Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

WLC 4402 DHCP problem

Hello,

We have 12-4402 WLC with about 90-1113 WAP at 12 schools. I have an internal network setup with Management under VLAN 250 and users under VLAN 251. Everything works great. I recently put in a new ASA and setup a DMZ with another 4402 in the DMZ as the Guest Anchor controller. All mobility groups show up and up and Ping, eping, and mpig work fine. WAP's are all connected fine at each location and DHCP is enabled at each WLC for the inside network. The DMZ and DMZ wireless controller are in the 172.30.0.x network and all Guest clients are suppose to get DHCP from the DMZ wireless controller. 10 of the locations work fine on internal and guest network. 2 other locations work fine on internal, but the Guest clients can not get their DHCP IP address at all. All configs are the same at all locations and I have rechecked several times. IP override is also checked and set to the DMZ wireless controller IP. I even ran debug DHCP on the DMZ controller and I see the DHCP requests from the 2 crontroller ip's that are not working. The only thing that I see in debug is that from the 2 that don't work, it says DHCP Bouncing back to the local controller. I don't know why it is doing this on just these two locations. All WLC code is at 7.0.116. Any ideas as this is driving me crazy and does not makes any sense.

Here is some of the debug log:

*DHCP Proxy DTL Recv Task: Apr 04 13:30:22.909: d8:b3:77:b5:6a:7e DHCP received op BOOTREQUEST (1) (len 320,vlan 250, port 29, encap 0xec00) *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option len (including the magic cookie) 84 *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: message type = DHCP DISCOVER *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: 61 (len 7) - skipping *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: 57 (len 2) - skipping *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: vendor class id = dhcpcd 4.0.15 (len 13) *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: 12 (len 22) - skipping *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP option: 55 (len 11) - skipping *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.910: d8:b3:77:b5:6a:7e DHCP options end, len 84, actual 73 *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.911: d8:b3:77:b5:6a:7e DHCP received a REQUEST from Gateway 10.250.16.5 -- bouncing to local DHCP server. *DHCP Proxy DTL Recv Task: Apr 04 13:30:22.911: d8:b3:77:b5:6a:7e DHCP sending to local dhcp server (10.250.16.5:67 -> 172.30.0.5:1067, len 309) *DHCP Server: Apr 04 13:30:22.911: dhcpd: Received 309 byte dhcp packet from 0x0afa1005 10.250.16.5:67 *DHCP Server: Apr 04 13:30:22.912: Dropping packet from 10.250.16.5 (unable to match to a dhcp scope)

Thanks Jeff

4 REPLIES

Re: WLC 4402 DHCP problem

Jeff, you shouldn't need the DHCP override on the internal WLC pointing at the DMZ WLC. When the traffic is anchored to the DMZ WLC, it will pull its DHCP from the interface that the WLAN is attached to.

This could be the issue if the WLAN is not anchoring properly and the internal WLC is still trying to send the DHCP request to the DMz WLC using the interface that the local WLC is linked to.

Steve

Sent from Cisco Technical Support iPhone App

HTH, Steve ------------------------------------------------------------------------------------------------ Please remember to rate useful posts, and mark questions as answered
Community Member

WLC 4402 DHCP problem

Steve,

If I turn that off, then all Guest Clients get a 250 VLAN IP address instead of a 172. What really throws me is that all locations are the same. Why does it work fine in 10 locations but the other 2 don't work. Are there any tests I can try to make sure they are anchoring properly. They all show up and up in mobility groups.

Jeff

Re: WLC 4402 DHCP problem

It sounds like the sites aren't anchoring the WLAN. Leave the Override off and run debug mobility handoff enable on the anchor WLC. Make sure you note down the client Mac address. Well be able ti see if the anchoring is happening or not

Steve

Sent from Cisco Technical Support iPhone App

HTH, Steve ------------------------------------------------------------------------------------------------ Please remember to rate useful posts, and mark questions as answered

Re: WLC 4402 DHCP problem

Yea, make sure the WLAN is anchored on the foreign controller to the DMV controller. Also make sure your wlans are identical.

A side note .. It's best to create a dummy interface on the foreign controllers and tie your guest interface to it. Should the tunnel break you don't want your guest dropped on the inside of your network.

Sent from Cisco Technical Support iPhone App

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
755
Views
0
Helpful
4
Replies
CreatePlease to create content