11-03-2019 01:13 AM - edited 11-03-2019 01:16 AM
Dear all,
i got issue when implementing ip dhcp snooping. i use vlan 101 and DHCP Server is on cisco router. I use subinterface on my router. this is my topology
client <mode access> fa0/22 switch catalyst 3560 fa0/24 <mode trunk> cisco router 891.
this is my switch configuration:
CATALYST-KANTOR#show run int fa0/22
Building configuration...
Current configuration : 133 bytes
!
interface FastEthernet0/22
description LAN KANTOR LA-TO WIFI TPLINK LT.2
switchport access vlan 101
switchport mode access
end
CATALYST-KANTOR#show run int fa0/24
Building configuration...
Current configuration : 244 bytes
!
interface FastEthernet0/24
description TO ROUTER CISCO 891
switchport trunk encapsulation dot1q
switchport trunk native vlan 121
switchport trunk allowed vlan 1-1000,1331,2525,2526,2596
switchport mode trunk
ip dhcp snooping trust
end
CATALYST-KANTOR#show run | i snooping
ip dhcp snooping vlan 101
no ip dhcp snooping information option
ip dhcp snooping
ip dhcp snooping trust
CATALYST-KANTOR#
CATALYST-KANTOR#show ip dhcp snooping
Switch DHCP snooping is enabled
DHCP snooping is configured on following VLANs:
101
DHCP snooping is operational on following VLANs:
101
DHCP snooping is configured on the following L3 Interfaces:
Insertion of option 82 is disabled
circuit-id default format: vlan-mod-port
remote-id: c062.6b7e.8c00 (MAC)
Option 82 on untrusted port is not allowed
Verification of hwaddr field is enabled
Verification of giaddr field is enabled
DHCP snooping trust/rate is configured on the following Interfaces:
Interface Trusted Allow option Rate limit (pps)
----------------------- ------- ------------ ----------------
FastEthernet0/24 yes yes unlimited
Custom circuit-ids:
i also disabled the insertion of option 82, but still not working. i sure that theres no problem with my dhcp server, bcz when i disable dhcp snooping on switch, dhcp works fine.
anyone could help me?
Thanks
11-03-2019 06:43 AM - edited 11-03-2019 06:46 AM
Hello
I assume that only a host attaching to the access port?
What device is running the dhcp service?
Can you post the output of the failing dhcp when snooping is activated?
debug ip dhcp server packet
Lastly would you apply portfast to the access port.
int fa0/22
spanning-tree portfast
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide