Solved

DHCP on a Cisco Catalyst 3750

Posted on 2010-09-20
10
1,547 Views
Last Modified: 2012-06-27
I'm trying to get the DHCP server to work on Cisco IOS. The IOS is 12.2(25)SEE2)  running on a Catalyst 3750 switch.   (We usually us Microsoft DHCP.)

I have a test Vlan (VLAN99) defined.   When I assign a static address (10.67.99.1) to my workstation, I'm able to get everywhere I need to, so the VLAN seems to be set up correctly.    But when I set my nic to use DHCP, I get the default 169.x.x.x address.  It's behaving like the port is on the wrong vlan, but it's the same port that works fine with a static address.

Here's how I have DHCP configured on the Cisco IOS.

ip dhcp pool RESTRICT
   network 10.67.99.0 255.255.255.0
   domain-name restrict.com
   dns-server 10.67.0.7
   default-router 10.67.99.247
   lease 7

The client is Windows XP   SP3.

I'm beginning to wonder if there's something in our Active Directory GPO that only allows us to accept IP addresses from DHCP servers already registered in AD??


0
Comment
Question by:asd-dave
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
  • +2
10 Comments
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 42 total points
ID: 33717642
Remove the workstation from the domain then see if you get an IP address that will determine if Windows Network is causing the issues but I doubt it is the Windows Network.
0
 
LVL 4

Assisted Solution

by:bjove
bjove earned 83 total points
ID: 33718052
use
#debug ip dhcp server events
from console, to check for problems with Cisco DHCP server
0
 
LVL 12

Assisted Solution

by:Rant32
Rant32 earned 83 total points
ID: 33718109
That default router you specified (10.67.99.247), is that the 3750's VLAN interface?

If it's not, I believe that the VLAN interface needs an IP address in the network you use for DHCP so it can bind the DHCP pool to the specific VLAN.

There are no settings I know of to restrict the client to the type of DHCP server you want to use.
0
Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

 
LVL 12

Assisted Solution

by:jjmartineziii
jjmartineziii earned 42 total points
ID: 33722256
Your router must have an IP address on the 10.67.99.0 255.255.255.0 network.

If you don't, you need to use "ip helper-address <ipofyourrouterwithdhcp>" on your gateway's interface for the 10.67.99.0/24 network.

This will work. I use dhcp in this type of environment daily.
0
 

Author Comment

by:asd-dave
ID: 33800140
Thanks all... I was out of the office for a week.

1.  Removing workstation from the domain had no effect.

2.  I entered the debug statement, tried getting an IP address, and got no output.

3.   10.67.99.247 is an IP address of a virtual interface on our core switch.    If I give the workstation a static ip address (say... 10.67.99.5), everything routes as expected.    But just to rule it out, I created another virtual address on the "local" 3750 of 10.67.99.246, and changed the default-router parameter to that address.  (The local 3750 is where dhcp is configured).   This also resulted in no change, and there was no output on the debug screen.

4.  I don't believe we need a helper address because we're dealing with a layer 3 switch, routing is enabled, and the DHCP scope is defined on that same switch.   (So VLAN99 exists on the switch, the scope 10.67.99.0/24 is defined on the same switch, and the port the workstation is plugged into is on VLAN99.   (switchport access vlan 99)

5.  Just to rule out any strange quirks on my workstation, I am now trying it on a different workstation, and getting the same results.

0
 
LVL 4

Assisted Solution

by:bjove
bjove earned 83 total points
ID: 33800417
It seems like the VLAN 99 is not created.
Enter in config mode:
Rounter(config)# Vlan 99
#exit
0
 
LVL 12

Assisted Solution

by:Rant32
Rant32 earned 83 total points
ID: 33801197
ip dhcp-server wouldn't be configured, so it seems, that would explain why there's no debug output.

The right debug statement should be, from: (pdf alert) Catalyst 3750-X and 3560-X Switch Debug Commands

[no] debug platform ip dhcp all|error|event|packet|rpc

You could start with error logging first, then add event and packet until eventually something wrong turns up. It should at least reveal what's going on in the switch.
0
 

Author Comment

by:asd-dave
ID: 33802604
It seems like the VLAN 99 is not created.
Enter in config mode:
Rounter(config)# Vlan 99
#exit

It wouldn't let me because this switch is in vtp client-mode.    I went ahead and issued the command on the switch that's in server-mode.    No difference.

[no] debug platform ip dhcp all|error|event|packet|rpc

I issued the command with "all" to get all information.    Next I put the selected port in vlan 99 and tried to get an IP address.   Ddin't get an IP address, and got no messages from the console.

As an aside, I checked the native vlan.  (Shouldn't matter in this case, but thought I'd check.)     While I know it's not a good practice, the native vlan is 1 on all switches.

Guess I'm not missing something obvious??  
0
 

Author Comment

by:asd-dave
ID: 33809882
Thanks everyone for your help.   I knew it had to be something simple.   I logged a case with Cisco, and the tech saw that I didn't have the DHCP service turned on.   (If I didn't see a line in the config that said "no service dhcp", I didn't know to turn it on.)    In global config mode, I entered "service dhcp" and everything magically worked!
0
 

Author Closing Comment

by:asd-dave
ID: 33809902
Cisco TAC solved question.  But thanks everyone for your help.
0

Featured Post

WordPress Tutorial 2: Terminology

An important part of learning any new piece of software is understanding the terminology it uses. Thankfully WordPress uses fairly simple names for everything that make it easy to start using the software.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question