The DHCP server is in VLAN1. It is a Windows 2003 server. I have a switch that looks like this:
AccessSwitch
Access port:
interface FastEthernet0/2
switchport access vlan 300
spanning-tree portfast
Uplink port:
interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
switchport mode trunk
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
udld port
mls qos trust cos
auto qos voip trust
channel-group 1 mode on
spanning-tree guard loop
end
CoreSwitch:
Uplink from AccessSwitch:
interface GigabitEthernet2/0/18
switchport trunk encapsulation dot1q
switchport mode trunk
srr-queue bandwidth share 10 10 60 20
srr-queue bandwidth shape 10 0 0 0
queue-set 2
mls qos trust cos
auto qos voip trust
channel-group 2 mode on
Connection to Router:
interface GigabitEthernet2/0/13
description (Corp router)
switchport trunk encapsulation dot1q
switchport trunk native vlan 200
switchport mode trunk
duplex full
spanning-tree guard root
Router:
interface GigabitEthernet0/1
no ip address
ip access-group 101 in
ip nat inside
ip virtual-reassembly
no ip mroute-cache
duplex auto
speed auto
media-type rj45
negotiation auto
!
interface GigabitEthernet0/1.1
description $FW_INSIDE$
encapsulation dot1Q 1
ip address 192.168.172.1 255.255.255.0
ip access-group 102 in
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no snmp trap link-status
no cdp enable
!
interface GigabitEthernet0/1.2
description $FW_INSIDE$
encapsulation dot1Q 100
ip address 192.168.100.8 255.255.255.0 secondary
ip address 192.168.100.254 255.255.255.0
ip nat inside
ip virtual-reassembly
no ip mroute-cache
no snmp trap link-status
no cdp enable
!
interface GigabitEthernet0/1.3
encapsulation dot1Q 200 native
no ip mroute-cache
no snmp trap link-status
no cdp enable
!
interface GigabitEthernet0/1.4
encapsulation dot1Q 300
ip address 172.16.231.1 255.255.255.0
no ip mroute-cache
no snmp trap link-status
no cdp enable
