cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1438
Views
0
Helpful
2
Replies

877 unable to renew lease on ATM/BVI interface

Kim Alm
Level 1
Level 1

Hi,

My 877 is not renewing the DHCP lease on the BVI interface, end result is that it shuts down the interface every four hours and does a broadcast for a IP, it get's the new IP and activates the interface.

My interface configurations for the ATM and BVI are:

interface ATM0
description Saunalahti ADSL
mac-address 0000.0cb5.b926
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
no atm ilmi-keepalive
dsl enable-training-log delay 5
end

interface ATM0.100 point-to-point
no ip redirects
no ip unreachables
no ip proxy-arp
pvc 0/100
  protocol ip 255.255.255.255 broadcast
  broadcast
  encapsulation aal5snap
  protocol ip inarp
!
bridge-group 1
end

interface BVI1
description Saunalahti ADSL, reitittimen ulkoverkon portti
mac-address 0000.0cb5.b926
mtu 1500
ip dhcp client client-id ascii 0100.000c.b5b9.26
ip dhcp client lease 2 0 0
ip ddns update DYNDNS host members.dyndns.org
ip ddns update he-ipv6
ip address dhcp
ip access-group FW-BVI1-IN in
ip access-group FW-BVI1-OUT out
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
end

Debug for IP and DHCP during a renew returns the following.

009023: May 19 12:57:12.446 EET_DST: DHCP: QScan: Bound..T1 fired..Renewing
009024: May 19 12:57:12.446 EET_DST: DHCP: SRequest attempt # 1 for entry:
009025: May 19 12:57:12.446 EET_DST: Temp IP addr: 91.156.57.109  for peer on Interface: BVI1
009026: May 19 12:57:12.446 EET_DST: Temp  sub net mask: 255.255.248.0
009027: May 19 12:57:12.446 EET_DST:    DHCP Lease server: 193.229.28.26, state: 7 Renewing
009028: May 19 12:57:12.446 EET_DST:    DHCP transaction id: 102A
009029: May 19 12:57:12.446 EET_DST:    Lease: 14400 secs,  Renewal: 7200 secs,  Rebind: 12600 secs
009030: May 19 12:57:12.446 EET_DST: Temp default-gateway addr: 91.156.56.1
009031: May 19 12:57:12.446 EET_DST:    Next timer fires after: 01:30:01
009032: May 19 12:57:12.446 EET_DST:    Retry count: 1   Client-ID: 0100.000c.b5b9.26
009033: May 19 12:57:12.446 EET_DST:    Client-ID hex dump: 303130302E303030632E623562392E32
009034: May 19 12:57:12.446 EET_DST:                        36
009035: May 19 12:57:12.446 EET_DST:    Hostname: Cisco877
009036: May 19 12:57:12.446 EET_DST: DHCP: SRequest - ciaddr: 91.156.57.109
009037: May 19 12:57:12.446 EET_DST: DHCP: SRequest placed lease len option: 14400
009038: May 19 12:57:12.446 EET_DST: DHCP: SRequest placed class-id option: 64736C666F72756D2E6F7267
009039: May 19 12:57:12.450 EET_DST: DHCP: SRequest: 308 bytes
009040: May 19 12:57:12.450 EET_DST: DHCP: SRequest: 308 bytes
009041: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26, len 604, local feature, NAT(2), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009042: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26 (BVI1), len 604, sending
009043: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26 (BVI1), len 604, output feature, Post-routing NAT Outside(17), rtype 1, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009044: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26 (BVI1), len 604, output feature, Stateful Inspection(20), rtype 1, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009045: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26 (BVI1), len 604, output feature, IPsec or interface ACL checked on pre-encrypted cleartext packets(34), rtype 1, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009046: May 19 12:57:12.450 EET_DST: IP: s=91.156.57.109 (local), d=193.229.28.26 (BVI1), len 604, sending full packet
009047: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, Stateful Inspection(4), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009048: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, Virtual Fragment Reassembly(21), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009049: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, Access List(26), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009050: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, Virtual Fragment Reassembly After IPSec Decryption(32), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009051: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, NAT Outside(53), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009052: May 19 12:57:12.494 EET_DST: IP: s=193.229.28.26 (BVI1), d=91.156.57.109, len 328, input feature, MCI Check(64), rtype 0, forus FALSE, sendself FALSE, mtu 0, fwdchk FALSE
009053: May 19 12:57:14.427 EET_DST: %SEC-6-IPACCESSLOGP: list FW-BVI1-IN permitted udp 193.229.28.26(67) (BVI1 0016.4d71.71e6) -> 91.156.57.109(68), 1 packet

So the unicast back from the DHCP server is picked up by the router and accepted by the FW rule, but for some reason it's not picked up by the DHCP client.

The mac adress in the logline 009053 is the one of the GW on the ISP side.

Cisco877#sho ip arp
Protocol  Address          Age (min)  Hardware Addr   Type   Interface
Internet  91.156.56.1            11   0016.4d71.71e6  ARPA   BVI1
Internet  91.156.57.109           -   0000.0cb5.b926  ARPA   BVI1
Internet  192.168.0.153         230   c417.fe50.e282  ARPA   Vlan10
Internet  192.168.0.160          39   0021.27c3.b9dd  ARPA   Vlan10
Internet  192.168.0.254           -   001b.8fd2.9b60  ARPA   Vlan10
Cisco877#

Cisco877#show dhcp lease
Temp IP addr: 91.156.57.109  for peer on Interface: BVI1
Temp  sub net mask: 255.255.248.0
    DHCP Lease server: 193.229.28.26, state: 7 Renewing
    DHCP transaction id: 102A
    Lease: 14400 secs,  Renewal: 7200 secs,  Rebind: 12600 secs
Temp default-gateway addr: 91.156.56.1
    Next timer fires after: 00:49:42
    Retry count: 1   Client-ID: 0100.000c.b5b9.26
    Client-ID hex dump: 303130302E303030632E623562392E32
                        36
    Hostname: Cisco877
Cisco877#

Any idea what I'm missing and why it doesn't renew?

Kim

2 Replies 2

paolo bevilacqua
Hall of Fame
Hall of Fame

Try updating IOS.

You can also try atm route-bridged config instead of the BVI.

The router is quite upto date.

Cisco877#sho ver

Cisco IOS Software, C870 Software (C870-ADVIPSERVICESK9-M), Version 12.4(24)T5, RELEASE SOFTWARE (fc3)

Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Fri 04-Mar-11 07:45 by prod_rel_team

The  atm route-bridged might be worth to try, I need to find a good example and time before starting to re-tweak my config that radically.

Review Cisco Networking for a $25 gift card