• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3681
  • Last Modified:

why occurs DHCP errors in a CIsco switch

Hi everybody.

Its possible that we can have 2 DHCP Servers in a single network? how is the method to avoid conflicts? when the leased time expires could be any kind of problem? how can I avoid it?

thanks
0
pdiazq
Asked:
pdiazq
  • 3
  • 2
  • 2
  • +2
3 Solutions
 
moon_blue69Commented:
What devices you use for DHCP?
0
 
jfrizzellCommented:
Having two DHCP servers has no adverse affects on the network.  What happens is that when a client first comes online, it sends out a discover message looking for a DHCP server.  One, if not both will receive the Discover message and respond with an Offer message.  The first offer message to be received is usually accepted by the client.  The client will then send a Request message telling the first responding DHCP server that it accepts the offer and it also lets the other DHCP server know that its offer will not be used.  At this point, the final message seen would be the Acknowledgment message from the DHCP server to the client.

After about 50 percent of the lease time, the PC will send a renewal message to the DHCP server to extend the lease again.  If no response from the DHCP server, then the PC will send yet another message at about 40 percent of the time remaining on the lease.  At some point, if no response is acknowledge, the client will initiate the DHCP process over again and the first to respond wins the lease.  If the client initiates the lease again, obviously the first DHCP server has failed and the second one will assign a new address.
0
 
pdiazqAuthor Commented:
Hi. The devices we are using as DHCP are cisco switches 6500. They are sending a conflict message:

Sep 24 08:38:28.249 COL: %DHCPD-4-PING_CONFLICT: DHCP address conflict:  
server pinged 172.22.3.125.

This message had appeared with a lot of addresses..
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
jfrizzellCommented:
%DHCPD-4-PING_CONFLICT means an address in the pool is being used somewhere else.  This typically occurs when you do not include an excluded range to prevent the allocation of statically configured addresses.  On the switches, did you configure an excluded range?  You can try issuing the command clear ip dhcp conflict command.  Maybe one of your internal users has configured a static address to their PC.

If you could, paste your DHCP configurations and try the command clear ip dhcp conflict.
0
 
amprantiCommented:
You can do it but is not recommended!
Why?
When client request an IP, will get one answer from the fatser DHCP.
If both DHCP servers provide IP addresses from the same range, many conflict will occur. Example:

2 dhcp servers, both serving 172.22.3.125.0/24 , exclusions for both: 172.22.3.125.1-10
PC1 ask for an IP << DHCP1 provide 172.22.3.125.11 (1st available)
PC2 ask for an IP << DHCP1 provide 172.22.3.125.12 (1st available now)
PC3 ask for an IP << DHCP2 provide 172.22.3.125.11 (1st available) --> CONFLICT!!!!

To solve this problem you can (and provide high availability DHCP service):

- DHCP server different ranges (first DHCP server provide 172.22.3.125.10-127 , second DHCP server 172.22.3.125.128-254)
or
- configure two DHCP servers, using the same storage for saving data
0
 
mahrens007Commented:
can I ask why you have two DHCP servers for the same subnet?
0
 
pdiazqAuthor Commented:
we configured two DHCP to have redundancy..thanks
0
 
pdiazqAuthor Commented:
If we have two DHCP servers, how the servers knows which IP was assigned by the other server to avoid these conflicts?

thanks

regards
0
 
mahrens007Commented:
how many nodes are we talking about?  could you have two different DHCP pools.  For example

Pool 1: .100-.150
Pool 2: .151-.200
0
 
amprantiCommented:
pdiazq:You have to split the the ranges that re being assigned by the servers.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 3
  • 2
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now