troubleshooting Question

DHCP not working on 2960 trunked to 2801 with sub-interfaces

Avatar of jplagens
jplagensFlag for United States of America asked on
RoutersNetworking Hardware-OtherSwitches / HubsNetworking ProtocolsNetwork Operations
9 Comments1 Solution3523 ViewsLast Modified:
I don't know if I'm going crazy or what, but I can't get DHCP to hand me an IP address on VLANs configured on a 2960 switch.  I've set this up many many times on 2950s, 3550s, 3750s, etc and it works.  For some reason this 2960 switch is not cooperating.

Basically I have a 2960 that I'm going to play around with.  I configured a 2801 router with the DHCP pools and the appropriate sub-interfaces.  I created the vlans on the 2960 switch and created a trunk to the 2801 router.  For testing I assigned port 14 on the switch to a vlan.  I should be able to plug a laptop in and grab an IP address. However, it won't grab an IP address.  If I statically assign an IP address I can ping the corresponding sub-interface gateway on the router.  Very stange.  I hope I'm just missing something very obvious.

Here are the configs:
2801 ROUTER

Current configuration : 4470 bytes
!
! No configuration change since last restart
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname 2801RTR
!
boot-start-marker
boot-end-marker
!
!
enable secret 5
!
no aaa new-model
clock timezone CST -6 0
clock summer-time CST recurring
dot11 syslog
ip source-route
!
!
!        
no ip dhcp use vrf connected
ip dhcp excluded-address 172.16.2.1 172.16.2.10
ip dhcp excluded-address 172.16.11.1 172.16.11.10
ip dhcp excluded-address 172.16.11.100 172.16.11.254
ip dhcp excluded-address 172.18.11.1 172.18.11.10
ip dhcp excluded-address 10.1.1.1 10.1.1.10
ip dhcp excluded-address 192.168.11.1 192.168.11.9
!
ip dhcp pool voice
 network 172.16.2.0 255.255.255.0
 option 150 ip 172.16.2.1
 default-router 172.16.2.1
!
ip dhcp pool data
 network 172.16.11.0 255.255.255.0
 dns-server 172.16.11.100
 default-router 172.16.11.1 255.255.255.0
 domain-name etechxp.local
 lease infinite
!
ip dhcp pool test
 network 172.18.11.0 255.255.255.0
 dns-server 8.8.8.8 208.67.222.222
 default-router 172.18.11.1 255.255.255.0
 lease 7
!
ip dhcp pool lab
 network 10.1.1.0 255.255.255.0
 dns-server 8.8.8.8
 default-router 10.1.1.1 255.255.255.0
 lease 7
!
ip dhcp pool mgmt
 network 192.168.11.0 255.255.255.0
 default-router 192.168.11.1 255.255.255.0
 lease infinite
!
!
ip cef
no ip domain lookup
ip domain name
ip name-server 8.8.8.8
no ipv6 cef
multilink bundle-name authenticated
!
!
!
!        
!
!
!
!
!
!
voice-card 0
!
crypto pki token default removal timeout 0
!
!
ip ssh version 2
!
!
!
!
!
interface FastEthernet0/0
 description To ASA 5505
 ip address 10.0.10.2 255.255.255.252
 ip nat outside
 ip virtual-reassembly in
 duplex auto
 speed auto
!
interface Service-Engine0/0
 no ip address
 shutdown
!
interface FastEthernet0/1
 no ip address
 duplex auto
 speed auto
!
interface FastEthernet0/1.10
 description Native VLAN
 encapsulation dot1Q 10 native
 ip address 192.168.11.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface FastEthernet0/1.100
 description Voice VLAN
 encapsulation dot1Q 100
 ip address 172.16.2.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface FastEthernet0/1.200
 description Data VLAN
 encapsulation dot1Q 200
 ip address 172.16.11.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface FastEthernet0/1.500
 description Test VLAN
 encapsulation dot1Q 500
 ip address 172.18.11.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
interface FastEthernet0/1.600
 description Lab VLAN
 encapsulation dot1Q 600
 ip address 10.1.1.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly in
!
no ip classless
ip forward-protocol nd
!
!
ip http server
no ip http secure-server
ip http path flash:
ip route 0.0.0.0 0.0.0.0 10.0.10.1
!
!
!
!
control-plane
!
!
voice-port 0/0/0
!
voice-port 0/0/1
!
voice-port 0/0/2
!        
voice-port 0/0/3
!
!
!
mgcp profile default
!
!
!
!
telephony-service
 max-conferences 4 gain -6
 transfer-system full-consult
!
!
!
line con 0
 logging synchronous
 login local
line aux 0
line 66
 no activation-character
 no exec
 transport preferred none
 transport input all
 transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
line vty 0 4
 exec-timeout 15 0
 logging synchronous
 login local
 transport input ssh
line vty 5 15
 exec-timeout 5 0
 logging synchronous
 login
 transport input ssh
!
scheduler allocate 20000 1000
ntp master
ntp server 128.138.141.172
end
-------------------------------------------------------------------------------------------------------------------------------------
Catalyst 2960:

