[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

DHCP and VLANS,,, MLS switches 4500......

Posted on 2007-07-24
11
Medium Priority
?
489 Views
Last Modified: 2008-02-01
Hello I need help
I have tow routers 3845 RW 1 and 2
,two core 4506 BB1 and 2
,two distributers 4503 DSW1 and 2
,40 access 3560 10/100/1000. sw 1,2,3.......40
all brand new with latest ios version
i connected the two routers to the two backbones X by gig ethernet
the two backbone tot the distributers x also by gig fiber
also i connected the access switches to the two distrubuters with two cables for redundancy.
the distributers are the vtp servers
i have creaqted vlan 10,20,30.....200
vlan 5 managmnet 10.10.5.0 255.255.255.0 int vlan 5
vlan 10 for zone one   10.10.10.0 255.255.255.0
vlan 20 for zone two 10.10.20.0 255.255.255.0
ans so and so
servers vlan 200 10.10.200.0 255.255.255.0  
dhcp server 10.10.200.1 255.255.255.0   in vlan 200 by sure
i have routing eigrp in all distributers and backbone and routers
eigrp 1
network 10.10.0.0   0.0.255.255
there is hsrp between the two links from the backbones to the routers
alp hsrp between the tow links from the distributers to the backbone
=========================================================
how can i make the dhcp erver give the user which connected to the vlan 10 ip address from the range 10.10.10.x
and vlan 20 from range 10.10.20.x and so and so?
also where i have to applay the command if it is the ip-helper

also i need simple configuration to implement NTP in the whole devices router cores distributers and access

thanks
nedal


0
Comment
Question by:nedalsd
  • 6
  • 5
11 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 19555045
Put the ip helper-address on the vlan logical interfaces.

Example:
 interface vlan 10
  ip address 10.10.10.1 255.255.255.0
  ip helper-address 10.10.200.1
interface vlan 20
  ip address 10.10.20.1 255.255.255.0
  ip helper-address 10.10.200.1

For NTP
On BB1 and BB2
 clock timezone EST  <== your time zone
 clock summer-time EDT recurring  <== Daylight savings time if applicable
 service timestamps log datetime show-timezone
 ntp server 12.34.56.7 prefer   <== this should be stratum1 or 2 NTP server
 ntp master 3

On all other switches/routers:
 clock timezone EST
 clock summer-time EDT recurring
 service timestamps log datetime show-timezone
 ntp server 10.10.5.1  <-- BB1
 ntp server 10.10.5.2  <-- BB2
0
 

Author Comment

by:nedalsd
ID: 19555156
very clear answer thanks
but i have issue in my case the communication between the distributers and the core is routing
the links between them not trunk
 the NTP will be carried from the BB to the lower switches?
i am unable to ping the default vlan of the BB 1 or two i just can ping the standby Vrouter
standby 1 and standby 2
now i can telnet the BB1 by 10.10.3.3 and BB2 by 10.10.4.4
i can telnet the dw1 byt the 10.10.5.6
i can telnet the dw2 by the 10.10.5.7
but i can t telnet the bb1 which is 10.10.5.7
also i cant telnet the bb2 whihc is 10.10.5.8


AND please explain this point
 ntp server 12.34.56.7 prefer   <== this should be stratum1 or 2 NTP server

thanks
nedal
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 19555253
If you have communications issues between the switches, then you have to fix that first. Probably won't be able to fix that in this blind forum.

NTP is not "carried" anywhere. The clients querry the listed server(s) and associate with them as long as there is IP connectivity between them.

For the clock master, you want it to get imperical time from an external time source - either your own stratum 2 GPS clock, or from any one of many public NTP sources. Choose either a stratum 1 or stratum 2 clock source. You can Google public time servers and get a list of those available in your own time zone or nearest to you.
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 

Author Comment

by:nedalsd
ID: 19555313
1-i did not said that there is no connectivty but there is L3 communication not layer2
so i can ping and telnet the bb from any place by the ip address of the connected port no by the ip address of the int vlan of the native vlan .
is that good or not please advice

2-
give me the best option for the ip default gate way
for the access
for the distributer
for the backbones
and for the router
right now i have no ip default gate way command in any device but i can reach all the devices from the workstation once i put the ip default gateway 10.10.1.1 or 10.10.2.2 which are the HSRP Vrouter between the two routers and the BBs
is it OK or we should give any switch Ip default gateway for the uper connected port.

Sorry if i am asking too much but u are my only hope to solve these problems.
thanks
nedal
0
 

Author Comment

by:nedalsd
ID: 19555469
HOW ABOUT IF I WANT TO GET THE TIMIING FROM THE Backbone switch itself

Thanks
Nedal
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 19555581
1 - Is it good or not? That depends on what you want. If you don't want other vlans to access the switches by their managment vlan, but they can do anything else, then that is fine.

2. I cannot answer that. I don't know where you have all your L3 interfaces, or even why you are using EIGRP in a L3 switched environment. It is too complicated a question for this blind forum. Generally speaking, if you have all of your L3 interfaces on the 2 BB switches, and you have HSRP running between them, then everything should point to the respective HSRP virtual IP address for each vlan as the default gateway. The BB switches both point to the local firewall/Internet gateway as its default gateway. All other switches should be pure L2 connectivity. Because all L3 interfaces are directly connected, there is no dynamic routing (EIGRP) required.

3. NTP - the configuration that I showed above does indeed set the BB as a master clock source for all of the other devices to get their time from. Thing is - it needs some way to get accurate time for itself. It has zero capability of doing that. Yes, you can manually set the time on it, but it won't be accurate and if you ever cycle power on it the time clock reverts way back to some seemingly random date in the past and since it is the master for the whole network, then there goes everythin. The only way to make sure everything is on the same time is to have at least your master clocks get their clocking from some known good external stratum clock.
0
 

Author Comment

by:nedalsd
ID: 19564866
Hello
1-as i understand the IP Helper will tell the DHCP server to provide any user from this VLAN the same ip addressing Pool
Example
interface vlan 10
  ip address 10.10.10.1 255.255.255.0
  ip helper-address 10.10.200.1
SO the DHCP server will get request from user from vlan 10 and will give him IP ADDRESS from range 10.10.10.X
this command( ip helper-address 10.10.200.1) will do everything or there is something need to be done in the vlan which the server connected to 10.10.200.X

2-regarding the configuration i am trying to follow your recomendation then i will update you about the result once i finished.
thanks for your kind support.
nedal
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 19566690
1 - correct. As long as you have the proper scope setup on the dhcp server for the 10.10.10.0 subnet,  then the ip helper-address is all you need.

0
 

Author Comment

by:nedalsd
ID: 19583123
NOW I will try your suggestions
how can i erase the mls switch and retur it to the default factory configuration.
is it enagh to erase startup,and delete vlan.dat
please confirm.

nedal
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 2000 total points
ID: 19583266
yes
0
 

Author Comment

by:nedalsd
ID: 19587343
can we use the vlan 1(defult vlan)for the first subnet
cutomer want for zone 1 vlan 1      10.20.1.x
zone 2 vlan 2         10.20.2.x
and so and so.
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SSL is a very common protocol used these days when browsing the web.  The purpose is to provide security to communication, but how does it do it?  There are several pieces at work that have to be setup before SSL will even work and it requires both …
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question