11-30-2021 08:35 AM
Dear Experts,
We have Cisco 2960X as our Access Layer switches in Campus LAN Network, these Access switches are connected to Cisco 4507 which is acting both as Distribution and Core switch. Cisco 4507 is connected to Nexus 93108 which is acting as Server/DMZ switches. We have made Cisco 4507 as our VLANs gateway and enable DHCP server on it, this C4507 is giving IP addresses to all VLANs. Internet is controlled through Kerio Firewall which is doing QOS and Traffic policing.
Problem i am facing that IP addresses of clients(PC.Laptops,Printer) keeps changing which is making a mess, i even tried configuring Lease Time to INFINITE but still same issue. I cannot do traffic policing on Kerio firewall. Configuration of Cisco 4507 is mentioned below:
ip dhcp pool MARKETING
import all
network 10.4.113.0 255.255.255.0
domain-name COMPANY.COM
default-router 10.4.113.254----------------> default Route is VLAN interface on Cisco 4507
dns-server 10.4.50.12---------------->DNS is in DMZ subnet.
lease infinite
interface Vlan113
description [Marketing-Department]
ip dhcp server use subscriber-id client-id
ip address 10.4.113.254 255.255.255.0
11-30-2021 12:03 PM - edited 11-30-2021 12:04 PM
Hello
Looks like you using dhcp port address allocation is there a requirement for that and is this what you want to accomplish - fix the allocation the the specific port of the switch?
11-30-2021 08:58 PM
C4507<---->C2960X-----> PC(Client)
Each Cisco 2960X is connected to multiple departments and each department have its own VLANs. IP addresses of clients keep changing.
i cannot use IP to make policies in Proxy/Firewall
11-30-2021 12:34 PM
Problem i am facing that IP addresses of clients(PC.Laptops,Printer) keeps changing which is making a mess
we need more information here, what kind of mess ? How many device you have in the network is /24 address space good enough ?
below command is the requirement?
ip dhcp server use subscriber-id client-id
refer below document for that command which you using to make sure that is correct requirement
is the device move a different location, they fixed all time?
11-30-2021 08:31 PM
ip dhcp server use subscriber-id client-id--------> i just read in cisco configuration guide that "Configures the DHCP server to globally use the subscriber ID as the client ID on all incoming DHCP messages". That is why i configure it on interface vlan!
All users are fixed and doesnt move, Vlans are assigned according to departments exist in a building.
11-30-2021 08:52 PM
Problem i am facing that IP addresses of clients(PC.Laptops,Printer) keeps changing which is making a mess
Means that IP changes frequently, i cannot use IP to make policies in Proxy/Firewall
12-01-2021 01:53 AM
In normal conditions DHCP Offers dynamic IP, in this case, my suggestion is to make a reservation for the device to static IP, so does not matter where the user connected, the device with MAC get the same IP address all time in the VLAN (this is best approach all time)
Cisco DHCP is not a full-blown DHCP Server Like any other vendor in the market.
12-01-2021 03:05 PM
Hello
Please confirm-
Do you want port address allocation = meaning no matter what device connects to that specific port, itwill ALWAYS receive the same ip address allocation
or
You would like each host to obtain the same ip address allocation no matter where it moves to?
12-02-2021 12:07 AM
Scenario is bit different "Each department have PCs and Printers connected to LAN ports in there rooms, They are all in same VLAN so that i can use there Subnet/IP address for Traffic shaping/policing in Proxy Server". I want each network device (PC or Printer) to retain there IP addresses no matter they are rebooted several time so that i can use there IPs in Policies implementation in Proxy. We dont have budget to acquire NAC solution or IAM solutions available in market.
12-06-2021 06:08 AM - edited 12-06-2021 06:11 AM
Hello
So then you need to make reservations for those hosts within the dhcp scope
Create a text file with the host IP address and there related Mac addresses then make the dhcp server lookup this text file and reserve this hosts ip addresses
EXAMPLE:
dhcpreservation.text
!IP address Type Hardware address Lease expiration
172.16.0.1/24 1 0011:1111:1111:11 Infinite
172.16.0.2/24. 1 0022:2222:2222:22 Infinite
172.16.0.3/24. 1 0033:3333:3333:33 Infinite
*end*
no service dhcp
Ip dhcp pool lan
origin file tftp://x.x.x.x/dhcpresevation.text
service dhcp
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide