04-02-2018 02:16 PM - editado 03-01-2019 06:29 PM
Hi
I'm studying for part one of CCNA, but meantime my new job has thrown me in feet first into their Nexus3000/1841/1811 plus some HP procurve switch environment and I"m expected to know advanced troubleshooting.
So the problem, we have a Ruckus wifi controller here in our main office and two remote sites connect via MPLS but with public data access for guest user access that is blocked form our domain
In one remote office (NYC) they have one Access point with two LAN ports, one is vlan1 for office connectivity and goes though network switch to rest of network. That side is fine.
On the second LAN port (vlan2) the guest network where they need to be provided a temporary token to login and enter this on a web page. They are SUPPOSED to get DHCP assignment from the 1811
This is config on DHCP
no ip dhcp use vrf connected
ip dhcp excluded-address 10.1.1.1
!
ip dhcp pool GuestUsers
network 10.1.1.0 255.255.255.240
dns-server 192.168.1.182 192.168.1.76
default-router 10.1.1.1
And used on VLan2 interface connected to Fastethernet3
interface FastEthernet3
switchport access vlan 2
speed 10
no cdp enable
!
interface Vlan2
description Guest Users DMZ
ip address 10.1.1.1 255.255.255.240
ip access-group 120 in
no ip redirects
no ip unreachables
no ip proxy-arp
ip wccp web-cache redirect in
ip flow ingress
ip nat inside
ip virtual-reassembly in
ip tcp adjust-mss 1412
and the access list
access-list 120 permit udp any host 192.168.1.76 eq domain
access-list 120 permit udp any host 192.168.1.182
access-list 120 permit ip host 192.168.20.181 any
access-list 120 deny ip 10.1.1.0 0.0.0.255 192.168.0.0 0.0.255.255
access-list 120 permit ip 10.1.1.0 0.0.0.255 any
access-list 120 permit udp any eq bootpc any eq bootps
where the 192.168.x.x are internal DNS and a Web filtering device.
Before I arrived this stopped working, (so I know I didn't do it) they are not getting any response from the DHCP server,
DHCP server: ANY (255.255.255.255)
Leases: 0
Offers: 0 Requests: 0 Acks : 0 Naks: 0
Declines: 0 Releases: 0 Query: 0 Bad: 0
Forcerenews: 0 Failures: 0
Anyone have a guess, can I configure VRF to force the interface to use the DHCP scope defined?
Any help is appreciated.
Thanks
David
el 04-03-2018 07:28 AM
The first question that comes to mind is what does the F3 interface connect to? Assuming it is a switch, then is that port in the proper VLAN?
Descubra y salve sus notas favoritas. Vuelva a encontrar las respuestas de los expertos, guías paso a paso, temas recientes y mucho más.
¿Es nuevo por aquí? Empiece con estos tips. Cómo usar la comunidad Guía para nuevos miembros