Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Cisco IP phones unable to reach DHCP server from a particular subnet/vlan.

Posted on 2015-02-17
6
234 Views
Last Modified: 2015-02-24
DHCP server is normally responding to the request made by IP phones residing in all vlans, but when a DHCP request is coming from one particular block of subnets let suppose 192.168.208.1/22 and 192.168.216.1/22 and 192.168.224.1/22, the DHCP is unable to respond or IP phones are failing to reach the dhcp sever.

For reachability we did some pinging from those troubled subnets, pings are reaching easily the DHCP server, placed a laptop in those troubled subnets to check if it was getting an IP address and the laptop did get an IP, but why only phones are are unable to get an IP address and is stuck in "Registering" mode .

Any clue ?
0
Comment
Question by:md5auth
6 Comments
 
LVL 37

Expert Comment

by:bbao
ID: 40615919
> the DHCP is unable to response
> or IP phones are failing to reach the dhcp sever.

ever tried to use a sniffer to listen the incoming and outgoing traffic on the DHCP server's subnet in order to determine what's going on there underneath?
0
 
LVL 8

Expert Comment

by:nader alkahtani
ID: 40615960
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40616639
If the phones display "Registering" on screen, they are definitely not having DHCP issues. They have gotten an IP already, and are effectively trying to register.

Grab one of those and:

- Open the Settings menu > Go to Network Settings > IPv4 > check the IP/subnet/gateway values received, and most important, check the TFTP value provided, this is the IP from which they obtain their configuration files

- If everything is good, then open the Settings menu > Status > Status messages and try to make sense about the entries the phone is logging

- If the phone has an IP, and if the phone has its Web Access enabled (something you tell the phone to have from the Callmanager config page, and through the XML configuration file), then try opening the phone IP on your web browser. If you can reach it, then go to the left menu, and click on Console logs. Download the  last 2 or 3 logs and try to make sense out of the entires, or put them here so I can take a look.

Remember that "Registering" means that the phone is using a specific type of traffic now, pinging is not going to prove if SCCP traffic or SIP traffic are effectively allowed between the phones and the callamanager.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Author Comment

by:md5auth
ID: 40618288
OK, i have managed to get access to one of the phones web page and downloaded the logs, kindly if you can have a check.
log147
log146
0
 
LVL 20

Accepted Solution

by:
José Méndez earned 500 total points
ID: 40618901
Go to the Setting menu and make sure the lock icon on the top right corner shows the lock opened. If it is not opened, press **#, and when it opens go to  Security > Trust List > More > Erase

The phone has an IP alright, and it is trying to authenticate the TFTP servers provided but the ITL certificate is not matching. Erase it so it can download a new one from your CM servers and let it reboot.
0
 

Author Comment

by:md5auth
ID: 40627608
yeah i did, and this problem is with multiple phones, is there any working utility that can perform a batch erase on all faulty ITLs ?
0

Featured Post

Active Directory Webinar

We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How To Create Custom / Distinctive Ring Tones on Polycom Phones Purpose and Overview When creating a custom ring tone, you have simple aspirations: to make your phone cooler than everyone else's. Perhaps you need a louder ringer. Perhaps you w…
I recently purchased a Bluetooth headset called the Music Jogger (model BSH10). The control buttons on it look like this: One of my goals is to use it as the microphone and speakers for Skype calls. In that respect, it works well. However, I …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question