cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
8287
Views
0
Helpful
12
Replies

DHCP does not pass through 3750 with VLAN

martentrogen
Level 1
Level 1

Have a Cisco 3750 with a bunch of VLAN's configured for our vmware esx environment. If I plug in a client (esx ot windows) and make a DHCP request, the client never get a address. Have put a sniffer between host and swicth and reguests is seen but when sniffer is between the switch and the next one no dhcp request is seen.

It works fine when in switchport access mode but never in switchport trunk mode.

Is there anything to configure on the 3750 to allow dhcp requests to pass through? Thanks alot. Marten

12 Replies 12

acomiskey
Level 10
Level 10

Is the dhcp server on the same vlan as the client requesting address? If not you have to add ip helper-address in the corresponding vlan.

Hi,

You need to configure IP Helper address on every VLAN interface you have.

For example if your DHCP server (with ip add 192.168.1.10) has a scope configured for Vlan 1, Vlan 5, Vlan 15, Vlan 20 etc

then on

Inteface Vlan 1

Ip address 172.30.20.4 255.255.255.0

IP helper-address 192.168.1.10

Inteface Vlan 5

Ip address 172.30.30.4 255.255.255.0

IP helper-address 192.168.1.10

and so on

This should resolve your problem provided All scopes are configured correctly on the DHCP server and ensure DHCP server is able to PING ALL VLAN interfaces to prove the connectivity.

Hopr This Helps

SHAHEEN

martentrogen
Level 1
Level 1

We have set IP helper-address on the switch but there are no option to set it on every port. Why does it work in switchport access mode but never in switchport trunk mode? Is there anything else to enable "pass through" of DHCP requests? The sniffer never even see the request on the "other" side, between Switch1 and Switch2.

Client -> Switch1 -> Switch2 -> ....

Thanks for your help. Marten

Are you saying the dhcp server is off switch 2 and there is a trunk between switches? Are you routing between these vlans?

martentrogen
Level 1
Level 1

DHCP Server is connected to Switch2 but the sniffer never even see the request from Switch1. If I connect an ESX Server with a defined vSwitch with VLAN ID yyy and connect a VM to that vSwitch it all works fine. But when I'm not connected to a vSwitch with a VLAN ID, instead physically to the port I don't get through the switch. It's like the native VLAN never get access through the switch...or something. I'm not to good at communications configurations myself. That why I really appreciate your help. Marten

glen.grant
VIP Alumni
VIP Alumni

If the 2nd switch is trunked to the first they should be able to pull an address as long as ip routing is turned on the 1st switch and you have ip helper addreses on the layer 3 SVI for those vlans . Also make sure you have portfast turned on your client access ports . You have to make sure the trunk is also setup and working correctly. You also have to make sure the dhcp server function is turned on the 1st 3750 .

martentrogen
Level 1
Level 1

Thanks a lot guys for your help. Just a quick one, what is this "dhcp server function" and how do I turn it on? Could you also confirm what command turns on IP routing? Cheers Marten

The switch itself can be a dhcp server. If you weren't using another machine. And ip routing command is "ip routing", haha.

martentrogen
Level 1
Level 1

If I already have a DHCP Server on Switch2 as shown below

Client -> Switch1 -> Switch2 -> DHCP Server

do I still need to configure "dhcp server function"

Also, Glen, regarding "You have to make sure the trunk is also setup and working correctly"

Can I get a hint of how a working configuration looks, or would look? Thanks once again for all your help. Marten

do I still need to configure "dhcp server function"

No, you do not.

Just want to add on.

1. Make sure there is no pruning and filtering on trunk link.

2. I believe you have already enable ip helper address. Can other PC from different VLAN receive the IP address?

The best is post your 2 switches config without any sensitive info. I am sure netpro can help you better by that way.

HTH.

Cheers!

Kyaw

Hi Cheers,
I too have same problem, Please find attached switch configuration.
!
spanning-tree mode pvst
spanning-tree loopguard default
spanning-tree extend system-id
!
!
!
!
!
errdisable recovery interval 600
!
!
!
!
vlan internal allocation policy ascending
!
ip ssh time-out 60
ip ssh authentication-retries 5
ip ssh version 2
!
!
!
!
!
!
!
!
!
!
interface Port-channel1
switchport mode trunk
!
interface Port-channel2
switchport mode trunk
!
interface FastEthernet0
no ip address
!
interface GigabitEthernet1/0/1
switchport mode trunk
channel-group 2 mode on
!
interface GigabitEthernet1/0/2
switchport mode trunk
channel-group 2 mode on
!
interface GigabitEthernet1/0/3
switchport mode trunk
channel-group 1 mode on
!
interface GigabitEthernet1/0/4
switchport mode trunk
channel-group 1 mode on
!
interface GigabitEthernet1/0/5
description This port using DMZ Test-PC(10.8.5.25)
switchport access vlan 500
switchport mode access
!
interface GigabitEthernet1/0/6
description Link to FW Interface
switchport trunk allowed vlan 1,11-13,50,100,200,300,500,1002-1005
switchport mode trunk
!
interface GigabitEthernet1/0/7
description Link to FW Interface
switchport trunk allowed vlan 1,11-13,50,100,200,300,500,1002-1005
switchport mode trunk
!
interface GigabitEthernet1/0/8
shutdown
!
interface GigabitEthernet1/0/9
description #### Connected to CP MGMT ####
switchport access vlan 11
switchport mode access
!
interface GigabitEthernet1/0/10
switchport access vlan 11
switchport mode access
!
interface GigabitEthernet1/0/11
description ### Connected to VidyoPortal ####
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet1/0/12
switchport access vlan 300
switchport mode access
!
interface GigabitEthernet1/0/13
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/14
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/15
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
spanning-tree bpdufilter disable
spanning-tree bpduguard disable
!
interface GigabitEthernet1/0/16
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/17
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/18
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/19
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/20
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/21
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/22
description WIFI APs
switchport trunk native vlan 500
switchport trunk allowed vlan 1,100,200,300,500
switchport mode trunk
!
interface GigabitEthernet1/0/23
description ## connected to cp-FW2 DMZ ##
switchport trunk allowed vlan 1,11-13,50,100,200,300,500,1002-1005
switchport mode trunk
shutdown
!
interface GigabitEthernet1/0/24
description ### connected to CP-FW01 DMZ eth3 ###
switchport trunk allowed vlan 1,11-13,50,100,200,300,500,1002-1005
switchport mode trunk
shutdown
!
interface GigabitEthernet1/0/25
!
interface GigabitEthernet1/0/26
!
interface GigabitEthernet1/0/27
!
interface GigabitEthernet1/0/28
!
interface Vlan1
no ip address
shutdown
!
interface Vlan11
no ip address
!
interface Vlan50
no ip address
!
interface Vlan500
ip address 10.8.74.250 255.255.255.0
!
ip default-gateway 10.8.74.254
ip http server
ip http secure-server
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: