no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
no platform punt-keepalive disable-kernel-core
!
hostname <removed>
!
!
vrf definition Mgmt-vrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
enable secret 5 <removed>
!
no aaa new-model
software auto-upgrade enable
!
switch 1 provision ws-c3850-48p
!
!
!
!
ip routing
!
!
!
no ip domain lookup
no ip dhcp conflict logging
ip dhcp excluded-address 10.0.10.1 10.0.10.10
ip dhcp excluded-address 10.0.20.1 10.0.20.10
ip dhcp excluded-address 10.0.30.1 10.0.30.10
ip dhcp excluded-address 10.0.50.1 10.0.50.10
ip dhcp excluded-address 10.161.0.1 10.161.0.3
!
ip dhcp pool VOIP
import all
network 10.0.10.0 255.255.255.0
default-router 10.0.10.1
dns-server 8.8.8.8 4.2.2.2
!
ip dhcp pool STAFF
import all
network 10.0.20.0 255.255.255.0
default-router 10.0.20.1
dns-server 8.8.8.8 4.2.2.2
lease 0 8
!
ip dhcp pool MGMT
import all
network 10.161.0.0 255.255.255.0
default-router 10.161.0.1
dns-server 8.8.8.8 4.2.2.2
!
ip dhcp pool AV
import all
network 10.0.50.0 255.255.255.0
default-router 10.0.50.1
dns-server 8.8.8.8 4.2.2.2
lease 0 8
!
ip dhcp pool GUEST
import all
network 10.0.30.0 255.255.254.0
default-router 10.0.30.1
dns-server 8.8.8.8 4.2.2.2
lease 0 8
!
!
!
ip dhcp snooping vlan 10,20,30,50
ip dhcp snooping
!
!
!
!
!
!
license boot level ipbasek9
diagnostic bootup level minimal
spanning-tree mode rapid-pvst
spanning-tree extend system-id
!
!
redundancy
mode sso
!
!
!
class-map match-any system-cpp-police-topology-control
description Topology control
class-map match-any system-cpp-police-sw-forward
description Sw forwarding, SGT Cache Full, LOGGING
class-map match-any system-cpp-default
description DHCP snooping, show forward and rest of traffic
class-map match-any system-cpp-police-sys-data
description Learning cache ovfl, Crypto Control, Exception, EGR Exception, NFL SAMPLED DATA, Gold Pkt, RPF Failed
class-map match-any system-cpp-police-punt-webauth
description Punt Webauth
class-map match-any system-cpp-police-forus
description Forus Address resolution and Forus traffic
class-map match-any system-cpp-police-multicast-end-station
description MCAST END STATION
class-map match-any system-cpp-police-multicast
description Transit Traffic and MCAST Data
class-map match-any system-cpp-police-l2-control
description L2 control
class-map match-any system-cpp-police-dot1x-auth
description DOT1X Auth
class-map match-any system-cpp-police-data
description ICMP_GEN and BROADCAST
class-map match-any system-cpp-police-control-low-priority
description ICMP redirect and general punt
class-map match-any system-cpp-police-wireless-priority1
description Wireless priority 1
class-map match-any system-cpp-police-wireless-priority2
description Wireless priority 2
class-map match-any system-cpp-police-wireless-priority3-4-5
description Wireless priority 3,4 and 5
class-map match-any non-client-nrt-class
class-map match-any system-cpp-police-routing-control
description Routing control
class-map match-any system-cpp-police-protocol-snooping
description Protocol snooping
!
policy-map port_child_policy
class non-client-nrt-class
bandwidth remaining ratio 10
policy-map system-cpp-policy
class system-cpp-police-data
police rate 200 pps
class system-cpp-police-sys-data
police rate 100 pps
class system-cpp-police-sw-forward
police rate 1000 pps
class system-cpp-police-multicast
police rate 500 pps
class system-cpp-police-multicast-end-station
police rate 2000 pps
class system-cpp-police-punt-webauth
class system-cpp-police-l2-control
class system-cpp-police-routing-control
police rate 1800 pps
class system-cpp-police-control-low-priority
class system-cpp-police-wireless-priority1
class system-cpp-police-wireless-priority2
class system-cpp-police-wireless-priority3-4-5
class system-cpp-police-topology-control
class system-cpp-police-dot1x-auth
class system-cpp-police-protocol-snooping
class system-cpp-police-forus
class system-cpp-default
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface GigabitEthernet0/0
vrf forwarding Mgmt-vrf
no ip address
negotiation auto
!
interface GigabitEthernet1/0/1
description connection to router
switchport access vlan 100
switchport trunk allowed vlan 1-665,667-4094
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/0/2
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/3
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/4
switchport access vlan 20
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/5
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/6
switchport access vlan 20
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/7
description Patched to D6; Library
switchport access vlan 20
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/8
switchport access vlan 666
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/9
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/10
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/11
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/12
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/13
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/14
switchport access vlan 20
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/15
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/16
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/17
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/18
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/19
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/20
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/21
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/22
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/23
