unnable to get DHCP ip adress

nicanor00 · ‎02-05-2014

I have catalyst 2960 and router 1841 with Vlan configured

Router is DHCP server for eache VLAN

I also have ISE(192.168.101.60)

on central site

But user cannot get IP address

When I connecte on switch port interface GigabitEthernet0/1, I get an IP address

But when I connecte on switch port interface GigabitEthernet0/11, I cannot get an IP address from DHCP

Normaly all interface should have the same configuration as interface GigabitEthernet0/11

Please have a look on my configuration attached and help me to resolv my problem

cadet alain · ‎02-05-2014

Hi,

You are doing 802.1x authentication with MAB on g0/11 and not on g0/1 so the problem comes from the authentication.

Why aren't you doing 802.1x on the other ports but only on this one ?

If you still want to use dot1x on this port you'll have to debug on the switch and see the logs on the ISE to see why it is not working.

Regards

Alain

Don't forget to rate helpful posts.

nicanor00 · ‎02-05-2014

Yes the goal is to have authentication on all port

Normaly I should get IP address befor get authenticate

But I cannot get IP addresse

My issue is why I cannot get IP address

Thanks in advance for help

Alfredo Bosca Bataller · ‎02-05-2014

I have seen a fewer issues.

1) Shouldn't use "ip helper" because the default-netwark is in your subnet. ip helper only when have a DHCP server remote.

2) I recommend that the number of dot1 that is the same of number of vlan.

VLAN 2 interface fa0/1.2

encapsulation dot1q 2

3)Dind't use the "ip dhcp excluded-address " to avoid binding conflicts.

Best regards,

http://networkingcontrol.wordpress.com/ #CCNP CSCO11962956