Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
266
Views
0
Helpful
6
Replies

Disable option 82 impacts

prasad salvi
Level 1
Level 1

‎10-24-2024 07:29 AM

We have an issue where we've enabled DHCP snooping for vlan 20,30,40,50 but out of which only vlan 50 is not working(clients are not getting IPs)

Vlan 50 = DHCP server is on directly connected router...rest are with local DHCP servers (working properly)
What might be the issue here?

Labels:
0 Helpful
6 Replies 6

marce1000
VIP
VIP

‎10-24-2024 07:57 AM

 

 - Try to disable the DHCP snooping (everywhere , if needed) ; if it then works there must have been a configuration error somewhere , 

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Reza Sharifi
Hall of Fame
Hall of Fame

‎10-24-2024 07:58 AM

Can you post DHCP config from the router and the switch?

HTH

0 Helpful

Flavio Miranda
VIP
VIP

‎10-24-2024 08:46 AM

@prasad salvi 

 Do you have interface vlan on the switch?  If does, vlan 50 have ip helper-address?

If server is connected to the router, you probably need routing and ip helper-adddress to make the request get to the server.

0 Helpful

prasad salvi
Level 1
Level 1
In response to Flavio Miranda

‎10-27-2024 11:04 PM

I have L2 vlan on switch and L3 vlan on router..and DHCP scope is configured on router itself no other DHCP server as such for this vlan 50

0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni
In response to prasad salvi

‎10-28-2024 03:57 PM

Hi,

   When you enable DHCP snooping, switch will insert option 82 information within DHCP client Discovery packet; when this is received by DHCP server (your case), or DHCP relay agent, per the RFC, packet is dropped because it seems that packet was relayed but GIADDR value is still zero, which is not possible per DHCP RFC, as at that point in time, there was no snooping functionality, so no layer 2 relay functionality.

   You have two fixes for this: disable insertion of option 82 on the switch via global command "no ip dhcp snooping information option" or allow DHCP server/relay on the directly connected broadcast domain to allow receipt of DHCP Discovery messages with relay option 82 via interface level command "ip dhcp relay information trusted". In both cases, switch port facing DHCP server needs to be configured as trusted via interface level command "ip dhcp snooping trust", as switch only forwards DHCP client message out on trusted ports, where it's expected to have DHCP servers.

Best,

Cristian.

0 Helpful

MHM Cisco World
VIP
VIP

‎10-28-2024 01:28 PM

You run dhcp snooping and dhcp for vlan50 is in router direct connect to SW.

Then there are two things to check

1- the port connect SW to router must config as trust 

If above not work 

2- Disable op82 in SW 

MHM

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card