Solved

Cisco IP phones unable to reach DHCP server from a particular subnet/vlan.

Posted on 2015-02-17
6
235 Views
Last Modified: 2015-02-24
DHCP server is normally responding to the request made by IP phones residing in all vlans, but when a DHCP request is coming from one particular block of subnets let suppose 192.168.208.1/22 and 192.168.216.1/22 and 192.168.224.1/22, the DHCP is unable to respond or IP phones are failing to reach the dhcp sever.

For reachability we did some pinging from those troubled subnets, pings are reaching easily the DHCP server, placed a laptop in those troubled subnets to check if it was getting an IP address and the laptop did get an IP, but why only phones are are unable to get an IP address and is stuck in "Registering" mode .

Any clue ?
0
Comment
Question by:md5auth
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 37

Expert Comment

by:bbao
ID: 40615919
> the DHCP is unable to response
> or IP phones are failing to reach the dhcp sever.

ever tried to use a sniffer to listen the incoming and outgoing traffic on the DHCP server's subnet in order to determine what's going on there underneath?
0
 
LVL 8

Expert Comment

by:nader alkahtani
ID: 40615960
0
 
LVL 20

Expert Comment

by:José Méndez
ID: 40616639
If the phones display "Registering" on screen, they are definitely not having DHCP issues. They have gotten an IP already, and are effectively trying to register.

Grab one of those and:

- Open the Settings menu > Go to Network Settings > IPv4 > check the IP/subnet/gateway values received, and most important, check the TFTP value provided, this is the IP from which they obtain their configuration files

- If everything is good, then open the Settings menu > Status > Status messages and try to make sense about the entries the phone is logging

- If the phone has an IP, and if the phone has its Web Access enabled (something you tell the phone to have from the Callmanager config page, and through the XML configuration file), then try opening the phone IP on your web browser. If you can reach it, then go to the left menu, and click on Console logs. Download the  last 2 or 3 logs and try to make sense out of the entires, or put them here so I can take a look.

Remember that "Registering" means that the phone is using a specific type of traffic now, pinging is not going to prove if SCCP traffic or SIP traffic are effectively allowed between the phones and the callamanager.
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 

Author Comment

by:md5auth
ID: 40618288
OK, i have managed to get access to one of the phones web page and downloaded the logs, kindly if you can have a check.
log147
log146
0
 
LVL 20

Accepted Solution

by:
José Méndez earned 500 total points
ID: 40618901
Go to the Setting menu and make sure the lock icon on the top right corner shows the lock opened. If it is not opened, press **#, and when it opens go to  Security > Trust List > More > Erase

The phone has an IP alright, and it is trying to authenticate the TFTP servers provided but the ITL certificate is not matching. Erase it so it can download a new one from your CM servers and let it reboot.
0
 

Author Comment

by:md5auth
ID: 40627608
yeah i did, and this problem is with multiple phones, is there any working utility that can perform a batch erase on all faulty ITLs ?
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
NTP DDoS Attack on Time Warner Cable Modem connected to MX Box 4 125
Problems with DHCP Reservation 11 35
Dell PowerConnect 2824 w/ two DHCP 6 54
Sonicwall VPN and DHCP Setup 10 64
In my office we had 10 Cisco 7940G IP phones that were useless as they were showing PROTOCOL APPLICATION INVALID when started. I searched through Google and worked for a week continuously on those phones, and finally got them working. This is a di…
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question