Current configuration : 4747 bytes
!
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname SW01
!
boot-start-marker
boot-end-marker
!
enable secret 5
!
!
!
no aaa new-model
switch 1 provision ws-c2960s-24ps-l
!
!
!        
!
crypto pki trustpoint TP-self-signed-713166720
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-713166720
 revocation-check none
 rsakeypair TP-self-signed-713166720
!
!
crypto pki certificate chain TP-self-signed-713166720
 certificate self-signed 01
  30820241 308201AA A0030201 02020101 300D0609 2A864886 F70D0101 04050030
  30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
  69666963 6174652D 37313331 36363732 30301E17 0D393330 33303130 30303233
  345A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
  532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3731 33313636
  37323030 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
  BAB805E3 F4D224C5 1428CADF 4C4E5414 C63247C6 F9A52E92 FF49D526 464AA149
  838C6CAC 076F8FE4 BE1BD6CC 969AC7B3 34F09BB4 A226D190 66BF7A5D 564E3FFD
  793B93A8 4F01FCF4 E455B495 7C557150 B5CF50DA 8E28636A C2125C91 20B68A72
  DDB9E6C3 0C3AD50E 68368445 44537BFC FD952F75 BC1674DE E85B1508 8FB37193
  02030100 01A36B30 69300F06 03551D13 0101FF04 05300301 01FF3016 0603551D
  11040F30 0D820B45 54454348 2D535730 312E301F 0603551D 23041830 168014C5
  98D72D2E 3CA712D9 BDC3917C 460336B3 F2D1C830 1D060355 1D0E0416 0414C598
  D72D2E3C A712D9BD C3917C46 0336B3F2 D1C8300D 06092A86 4886F70D 01010405
  00038181 00539909 55DE7C2E 2FBCFACC 7F921D5A 6655660A 06380C6A A53E1197
  1C2EBA53 B01A5EEF 3626F41F FD63A317 100D341C 764DE96E 85E1383C F122A259
  F36772EF 0BA69E9F BA85165D 35745E8D B51195B0 BA981474 559C5D7D D4A55EEE
  50085234 022992BF A10CF20F 7F944094 7ADB3E27 CD7AE7F2 8319D826 3B975603
  622168F7 F9
  quit
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
vlan internal allocation policy ascending
!
!
!
interface FastEthernet0
 no ip address
 shutdown
!
interface GigabitEthernet1/0/1
!        
interface GigabitEthernet1/0/2
 description Trunk to 2801 Router
 switchport trunk native vlan 10
 switchport mode trunk
!
interface GigabitEthernet1/0/3
!
interface GigabitEthernet1/0/4
!
interface GigabitEthernet1/0/5
!
interface GigabitEthernet1/0/6
!
interface GigabitEthernet1/0/7
!
interface GigabitEthernet1/0/8
!
interface GigabitEthernet1/0/9
!
interface GigabitEthernet1/0/10
!
interface GigabitEthernet1/0/11
!        
interface GigabitEthernet1/0/12
!
interface GigabitEthernet1/0/13
!
interface GigabitEthernet1/0/14
 switchport access vlan 500
 switchport mode access
 spanning-tree portfast
!
interface GigabitEthernet1/0/15
!
interface GigabitEthernet1/0/16
!
interface GigabitEthernet1/0/17
!
interface GigabitEthernet1/0/18
!
interface GigabitEthernet1/0/19
!
interface GigabitEthernet1/0/20
!
interface GigabitEthernet1/0/21
!        
interface GigabitEthernet1/0/22
!
interface GigabitEthernet1/0/23
!
interface GigabitEthernet1/0/24
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface Vlan1
 no ip address
 shutdown
!
interface Vlan10
 ip address 192.168.11.2 255.255.255.0
!
ip default-gateway 192.168.11.1
ip http server
ip http secure-server
ip sla enable reaction-alerts
!
line con 0
 logging synchronous
 login local
line vty 0 4
 logging synchronous
 login local
 transport input ssh
line vty 5 15
 logging synchronous
 login local
 transport input ssh
!
end


SW01#show vlan brief

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Gi1/0/1, Gi1/0/3, Gi1/0/4
                                                Gi1/0/5, Gi1/0/6, Gi1/0/7
                                                Gi1/0/8, Gi1/0/9, Gi1/0/10
                                                Gi1/0/11, Gi1/0/12, Gi1/0/13
                                                Gi1/0/15, Gi1/0/16, Gi1/0/17
                                                Gi1/0/18, Gi1/0/19, Gi1/0/20
                                                Gi1/0/21, Gi1/0/22, Gi1/0/24
                                                Gi1/0/25, Gi1/0/26, Gi1/0/27
                                                Gi1/0/28
10   MGMT                             active    
100  VOICE                            active    
200  DATA                             active    
500  TEST                             active    Gi1/0/14
600  LAB                              active    
1002 fddi-default                     act/unsup
1003 token-ring-default               act/unsup
1004 fddinet-default                  act/unsup
1005 trnet-default                    act/unsup
ASKER CERTIFIED SOLUTION
Les Moore
Systems Architect
Join our community to see this answer!
Unlock 1 Answer and 9 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 9 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros