Start Free Trial

asked on

HP Procurve 2 vlans (voice and data) with 1 dhcp server/nic - what port settings?

Pretty standard config. Voice vlan is 20, data is 10. Most ports are untagged data, and tagged voice. Phones boot up in data vlan and then have an option file that tells them to use vlan20 and reboot to get new ip address. What are my port settings supposed to be on the DHCP server so it can communicate in both the voice and data vlan and provide IPs to the right devices etc?
Here is config.

interface 18
name "dhcp_server"
exit
ip routing
vlan 1
name "DEFAULT_VLAN"
untagged A1-A2,B1
ip address 172.16.11.2 255.255.255.0
no untagged 1-48
exit
vlan 10
name "Data"
untagged 1-2,6-8,10-43,45-47
ip helper-address 172.16.1.52
ip address 172.16.1.2 255.255.255.0
exit
vlan 20
name "VoIP"
untagged 3-5,9
qos priority 7
ip helper-address 172.16.1.52
ip address 172.16.2.2 255.255.255.0
tagged 1-2,7-8,11-48
voice
exit
ip route 0.0.0.0 0.0.0.0 172.16.1.1
ip route 172.16.2.0 255.255.255.0 vlan 20
snmp-server community "public" Unrestricted
primary-vlan 10
no autorun

ProCurve 2910al-48G-PoE Switch(vlan-10)#

Hi, I'm not sure what you mean with port settings for the DHCP server...

In any case, I see you already have the IP-helper in place, so you're on the right track, maybe this article can get you where you want to be (if I don't misunderstand your question that is): http://technet.microsoft.com/en-us/library/dd759168.aspx

ASKER

The dhcp server (windows box) has one data IP. What port settings does it need to have, just untagged data (default) and tagged voice, just like the other ports?

As the DHCP server has an IP in the subnet of vlan10, you won't need a helper address for vlan10.
As 172.16.2.0/24 is connected, you won't need that static route either.
If the default gw of the DHCP server is 172.16.1.1, it'll need a static route to 172.16.2.0/24 through the switch (172.16.2.2).
Connect the DHCP server to an untagged vlan10 port.
That should be good to go with a dhcp-relay style setup.

If you want to dual-home the DHCP server to both vlans/subnets, that'll need a fairly different setup and a VLAN-aware OS/NIC in the server itself. If this is the case, what OS are you running? VLANs are a pain with Windows...

Tamas

ASKER

Data devices get DHCP IP just fine, but not voice. If I static the phone to a voice IP/DG etc it works fine.
The switch lost its config but was working, so I shouldnt have to change anything on the server/phones etc - I recall the config noted the dhcp server port and am pretty sure that port had to be set differently than the others in terms of the tagging.

Can you post a 'route print' (Windows) or 'route -n' (Linux) from the server?

ASKER

default gateway is .2 for both voice and data (the switch) .1 is the firewall but we shouldn't be even touching that with this traffic.

ASKER

I Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.16.1.2 172.16.1.52 15
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
172.16.1.0 255.255.255.0 On-link 172.16.1.52 266
172.16.1.52 255.255.255.255 On-link 172.16.1.52 266
172.16.1.255 255.255.255.255 On-link 172.16.1.52 266
192.168.168.0 255.255.255.0 On-link 192.168.168.2 266
192.168.168.2 255.255.255.255 On-link 192.168.168.2 266
192.168.168.255 255.255.255.255 On-link 192.168.168.2 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.168.2 266
224.0.0.0 240.0.0.0 On-link 172.16.1.52 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.168.2 266
255.255.255.255 255.255.255.255 On-link 172.16.1.52 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 172.16.1.2 5
0.0.0.0 0.0.0.0 172.16.2.2 Default
===========================================================================

ASKER

I can ping to/from phones/pcs across vlans etc, no problems there.

