch (SGE2010-48 without PoE) with 7 different VLANs configured in[CODE]
View 3 Replies
How to configure DHCP server if i have 2 vlans. I know how to configure rest of the network, just i don't know server.I use packet tracer and i attached file with my network. PC1 is on VLAN1 and PC2 is on VLAN2.I want ip addresses in vlan1 to be from 192.168.1.2 and in vlan2 from 192.168.2.2. I would like to do it just like in the designed network, without router.
View 5 Replies View RelatedI'm trying to configure a dhcp service on a router for some vlans.I would like to give the range 172.16.0.0 - 172.16.10.255 to vlan 10, 172.16.20.0 - 172.16.20.255 to vlan 20.for some reason it doesn't work?here's the config.
ip dhcp excluded-address 172.16.0.1
ip dhcp excluded-address 172.16.20.1
ip dhcp excluded-address 172.16.30.1
ip dhcp pool vlan10
network 172.16.0.0 255.255.0.0
[code]...
Setup a WAP321 with the new 1.0.1.10 firmware. Setup 2 SSIDS:
WIRELESS (vlan:1)
GUEST (vlan:99)
The wap is plugged directly into a port on my router so I configured the port and additional vlan99 port. I have a DHCP scope assigned on the router to both the port and port.99 interfaces.clients on WIRELESS have no problem and work correctly, however when a client joins guest...a packet capture on the router port shows that a dhcp request is being received for the same MAC on both untagged and tagged 99 interfaces....thus it appears the WAP is not handling the vlans properly
16:07:10.566932 PortA, IN: IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 84:c9:b2:78:fc:31, length 331
16:07:10.566947 PortA.99, IN: IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 84:c9:b2:78:fc:31, length 331
I can not get dhcp to work.I can ping from the switch to both vlans...
here is my config for the router.....
Router is a 1760
Current configuration : 1379 bytes
!
version 12.4
service timestamps debug datetime msec
[Code]....
I have two 3560x Catalyst switches setup between two different locations. They link via a PTP line (Layer 2). I have setup Intervlan routing between the switches and that works fine.Each location has a separate subnet and a Windows DHCP server for each subnet.I want to block any DHCP requests to be sent from hosts on one subnet to the DHCP server on the other side (i.e across the PTP link) What is the best method to do this?
View 5 Replies View RelatedWe have been set the task of securing a small managed office system which is currently set up with a standard switch allowing each of the offices (containing different companies) to see each other, and in some cases, access each others documents across the network.
Obviously this is a far from adequate set up and our aim is to isolate each office using VLAN's but share a common internet connection provided by the managed offices. We have two Cisco SGE2000-G5 layer 3 switches but we are new to Cisco equipment and VLAN's so we are not quite sure on how to implement this. DHCP would need to be provided by a Router, there is no Server. We are open to suggestions on the Router as we have yet to purchase one.
I can't seem to find any info on how to configure 2 DHCP server pools on a C3750, to use with 2 user vlans. The purpose is that users in vlan 1 should get an IP address from DHCP server1, and users in vlan 2 should get an IP address from DHCP server2. Both DHCP servers are configured in a stack of C3750 switches, which acts a a L2 switch.
View 2 Replies View RelatedI am trying to setup my 3550 layer 3 switch to do hand out dhcp addresses for different vlans. It is connected to my router address 192.168.1.1. I setup a new vlan 3 and the dhcp pool.. The client gets a 192.168.3.2 address but am not able to ping the router and other clients and get out to the internet.
Here is the config that I have. I deleted the other ports because I am not using them. The vlan 3 client is on port fast Ethernet 0/17 and the router is connected to the fastethernet 0/1.
version 12.2
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
[code]....
I have several Cata 3500XL switches connected to one 1 HP L3 switch which is connected Sonicwall router. Vlan1 has subnet of 10.10.0.0/24 and Microsoft DCHP server lays inside VLAN1.
Now i want to add VLAN11 (192.168.10.0/24) as second data VLAN but DHCP requests should go to microsoft DCHP server.
This is what i did:
Configured VLAN11 IP on each cisco switch
IP default gateway with IP from other subnet (i guess this is bad since maybe it should be IP of VLAN11 on HP L3 switch?)
Trunk ports are configured to pass everything on cisco switches
On VLAN11 i configured IPhelper IP to be MS DHCP server on each Cisco switch
I haven't tested this yet but i have problem in process.I can't ping VLAN11 IPs between switches (i configured VLAN1 and VLAN11 with IP). When client plugs computer to a port that belongs to VLAN11 will i be sure that client will get IP from the 192.168 range or there is possiblity that he gets IP from the management VLAN range?
I have the followint setup:
VLAN1 = 10.1.10.1
VLAN2 = 10.1.11.1
Inter WLAN routing is enabled on both VLANS
I have VPN PPTP set to 10.1.10.50-60
When I connect the VPN I get an IP address of 10.1.10.55 I can ping the 10.1.10.x network i cannot ping anything in the 10.1.11.x network.
I need to be able to see (ping/access by IP) both VLANs from a VPN PPTP connection.
I've been searching high and low and although I've found many results of people having this same exact problem there doesn't seem to be a fix, or at least no one was kind enough to post one. I have many vlans but the 3 in question are 10, 20, 30.
-10 is for my laptops and desktops with an ip range of 192.168.10.10 - 192.168.10.50.
-20 is my home automation network with an orange of 192.168.20.20 - 192.168.20.150
-30 is my guest network with a orange of 192.168.30.84 - 192.168.30.89
I have a dell powerconnect configured with vlans as my core switch. I trunked a port on the switch assigning 3 vlans (10,20,30) and connected it to port 1 on the wrvs4400N. On the wrvs4400 I trunked port 1 tagging vlan 10,20,30. For some reason vlan 1 is untagged on port 1 and I don't know why. I also have a router connected to the powerconnect. Of the 3 vlans I mentioned vlan 10 and vlan 30 are the only ones with interfaces on the router. Vlan 20 is an internal network with a separate router and until I figure this out that router is physically turned off. Also the router currently turned on has no routes configured to connect my vlans. Currently there is no configured way to jump vlans.
No matter what ssid I connect to I get a dhcp response from vlan 10. all my test indicates that I'm actually on vlan 10. I get internet and I can hit all devices on vlan 10. If I connect to ssid guest and change my ip address to match vlan 30 I can not ping the gateway for vlan 30 and I have no internet access. Some times I get something different. Sometimes I get an ip address from vlan 1 on the powerconnect. If I renew my ip address then I'll grab one from vlan 10 but I should be getting one from 30 or none at all for vlan 20. The absolute crazy part is my droid sometimes gets a 192.168.4.x ip address. I don't have a 192.168.4.x network or dhcp scope anywhere on my network! If I physically plug into a port on the power connect I get to the correct network 10 out of 10 times. If I configure vlans on the other 3 ports on the wrvs4400 and physically plug in, I get to the correct network 10 out of 10 times. I've reset to factory a few times and I've been all inside and out of the wrvs4400. I have no clue what could be wrong with this thing.
the objective is to set up 2 vlans, one of which is a wireless access point connecting to our company network which is behind our firewall. the other is a wireless access point for admins and selct people to connect directly to the internet, bypasing all network devices and firewall. i am unable to get tech support unless i buy a contract for $800. I currently have it working and vlans setup but they both hook into the company network.
View 3 Replies View RelatedHow to get vlans working properly between sub-interfaces on a ASA and a trunk port on a switch.There seems to be issue with the VLAN's being assigned to the correct VLAN and this information being properly sent to the ASA over the trunk.
We seem to be unable to ping most of the interfaces except for one on the switch. Sometimes if we are lucky we are able to ping a host on a different vlan that is on the switch. This seems sparadic at best.
Logs on the ASA show traffic does not seem to be assigned properly to the correct sub interface. We have access rules on the ASA disallowing traffic not part of the same vlan. For example you will see networkA blocked on networkB when it really should be directed through networkA's sub interface.
Any example commands for the ASA and Switch for at least the basic requirements to enable all the VLAN's to communicate properly with the ASA?
My question is if I can configure 3 ssid, for 3 different VLAN and add the DHCP address from a WAP4410N AP, when you upgrade to the latest version of IOS I can have this functionality?
View 2 Replies View RelatedIs it possible to have multiple dhcp pools for multiple VLANs? The switch is a 6509 and/or 4506 catalyst. I don't want to use server-based products.
View 5 Replies View RelatedI have a Cisco 877W in place with an ADSL connection, which is working fine. However I cannot get it to hand out a DHCP address. If I associate with the AP over wireless then set a static IP I have full connectivity, similarly if I connect over Eth0 and set a static IP I have full connectivity. So it does just seem to be DHCP. Below shows my config... Any thoughts on the issue? Is it access-list related?I have checked with Wireshark and I see the DHCP request being sent out, but I don't see a DHCP offer being returned
View 4 Replies View RelatedMy team and I are having issues getting this configuration to work. We are using a 2811 Cisco router in class and the DHCP is not working. All other configurations for the other 2 routers are working but those were the easy ones. [code]
View 9 Replies View RelatedI've an 877W with four V LANS, All bridged (group) onto a BVI which is bonded to ATM etc for ADSL:
c870-advipservicesk9-mz.124-15.T5.bin"
1 is the backbone, and for the switch, and has DHCP running and working with no problems - x.y.1.z . Multicast is enabled so that various multimedia bits of kit can find each other.
2 is the "primary" WiFi, which has android devices as they cannot handle SSID not being broadcast or devices that can only do wep.(WiFi radio) it has DHCP, x.y.2.z which works fine. Multicast is enabled so that various multimedia bits of kit can find each other.
3 is a secondary WiFi for the kids, "hidden" ssid. They are fire walled so that bugs can't infect any other windows PC DHCP x.y.3.z.
4 Is a secondary WiFi for our laptops, "hidden" ssid .
For some reason, DHCP is not working on 4. it was working until the good lady of the house quizzed why her net was not working... I've concentrated on vlan4, as there are no "local" access-lists definitions to stop anything. I've enabled debug ip dhcp server, and can see requests serviced on Vlan2, but not on 4, I've enabled/re enabled encryption/ shields on Vlan4, but still can't see dhcp requests arriving and do not see them being stopped somewhere. I can see that the station authenticates OK, but if I connect the same laptop to v lan 02, requests pour in and are answered, proving it's maybe not a Microsoft problem.
Let me just say, I'm more or less self taught with the the net, no real mentoring, so 'think' I have the general idea of the different layers, access-lists etc. so this config is probably not ideal, but it works.
version 12.4
no service pad
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
[code]....
How to check dhcp if not working
View 1 Replies View RelatedI'm using TP Link router. I went to DHCP reservation list and provided mac address of a computer and ip address to reserve the ip address for the computer. But it still not changing my current ip address. I rebooted router, rebotted computer, but it still not changing to the reserved ip.
View 3 Replies View RelatedWE have to deploy ASA5585 in between User vlans & server vlans. we have to find all the ports that needs to be opened on firewall. any tools to do same.
View 2 Replies View RelatedI am trying to configure the DMZ on my SA520 router but without success.After a lot of tests I reduced everything to a very simple test case that is not working: I setted the "Optional Port Mode" to "DMZ" and enabled "DHCP Server" in the "DMZ Configuration", but DHCP on the DMZ does not assign any address.I am wondering if my optional port is broken or not.
View 4 Replies View RelatedI have a Cisco IE-3000-8TC running 15.0(2) EY1 IES-IPSERVICESK9-M. I am trying to configure the switch to auto configuration (download only the configuration file and not the software image) via DHCP from a combination DHCP/TFTP server. When I configure the switch with the commands (on initial configuration): Code...
View 1 Replies View RelatedI have a RVS4000 witch I use as router, and DHCP server. I have a WAP321 witch I have configured SSID with one VLAN. Both devices have fixed IP address. I can connect computer to the wifi access point. But the computer cannot get an IP address from the DHCP server of the RVS4000. If I set the IP configuration manually, it can get an access to the network and Internet.
With another wifi access point it works, the computer get an IP address for the DHCP.
What should I have to do to make my DHCP server works with my wifi access point ?
We have a single SGE2010 in layer 3 mode switch with a Server 2008 DHCP server.
We will be implimenting a Voip netowork where the PC's connect to the voip phone. I would like to create another vlan - 10. I have created the vlan and assigned the IP on the swtich.
Routing seems to be working. I can ping both IP addresses of the switch on either vlan.
I cannot get DHCP working. In the SGE switch I have enabled DHCP Relay, enabled option 82, set my DHCP Interface as VLan1, and specified the DHCP servers IP address. On the ports I have set the port where the DHCP server connects to as a trunk port with Vlan 1 untagged and vlan 10 tagged. I have set the ports where the phones connect as a trunk port with vlan1 untagged and vlan 10 tagged.