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/24
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/25
description Connection to A42-6
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/26
description Patched to port 14; Connected to AP02; Conference room
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/27
description Connection to A42-5
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/28
description Connection to A42-4
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/29
description Patched to port 17; Connected to AP01; Hallway to Gym
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/30
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/31
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/32
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/33
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/34
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/35
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/36
switchport access vlan 666
switchport mode access
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/37
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/38
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/39
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/40
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/41
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/42
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/43
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/44
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/45
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/46
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/47
switchport access vlan 666
switchport trunk native vlan 4
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/0/48
switchport access vlan 20
switchport trunk allowed vlan 1-665,667-4094
switchport mode trunk
switchport nonegotiate
switchport voice vlan 10
spanning-tree portfast
!
interface GigabitEthernet1/1/1
!
interface GigabitEthernet1/1/2
!
interface GigabitEthernet1/1/3
!
interface GigabitEthernet1/1/4
!
interface TenGigabitEthernet1/1/1
!
interface TenGigabitEthernet1/1/2
!
interface TenGigabitEthernet1/1/3
!
interface TenGigabitEthernet1/1/4
!
interface Vlan1
ip address 10.161.0.2 255.255.255.0
!
interface Vlan4
ip address 10.0.4.2 255.255.255.0
!
interface Vlan10
description VOIP Network
ip address 10.0.10.1 255.255.255.0
!
interface Vlan20
description Staff
ip address 10.0.20.1 255.255.255.0
!
interface Vlan30
description GUEST network
ip address 10.0.30.1 255.255.254.0
!
interface Vlan50
ip address 10.0.50.1 255.255.255.0
!
interface Vlan100
description connection to router
ip address 10.0.1.2 255.255.255.252
!
ip default-gateway 10.0.1.1
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip route 0.0.0.0 0.0.0.0 10.0.1.1
ip route 10.161.0.1 255.255.255.255 10.0.1.1
ip route 192.168.1.254 255.255.255.255 Vlan100
ip ssh version 2
!
ip access-list extended AutoQos-4.0-wlan-Acl-Bulk-Data
permit tcp any any eq 22
permit tcp any any eq 465
permit tcp any any eq 143
permit tcp any any eq 993
permit tcp any any eq 995
permit tcp any any eq 1914
permit tcp any any eq ftp
permit tcp any any eq ftp-data
permit tcp any any eq smtp
permit tcp any any eq pop3
ip access-list extended AutoQos-4.0-wlan-Acl-MultiEnhanced-Conf
permit udp any any range 16384 32767
permit tcp any any range 50000 59999
ip access-list extended AutoQos-4.0-wlan-Acl-Scavanger
permit tcp any any range 2300 2400
permit udp any any range 2300 2400
permit tcp any any range 6881 6999
permit tcp any any range 28800 29100
permit tcp any any eq 1214
permit udp any any eq 1214
permit tcp any any eq 3689
permit udp any any eq 3689
permit tcp any any eq 11999
ip access-list extended AutoQos-4.0-wlan-Acl-Signaling
permit tcp any any range 2000 2002
permit tcp any any range 5060 5061
permit udp any any range 5060 5061
ip access-list extended AutoQos-4.0-wlan-Acl-Transactional-Data
permit tcp any any eq 443
permit tcp any any eq 1521
permit udp any any eq 1521
permit tcp any any eq 1526
permit udp any any eq 1526
permit tcp any any eq 1575
permit udp any any eq 1575
permit tcp any any eq 1630
permit udp any any eq 1630
permit tcp any any eq 1527
permit tcp any any eq 6200
permit tcp any any eq 3389
permit tcp any any eq 5985
permit tcp any any eq 8080
!
!
!
control-plane
service-policy input system-cpp-policy
!
!
no vstack
banner motd ^CCC
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXX Authorized Use Only! XXXXXXXXXXXXXXXXXXXXXXXXXXXX
XX XX
XX The information on this computer and network is the Proprietary Property XX
XX of this organization and is protected by intellectual property rights. XX
XX You must be assigned an account on this computer to access information XX
XX and are only allowed to access information defined by the system XX
XX administrators. XX
XX XX
XX By accessing this system, you are consenting to system monitoring of XX
XX your activities. Unauthorized access or use may subject you to organizational XX
XX discipline and/or prosecution and penalties. XX
XX XX
XX XX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
^C
!
line con 0
logging synchronous
login local
stopbits 1
line aux 0
stopbits 1
line vty 0 4
logging synchronous
login local
transport input ssh
line vty 5 15
logging synchronous
login
!
!
wsma agent exec
!
wsma agent config
!
wsma agent filesys
!
wsma agent notify
!
!
ap dot11 airtime-fairness policy-name Default 0
ap group default-group
ap hyperlocation ble-beacon 0
ap hyperlocation ble-beacon 1
ap hyperlocation ble-beacon 2
ap hyperlocation ble-beacon 3
ap hyperlocation ble-beacon 4
end

