Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
450
Views
0
Helpful
2
Replies

DHCP Snooping with existing leases

Not applicable

‎04-18-2013 06:33 AM - last edited on ‎03-07-2019 12:53 PM by

Hoping somebody can help.

I recently introduced a new switch into production that was running DHCP snooping. In the lab this appeared to work as inteded and prevented untrusted DHCP servers. In production the behaviour was much different, a handful of devices got IP addresses, but many of them failed to aquire one.

I'm unsure as to why this was the case and wonder if it has anything to do with existing leases. My understanding it that DHCP snooping maintains it's own snooping bindings of DHCP offers. I did however try deleting the DHCP lease of one machine, but this failed to produce the intended results still.

Any advise would be much appreciated.

Cheers,

Neil.

Labels:
0 Helpful
2 Replies 2

Kyle McKay
Level 1
Level 1

‎04-19-2013 08:31 AM

Hi Neil,

Would you be able to post your configuration?

The Switch relies on observing the entire DHCP process from client to server. It populates its binding table based on that information. If you were to enable DHCP snooping on a switch, the binding table would be completely empty to start. The switch needs to observe the DORA DHCP process (Discover, Offer, Request, Acknowledge) for each connected device in order to successfully populate that binding table.

If devices are failing to acquire a DHCP-assigned IP address, there are many different reasons for it. The most common problem I have seen in initial implementation pertains to the DHCP Snooping information option. Without actually seeing your configuration or your debugs, I would go out on a limb and suggest turning that off (no ip dhcp snooping information option).

Hope this helps!

0 Helpful

paul driver
VIP
VIP

‎04-19-2013 09:38 AM

Hello
when you enable dhcp snooping on an axitve swith the snooping database will NOT get populated with existing leases only when the client renews will this occur.

Also make sure if you have dhcp clients in additional swithes then snooping will be required on them also.

lastly make sure you trust the switches interconnects otherwise your clients will ne dropped

res
Paul

Sent from Cisco Technical Support Android App


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card