I recently upgraded from a WRT54G and am having issues with a Win7 PC with wireless-N. Initially I had it configured static at 192.168.100.100 and everything worked, but the speeds were miserable (I followed all the forum posts and recommended settings). I noticed in the Status section of the router pages that the system showed up with the correct MAC address, but the IP showed as 192.168.100.10, which is the same as the router. Assuming this might be causing issues, I set a reservation for the system at .100 and set the client to use DHCP. However, now it won't pull an IP address at all. The status pages show the client with the correct MAC address, but an IP of 0.0.0.0. I've verified the MAC address a dozen times and rebooted the router and the client dozens of times with no change. Even when I removed the reservation, the system won't pick up an IP. I have a wireless-G client that's pulling an IP fine, so I know it's sort of working. The wired LAN is working fine, too. There are no IP conflicts, either. I changed DHCP to 'Always Broadcast (compatibility for some DHCP clients), but no change there, either. The client sees the network and still has a good signal, but just won't grab an IP.
I'm running Hardware Version: B1 / Firmware Version: 2.01NA
I have a new 5508 that I am setting up. My first one from scratch.
Interfaces:
managment -> 10.10.10.10 ->dhcp 10.10.10.1
voice -> 10.10.7.1 ->dhcp 10.10.10.1
guest -> 192.168.1.2 ->dhcp 192.168.1.2
Local DHCP (via the 5508) is for the guest network while the management and voice use the Windows DHCP server.
My problem, Voice and guest work fine. I have two SSID's (one 802.1X and the other PSK) that use the management interface that will not get an IP. I have enabled dhcp proxy from the cli on the controller. I tried with the management VLAN tagged and untagged.
setup a DHCP server on a WLC 2504. I'll try to resume my configuration:
I have 2 networks: inside users (vlan 1) and external users (vlan)
My controller uses the port 1 to connect to the switch, which has a trunk with WLC.
I have two routers, one using vlan 1 (192.168.3.0/24) and one using vlan 10 (200.X.X.X). All ports to these routers are access ports on their respective vlans.
I have 2 SSID, one for inside, other to outside. Inside is working very well.
To the outside I created a DHCP escope and already set the IP of the management interface 192.168.3.119.
Managemente interface (vlan 1 inside): 192.168.3.119/24
Outside interface (vlan 10): 200.X.X.195 - Default gateway 200.X.X.X.193
I alredy checked the DHCP Proxy in Advanced option.
See the output of the debug client:
(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >
[Code].....
I'm having troubles with this firmware in a SG300-28 switch. Actually the DHCP server, a new feature in this firmware release, doesn't work correctly. DHCP static reservations are not working: CLient ID and MAC address are not recognized correctly, and the DHCP server assigns the first free IP in the pool, rather than the reserved one.If Cisco engineers read this, plese correct the issue.
View 5 Replies View RelatedI seem to be having a problem with DNS name resolution after configuring my router (Cisco 3725 running IOS image: c3725-adventerprisek9-mz.124-25.bin) for handling DHCP requests.
Before I made the change, everything was working correctly; I could ping Google.com from a computer inside my LAN and would get response from one of Google's public IP's like normal.
I had a separate DHCP/DNS server running Windows Server 2008 handling the DHCP request and DNS queries.
When I made the change, I turned off the DHCP/DNS server and issued the following DHCP commands to my router:
Code...
So I have a 2600 that I have configured three sub interfaces on. FA0.0.1 is set for DHCP and supports VLAN 1. FA 0/0.2 for Voice, FA 0/0.3 for Data. I have this router interface plugged into FA 0/24 on my 3550 and the 3550 is configured as a dot1Q trunk (I have attached configs for RTR and SW).I have most ports configured as access VLAN 1 which is where i have my ISP connection plugged FA0/1 on the 3550. When I connect the service provider link FA0/0.1 never picks up an address. If I take my internal DHCP server and connect it to FA0/1 of the 3550 it snags an address almost immediately.In my mind this validates that my config is fine. I also took the same cable from the service provider cable modem and connected it to my laptop and the laptop is pulling DHCP.
View 4 Replies View RelatedI am upgrading from 3750-E IOS 12.2 to 3750-X IOS 15.0
I have a dhcp pool set up to give out an ip address based on the Physical port of the switch. I also have it configured to give out "reserved only" addresses.
The configuration works when i plug a dhcp device in the 3750E. (IOS12.2) The configuration does not work when i use the same config on 3750X (IOS15)
When i debug dhcp, i see the DHCP discover message come in, but no offers or anykind of response from the 3750X.
If i remove the "reserved only" line the switch gives out IPs, but of ocurse not the ones i want. I did that to prove both the client and the switch can give out an IP.
So i have a feeling the subscriber-id client-id interface name mapping is not right, or not created.
Here is a snippet of config.
!
no ip dhcp use vrf connected
ip dhcp use subscriber-id client-id
ip dhcp subscriber-id interface-name
[Code]......