Okay, in that case it should work okay. Can you put a port in vlan20 untagged and test with a PC what do you get? Possibly record the DHCP exchange with wireshark.

ASKER

I get a vlan 20 IP no problem with a PC. Looks like a phone/pbx issue?

Can you double-check the option that directs the phones to reboot using vlan20?
Is that coming from DHCP, or they would use LLDP-MED?

ASKER

From dhcp I think. On the phone menu it has bootserver cutom+opt66. Custom is 160, which points to a internal url for the pbx.
The phone should boot up in data vlan and then somehow know to get to the voice but I dont see that happening or know how its supposed to work. I can manually put vlan 20 in the phone but still dont get address via dhcp.

Do you have option 66 configured on the DHCP server?

ASKER

No, the phone guy said thats not used anymore, but the custom portion is (which is 160), so the phone says custom+66, the next screen says custom=160. 160 on the VOICE dhcp pool has an ipaddress:8088 for its config. Phone guy says that is correct on the phone side. and dhcp server hasn't changed, only thing that changed was the switch config as far as ive been told, at least.

ASKER

opt66 used to be used in older systems and would define a tftp server but now its just the option160 deal then it gets the config (xml file) from an internal webserver (located on the voice vlan)

If it's really only the switch that's changed, you could try to mark vlan20 as a voice vlan and enable LLDP-MED. It shouldn't mess up anything, and the phones might need it afterall.

ASKER

How to enable lldp-med? Phone has it enabled, it also has cdp enabled by default.
If I take a port out of tagged vlan 20 it does get a data ip address, of course it doesnt work as a phone, but interesting

ASKER

I did a packet capture, heres a screen shot - crap load of dhcp disc, offer, request, and nack but not sure what to make of that. I did this on a pc hooked to phone with phone not working. PC ip is 1.120
Untitled.png

ASKER

Is it not possible to increase the points any more?

I'll get an example lldp-med config for you once I get home. :)

ASKER

Thanks. It seems that as soon as the phone gets tagged in vlan 20 it will not get an ip address. If it's put on the phone manually, it will not get an address. If I take no tag 20 phone will get data ip. Still feel like something on dhcp server doesnt like vlan 20 tags for some reason.

ASKER

Still can't get this working. Would a packet capture help?

Sorry for the delay; see below for the LLDP-MED config.

lldp run
lldp config all medTlvEnable network_policy
lldp config all medTlvEnable capabilities

Open in new window

If it still doesn't work, can you post exact make/model and firmware version of the phones and a firmware version of the switch?

ASKER

Just made the config change, will update tomorrow

ASKER

Still no luck
HP 2910al-48G-PoE Switch (J9148A)
W.15.13.0005, ROM W.14.06

phones polycom soundpoint IP335
revision 4.2.2.0710

When booting and it says welcome (start, setup, about) and starts to count down if I click about it says server address resolving, click next then shows ip address resolving, next shows vlan20 (so its getting that from something). I can circle through that menu but still just stays on waiting for network to initialize.

This looks like a relevant thread:
http://community.polycom.com/t5/VoIP/Soundpoint-IP335-getting-DHCP-IP-from-data-VLAN-but-not-from/td-p/32620

There's also info on the DHCP Vendor ID in the Admin guide:
http://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&ved=0CCYQFjAA&url=http%3A%2F%2Fsupport.polycom.com%2Fglobal%2Fdocuments%2Fsupport%2Fsetup_maintenance%2Fproducts%2Fvoice%2FSoundPointIP_SoundStationIP_VVX_Administrators_Guide_SIP_3_2_3_English.pdf&ei=9EL-Up-gCYHn7Abdu4GACw&usg=AFQjCNFOZHKKfGzX-DvvSIyZJ1ee6gv6Jg&sig2=VBafSzHyLRU0GUXNa-MJdg&bvm=bv.61190604,d.ZGU

ASKER CERTIFIED SOLUTION

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

ASKER

Solution self solved