Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1607
Views
0
Helpful
2
Replies

SGE2010P DHCP Snooping Bug

DJX995
Level 3
Level 3

‎06-06-2012 09:13 AM

In some cases with DHCP snooping enabled, the switch can cause a DHCP request to be blocked.

This is appears to be a corner case but it has happened to me with two different pieces of hardware in two different scenarios.

First, I have a printer on a VLAN where other computers can get an IP address fine but when DHCP snooping is enabled, the printer is unable to obtain an IP.

Second, I created a separate VLAN for an isolated network and enabled DHCP snooping on that VLAN. A modem was hooked up to one port and added as a trusted interface. A computer was hooked up to another port and with DHCP snooping enabled, the computer was unable to obtain an IP address.

In both cases, the DHCP snooping binding table shows an IP of 0.0.0.0 for the port with a very low renew time (~100sec). Also, as soon as I disabled DHCP snooping for either of the above VLANs, the devices are able to obtain IP address. It appears that the DHCP OFFER is never making its way back to the device with DHCP snooping enabled.

Labels:
0 Helpful
2 Replies 2

Gil Freitas
Level 1
Level 1

‎08-16-2013 08:16 AM


Hi, perhaps the "ip dhcp snooping trust" was missing on the uplink port if the DHCP server was remote...

0 Helpful

DJX995
Level 3
Level 3
In response to Gil Freitas

‎08-16-2013 10:33 AM

Nah,

I think it has something to do with MAC addresses that don't start with 00.

Just a hunch though.

I know they will never fix it and I have moved on.

I guess it's the "quality" you should expect for Cisco Small Biz.

0 Helpful
Customers Also Viewed These Support Documents