Hello,

can you post the output of:

show platform hardware fed switch 1 qos queue stats internal cpu policer

I just want to check if the policer for DHCP Snooping is disabled (which is the default)...

Here you go!

SW1#show platform hardware fed switch 1 qos queue stats internal cpu policer
(default) (set)
QId PlcIdx Queue Name Enabled Rate Rate Drop
------------------------------------------------------------------------
0 11 DOT1X Auth No 1000 1000 0
1 1 L2 Control No 500 500 0
2 14 Forus traffic No 1000 1000 0
3 0 ICMP GEN Yes 200 200 0
4 2 Routing Control Yes 1800 1800 0
5 14 Forus Address resolution No 1000 1000 0
6 3 Punt Copy to ICMP Redirect No 500 500 0
7 6 WLESS PRI-5 No 1000 1000 0
8 4 WLESS PRI-1 No 1000 1000 0
9 5 WLESS PRI-2 No 1000 1000 0
10 6 WLESS PRI-3 No 1000 1000 0
11 6 WLESS PRI-4 No 1000 1000 0
12 0 BROADCAST Yes 200 200 0
13 10 Learning cache ovfl Yes 100 100 0
14 13 Sw forwarding Yes 1000 1000 0
15 8 Topology Control No 13000 13000 0
16 12 Proto Snooping No 500 500 0
17 16 DHCP Snooping No 1000 1000 0
18 9 Transit Traffic Yes 500 500 0
19 10 RPF Failed Yes 100 100 0
20 15 MCAST END STATION Yes 2000 2000 0
21 13 LOGGING Yes 1000 1000 0
22 7 Punt Webauth No 1000 1000 0
23 10 Crypto Control Yes 100 100 0
24 10 Exception Yes 100 100 0
25 3 General Punt No 500 500 0
26 10 NFL SAMPLED DATA Yes 100 100 0
27 2 Low Latency Yes 1800 1800 0
28 10 EGR Exception Yes 100 100 0
29 16 Nif Mgr No 1000 1000 0
30 9 MCAST Data Yes 500 500 0
31 10 Gold Pkt Yes 100 100 0

I even changed it up and put the dhcp server on the connected router.  Used subinterfaces on the router for each vlan and and trunk port from the switch.  Still can't get DHCP to work.  I have done this a thousand times before and this is really stumping me.  

I would check your port configurations

for a vlan 1 port

switchport mode access

switchport access vlan 1

you will not see the second command in the config.

you can easily erase a port config:

default interface “interface”

configure a port as I suggest and plug a dhcp computer into the switch and see if it gets an IP.

please rate helpful posts.

All of the ports have been moved to a parking vlan (666) unless manually assigned.  The trunks are the only ports associated with vlan 1.

SW1#sh vlan brie

VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
1 default active
4 MGMT active
10 VOIP active Gi1/0/2, Gi1/0/3, Gi1/0/4, Gi1/0/5, Gi1/0/6, Gi1/0/7, Gi1/0/9
Gi1/0/10, Gi1/0/11, Gi1/0/12, Gi1/0/13, Gi1/0/14, Gi1/0/15
Gi1/0/16, Gi1/0/17, Gi1/0/18, Gi1/0/19, Gi1/0/20, Gi1/0/21
Gi1/0/22, Gi1/0/23, Gi1/0/24, Gi1/0/32, Gi1/0/33, Gi1/0/34
Gi1/0/35, Gi1/0/36, Gi1/0/37, Gi1/0/38, Gi1/0/39, Gi1/0/40
Gi1/0/41, Gi1/0/42, Gi1/0/43, Gi1/0/44, Gi1/0/45, Gi1/0/46
Gi1/0/47, Gi1/0/48
20 STAFF active Gi1/0/4, Gi1/0/6, Gi1/0/7, Gi1/0/14, Gi1/0/48
30 Guest active
50 AV active
100 WAN active Gi1/0/1
666 PARKING active Gi1/0/2, Gi1/0/3, Gi1/0/5, Gi1/0/9, Gi1/0/10, Gi1/0/11, Gi1/0/12
Gi1/0/13, Gi1/0/15, Gi1/0/16, Gi1/0/17, Gi1/0/18, Gi1/0/19
Gi1/0/20, Gi1/0/21, Gi1/0/22, Gi1/0/23, Gi1/0/24, Gi1/0/32
Gi1/0/33, Gi1/0/34, Gi1/0/35, Gi1/0/36, Gi1/0/37, Gi1/0/38
Gi1/0/39, Gi1/0/40, Gi1/0/41, Gi1/0/42, Gi1/0/43, Gi1/0/44
Gi1/0/45, Gi1/0/46, Gi1/0/47
1002 fddi-default act/unsup
1003 token-ring-default act/unsup
1004 fddinet-default act/unsup
1005 trnet-default act/unsup

SW1#sh int trunk

Port Mode Encapsulation Status Native vlan
Gi1/0/8 on 802.1q trunking 1
Gi1/0/25 on 802.1q trunking 1
Gi1/0/26 on 802.1q trunking 1
Gi1/0/27 on 802.1q trunking 1
Gi1/0/28 on 802.1q trunking 1
Gi1/0/29 on 802.1q trunking 1
Gi1/0/30 on 802.1q trunking 1
Gi1/0/31 on 802.1q trunking 1

Port Vlans allowed on trunk
Gi1/0/8 1-665,667-4094
Gi1/0/25 1-665,667-4094
Gi1/0/26 1-665,667-4094
Gi1/0/27 1-665,667-4094
Gi1/0/28 1-665,667-4094
Gi1/0/29 1-665,667-4094
Gi1/0/30 1-665,667-4094
Gi1/0/31 1-665,667-4094

Port Vlans allowed and active in management domain
Gi1/0/8 1,4,10,20,30,50,100
Gi1/0/25 1,4,10,20,30,50,100
Gi1/0/26 1,4,10,20,30,50,100
Gi1/0/27 1,4,10,20,30,50,100
Gi1/0/28 1,4,10,20,30,50,100
Gi1/0/29 1,4,10,20,30,50,100
Gi1/0/30 1,4,10,20,30,50,100
Gi1/0/31 1,4,10,20,30,50,100

Port Vlans in spanning tree forwarding state and not pruned
Gi1/0/8 1,4,10,100
Gi1/0/25 1,4,10,20,30,50,100
Gi1/0/26 1,4,10,100
Gi1/0/27 1,4,10,100
Gi1/0/28 1,4,10,100
Gi1/0/29 1,4,10,100
Gi1/0/30 1,4,10,100
Gi1/0/31 1,4,10,100

You have dhcp snooping configured and I don’t see any trust command configured. You can temporarily remove dhcp snooping and test.

Please mark helpful posts.

I have disabled snooping and it is still the same.  

SW1#sh ip dhcp pool

Pool VOIP :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 3
Excluded addresses : 10
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased/Excluded/Total
10.0.10.14 10.0.10.1 - 10.0.10.254 3 / 10 / 254

Pool STAFF :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 15
Excluded addresses : 10
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased/Excluded/Total
10.0.20.26 10.0.20.1 - 10.0.20.254 15 / 10 / 254

Pool MGMT :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 10
Excluded addresses : 3
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased/Excluded/Total
10.161.0.15 10.161.0.1 - 10.161.0.254 10 / 3 / 254

Pool AV :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 254
Leased addresses : 11
Excluded addresses : 10
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased/Excluded/Total
10.0.50.22 10.0.50.1 - 10.0.50.254 11 / 10 / 254

Pool GUEST :
Utilization mark (high/low) : 100 / 0
Subnet size (first/next) : 0 / 0
Total addresses : 510
Leased addresses : 20
Excluded addresses : 10
Pending event : none
1 subnet is currently in the pool :
Current index IP address range Leased/Excluded/Total
10.0.30.34 10.0.30.1 - 10.0.31.254 20 / 10 / 510

You can see there are some addresses being assigned, but still not assigning to everyone.

Hello,

odd. What if you remove the 'import all' option from the DHCP pools ?

I eventually just erased the entire config and rebuilding.  Same configuration, but everything works now.