cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
695
Views
0
Helpful
1
Replies

ASA5520 DHCPD and Apple Devices.

Good Morning,

I have a problem in my clients who have notebook apple, iphones and ipad to receive ip address from a dhcp server in cisco asa 5520.

my configuration and the following:
Cisco ASA 5520 version Version 9.0 (3)

#### DHCP Configuration ####
dhcpd address 10.2.38.140-10.2.38.254 SNG.GUEST
dhcpd dns 10.2.33.154 10.2.33.153 interface SNG.GUEST
dhcpd lease 28800 interface SNG.GUEST
dhcpd ping_timeout 80 interface SNG.GUEST
dhcpd domain sonangol.pvt interface SNG.GUEST
dhcpd update dns both override interface SNG.GUEST
dhcpd option 15 ascii sonangol.pvt interface SNG.GUEST
dhcpd enable SNG.GUEST
############

 

What happens is that my users who use Apple devices (notebook, iphone and ipad) in my wifi guest network appears to be connect to my wifi but can not get the ip address even with ip addresses available on my  dhcp pool. But others devices like android and windows works correctly.


I wonder if there is any parameter should I configure the cisco asa dhcpd to solve this problem..

My apple clients devices staying in this loop asking the ip but nothing happens.
bellow are the asa dhcpd logs.

DHCPD: DHCPDISCOVER received from client 0184.8e0c.32b5.45 on interface SNG.GUEST.
DHCPD: send ping pkt to 10.2.38.170
DHCPD: ping got no response for ip: 10.2.38.170
DHCPD: Add binding 10.2.38.170 to radix tree
DHCPD: Binding successfully added to hash table
DHCPD: Sending DHCPOFFER to client
20c9.d045.9669 (10.2.38.170).
DHCPD: Total # of raw options copied to outgoing DHCP message is 0.
DHCPD: creating ARP entry (10.2.38.170,
20c9.d045.9669).
DHCPD: unicasting BOOTREPLY to client
20c9.d045.9669 (10.2.38.170).
DHCPD: Binding successfully deactivated
dhcpd_destroy_binding() removing NP rule for client 10.2.38.170
DHCPD: free ddns info and binding
DHCPD: Server msg received, fip=ANY, fport=0 on SNG.GUEST interface
DHCPD: DHCPREQUEST received from client
20c9.d045.9669.
DHCPD: Extracting client address from the message
DHCPD: State = DHCPS_REBOOTING
DHCPD: State = DHCPS_REQUESTING
DHCPD: Client
20c9.d045.9669 specified it's address 10.2.38.170
DHCPD: Client is on the correct network
DHCPD: requested address 10.2.38.170 not found
DHCPD: Sending DHCPNAK to client
20c9.d045.9669.
DHCPD: broadcasting BOOTREPLY to client
20c9.d045.9669.


Bellow is the tcpdump on my macbook, the ip 10.2.38.129 is my ASA5520.

###############
tcpdump: WARNING: en0: no IPv4 address assigned
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on en0, link-type EN10MB (Ethernet), capture size 65535 bytes
11:43:05.124005 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:05.904236 IP6 :: > ff02::1:ff45:9669: ICMP6, neighbor solicitation, who has fe80::22c9:d0ff:fe45:9669, length 24
11:43:06.904889 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:09.553631 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:09.649664 IP 10.2.38.129.67 > 10.2.38.202.68: BOOTP/DHCP, Reply, length 307
11:43:10.650424 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:10.758211 IP 10.2.38.129.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length 249
11:43:20.758321 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:20.858142 IP 10.2.38.129.67 > 10.2.38.205.68: BOOTP/DHCP, Reply, length 307
11:43:21.931751 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:21.936439 IP 10.2.38.129.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length 249
11:43:32.006753 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:32.104439 IP 10.2.38.129.67 > 10.2.38.207.68: BOOTP/DHCP, Reply, length 307
11:43:33.104922 IP 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 20:c9:d0:45:96:69, length 300
11:43:33.108825 IP 10.2.38.129.67 > 255.255.255.255.68: BOOTP/DHCP, Reply, length 249
#############


Thanks for the help

1 Accepted Solution

Accepted Solutions

Vibhor Amrodia
Cisco Employee
Cisco Employee

Hi,

This is due to this defect:- CSCuh79288

https://tools.cisco.com/bugsearch/bug/CSCuh79288/?reffering_site=dumpcr

Thanks and Regards,

Vibhor Amrodia

View solution in original post

1 Reply 1

Vibhor Amrodia
Cisco Employee
Cisco Employee

Hi,

This is due to this defect:- CSCuh79288

https://tools.cisco.com/bugsearch/bug/CSCuh79288/?reffering_site=dumpcr

Thanks and Regards,

Vibhor Amrodia

Review Cisco Networking for a $25 gift card