Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1270
Views
2
Helpful
19
Replies

Cisco aironet AP doesn't let dhcp through

roncro
Level 3
Level 3

‎01-24-2024 01:40 PM

I set an access point (aironet 1100) up like I have a few others but it doesn't seem to forward traffic, or dhcp is not working

I wonder if I missed something on the switch (Cisco 2960)  or router (Cisco 2951)

 

Here is what I added to the switch and router:

Cisco 2960 switch:

interface GigabitEthernet1/0/24
switchport trunk native vlan 37
switchport trunk allowed vlan 9,37
switchport mode trunk


interface Vlan9
ip address 192.168.9.3 255.255.255.0

 


Cisco 2951 router:

ip dhcp pool VLAN9-EQUIPMENT-POOL
import all
origin file tftp://192.168.2.8/dhcp/static-bindings-hw-9
default-router 192.168.9.1
dns-server 192.168.1.1
domain-name localdomain
option 42 ip 192.168.1.1


interface GigabitEthernet0/1.9
encapsulation dot1Q 9
ip address 192.168.9.1 255.255.255.0
ip helper-address 192.168.1.1
ip directed-broadcast
ip nat inside
ip virtual-reassembly in


ip nat inside source list 109 interface GigabitEthernet0/0 overload

access-list 109 permit ip 192.168.9.0 0.0.0.255 any

 

 

Labels:
0 Helpful
19 Replies 19

roncro
Level 3
Level 3
In response to MHM Cisco World

‎01-24-2024 04:11 PM

the APs all have a static ip-address (192.168.37.x) a static default gateway, 192.168.37.1 and subnet mask (255.255.255.0)  the clients, in this case all vlan9 (192.168.9.x addresses).  So the AP has a native vlan 37 (for the 192.168.37.0 address space)  and a vlan9 for the clients.  the clients get their IPs with DHCP, via a file that I load with tftp (origin file tftp://192.168.2.8/dhcp/static-bindings-hw-9)   I do that with all other APs (even all other VLANs)

0 Helpful

roncro
Level 3
Level 3
In response to MHM Cisco World

‎01-27-2024 10:19 AM

the APs have static IP, netmask andgateway, the APs themselves are configured that way

0 Helpful

MHM Cisco World
VIP
VIP

‎01-25-2024 04:04 PM

Hi again 

Now

1- Use same acl and debug in router not SW 

Share here result 

2- show ip dhcp pool xxx

Share it here 

3- show ip dhcp server statistics interface <interface connect router to SW>

Share it here 

MHM

0 Helpful

roncro
Level 3
Level 3
In response to MHM Cisco World

‎01-25-2024 06:12 PM

#show ip dhcp pool VLAN9-NATA-EQUIPMENT-POOL

Pool VLAN9-NATA-EQUIPMENT-POOL :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 2
Leased addresses : 2
Pending event : none
65522 subnets are currently in the pool :
Current index IP address range Leased addresses
192.168.9.37 192.168.9.37 - 192.168.9.37 1
192.168.9.237 192.168.9.237 - 192.168.9.237 1

 

this command doesn't let me choose an interface.

Charon-2951#show ip dhcp server statistics GigabitEthernet0/1
^
% Invalid input detected at '^' marker.

Charon-2951#show ip dhcp server statistics
Memory usage 102261
Address pools 9
Database agents 9
Automatic bindings 0
Manual bindings 117
Expired bindings 0
Malformed messages 0
Secure arp entries 0

Message Received
BOOTREQUEST 0
DHCPDISCOVER 3821
DHCPREQUEST 9232
DHCPDECLINE 0
DHCPRELEASE 445
DHCPINFORM 0

Message Sent
BOOTREPLY 0
DHCPOFFER 1385
DHCPACK 9228
DHCPNAK 4

 

I tred  different APs,  even existing one.  these 2 devices connect to other VLANS,  but not to VLAN9;  I tried creating one on a working AP,  with several VLANs:

Jan 26 01:33:27.181 Information Interface Dot11Radio1, Station d8c4.6a35.7e3b Associated KEY_MGMT[NONE]
Jan 26 01:34:52.292 Warning Packet to client d8c4.6a35.7e3b reached max retries, removing the client
Jan 26 01:34:52.292 Information Interface Dot11Radio1, Deauthenticating Station d8c4.6a35.7e3b Reason: Previous authentication no longer valid
Jan 26 01:43:29.192 Information Interface Dot11Radio1, Station d8c4.6a35.7e3b Associated KEY_MGMT[NONE]
Jan 26 01:44:05.407 Information Interface Dot11Radio1, Deauthenticating Station d8c4.6a35.7e3b Reason: Sending station has left the BSS
Jan 26 01:44:10.350 Information Interface Dot11Radio1, Station d8c4.6a35.7e3b Associated KEY_MGMT[NONE]
Jan 26 01:44:28.949 Information Interface Dot11Radio1, Deauthenticating Station d8c4.6a35.7e3b Reason: Sending station has left the BSS
Jan 26 01:44:28.955 Information Interface Dot11Radio0, Station d8c4.6a35.7e3b Reassociated KEY_MGMT[NONE]
Jan 26 01:44:46.557 Information Interface Dot11Radio0, Deauthenticating Station d8c4.6a35.7e3b Reason: Sending station has left the BSS

 

0 Helpful

MHM Cisco World
VIP
VIP
In response to roncro

‎01-27-2024 07:30 AM

 

#show ip dhcp pool VLAN9-NATA-EQUIPMENT-POOL

Pool VLAN9-NATA-EQUIPMENT-POOL :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 2
Leased addresses : 2
Pending event : none
65522 subnets are currently in the pool :
Current index IP address range Leased addresses
192.168.9.37 192.168.9.37 - 192.168.9.37 1
192.168.9.237 192.168.9.237 - 192.168.9.237 1

65522 subnet in one Pool that stop me and only two IP in subnet??????????

Then I returned to your original post I see you import all so I think the pool import all subnet or make pool not behave like nor

ip dhcp pool VLAN9-EQUIPMENT-POOL
import all <- remove this 
origin file tftp://192.168.2.8/dhcp/static-bindings-hw-9
default-router 192.168.9.1
dns-server 192.168.1.1
domain-name localdomain
option 42 ip 192.168.1.1

Network x.x.x.x x.x.x.x <- add this 

Hope this solve your issue 

Thanks 

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card