Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
716
Views
5
Helpful
5
Replies

DHCP-Snooping

Go to solution
saeedek
Level 1
Level 1

‎01-24-2021 09:24 PM

i have access switches cat 9300 connected to core cat 9500.Core has GW for all vlans.

then cat 9500 connected to DC through cat 6800.in DC there is DHCP server how i can apply dhcp snooping on cat 9300 and cat 9500 ?

i enabled dhcp snooping @ cat 9300 and 9500. from access i make trust port to up links.and from core side i use helper address and use globally no ip dhcp information option,ip dhcp snooping information option allow-untrust.

is this enough ?

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
saeedek
Level 1
Level 1

‎01-25-2021 09:29 PM

it's working fine
these are configuration

Access SW

=========

ip dhcp snooping vl x,y,z

ip dhcp snooping

no ip dhcp snooping information option

int po x

ip dhcp snooping trust

 

Core SW

=======

ip dhcp snooping vl x,y,z

ip dhcp snooping

no ip dhcp snooping information option

int vl x

ip add z.z.z.z

ip helper-add c.c.c.c

now all users are able to get ip add from DHCP server

thanks all for support

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Georg Pauwen
VIP
VIP

‎01-25-2021 12:11 AM

Hello,

 

what you configured sounds about right. What are you running into, is your setup not working ?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎01-25-2021 04:03 AM

as Long as the DHCP server reachable to ACCESS Switch and CORE Switch towards DC where DHCP running, below config works high level.

 

ip name-server y.y.y.y
ip domain list domain.com
!
ip dhcp snooping vlan XXX,YYY
no ip dhcp snooping information option
ip dhcp snooping

!

interface VlanXXX
ip helper-address DHCP1IP
ip helper-address DHCP2IP

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
saeedek
Level 1
Level 1

‎01-25-2021 09:29 PM

it's working fine
these are configuration

Access SW

=========

ip dhcp snooping vl x,y,z

ip dhcp snooping

no ip dhcp snooping information option

int po x

ip dhcp snooping trust

 

Core SW

=======

ip dhcp snooping vl x,y,z

ip dhcp snooping

no ip dhcp snooping information option

int vl x

ip add z.z.z.z

ip helper-add c.c.c.c

now all users are able to get ip add from DHCP server

thanks all for support

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to saeedek

‎01-26-2021 03:02 AM

Hello @saeedek ,

enabling DHCP snooping on the core switch may be avoided if no end user devices are connected directly to it,  configuring it at access layer is enough.

 

In the past I have had issues with DHCP snooping enabled on core switch on WLC connecting port channel we had to put it in dhcp snooping trust mode otherwise wireless users could not get an IP address.

 

Hope to help

Giuseppe

 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎01-26-2021 02:15 AM

Glad to know all working as expected, we mark as solution, so it will be usefull for other community members can use.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card