- Cisco Community
- Technology and Support
- Networking
- Switching
- Need to shift dhcp scope from l3 switch to dhcp 2012 r2 server
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Need to shift dhcp scope from l3 switch to dhcp 2012 r2 server
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-13-2018 10:57 PM - edited 03-08-2019 01:50 PM
Dear ALL,
I have multiple dhcp scope on l3 switch same need to be shift on dhcp window 2012 server R2 please let us know configuration changes need to be done for this.
- Labels:
-
Other Switching
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-13-2018 11:45 PM
Hi,
There is no specific configuration required but some steps have to check or run command.
1. Are you going to install DHCP server on the same VLAN? If not, then run a command "IP helpder-address x.x.x. <DHCP server IP address> under the all VLAN configuration on your core switch.
2. After complete configuration and testing of your server remove the DHCP pool from the switch.
3. Verify that your all systems are getting proper IP configuration from DHCP including IP, Gateway, DNS, or other option as any specifically required option as 82,43, etc. That all are not required in normal desktop or servers.
Regards,
Deepak Kumar
Regards,
Deepak Kumar
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2018 12:04 AM
Dear Deepak,
We have core switch which is connected to router & router which is connected to mpls in this network we have running dhcp server so please specify we have to configure ip helper address on router where we have already advertise ip subnets or we have to configure the dhcp ip helper address on each and every vlan.
Also specify command how to configure ip helper address on switch.??
how the dora process will process from system to router then to dhcp server.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2018 12:37 AM
Hi,
Where is VLAN routing configured? Is it on the core switch or router?
If your VLAN routing is configured on core switch then the command "IP helpder-address X.X.X.X" required on the switch under the each VLANs, which are supplying IP address from your DHCP server.
If VLAN routing is configured on the router then IP helpder-address X.X.X.X" required on the router under the each VLANs.
more specification, can you share your Core switch configuration.
Dora process:
The system will send a broadcast message, in particular, VLAN and VLAN IP helper convert it into unicast and forward to DHCP server.
Regards,
Deepak Kumar
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2018 09:06 PM
Dear Deepak,
Please find the confg of PI-CORE & Router I have hide the ip of dns server rest of the config is same.
Please suggest where changes is required to make communication with dhcp server and share the templet
PI-CORE
PI-Core>en
Password:
PI-Core#sh run
PI-Core#sh running-config
Building configuration...
Current configuration : 12435 bytes
!
! Last configuration change at 12:23:07 IST Fri Feb 2 2018 by
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
service compress-config
!
hostname PI-Core
!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-vrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
no logging console
enable secret 5 $1$4ENJ$Pt9HR7odQMHrCo58UK28W1
!
username panasonicindia privilege 15 secret 5 $1$VHPe$iCepdr5VRLEYmidkUU6ta1
aaa new-model
!
!
!
!
!
!
!
!
aaa session-id common
clock timezone IST 5 30
switch 1 provision ws-c3850-12xs
switch 2 provision ws-c3850-12xs
!
!
!
!
!
coap http enable
!
!
!
!
!
!
ip routing
!
ip domain-name PANASONIC.COM
no ip dhcp conflict logging
ip dhcp excluded-address 10.85.45.1 10.85.45.5
ip dhcp excluded-address 10.85.67.1 10.85.67.5
ip dhcp excluded-address 10.85.64.100 10.85.64.104
ip dhcp excluded-address 10.85.64.1 10.85.64.60
ip dhcp excluded-address 10.85.42.1 10.85.42.20
ip dhcp excluded-address 10.85.41.1 10.85.41.50
ip dhcp excluded-address 137.40.35.1 137.40.35.70
ip dhcp excluded-address 10.85.41.213 10.85.41.225
ip dhcp excluded-address 10.85.67.105
ip dhcp excluded-address 10.85.67.200 10.85.67.205
ip dhcp excluded-address 10.85.40.1 10.85.40.80
ip dhcp excluded-address 10.85.67.226
ip dhcp excluded-address 10.85.64.218
ip dhcp excluded-address 137.40.35.161 137.40.35.162
ip dhcp excluded-address 10.85.40.106
ip dhcp excluded-address 10.85.41.108
ip dhcp excluded-address 137.40.35.102
ip dhcp excluded-address 10.85.41.62
ip dhcp excluded-address 10.85.67.6 10.85.67.7
ip dhcp excluded-address 10.85.67.16
ip dhcp excluded-address 10.85.65.117
ip dhcp excluded-address 10.85.65.251
ip dhcp excluded-address 10.85.89.1 10.85.89.50
ip dhcp excluded-address 10.85.64.237
ip dhcp excluded-address 137.40.35.180
no ip dhcp ping packets
!
ip dhcp pool LAN
network 10.85.67.0 255.255.255.0
default-router 10.85.67.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 10.85.42.X
network 10.85.42.0 255.255.255.0
default-router 10.85.42.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 10.85.41.X
network 10.85.41.0 255.255.255.0
default-router 10.85.41.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 137.40.35.X
network 137.40.35.0 255.255.255.0
default-router 137.40.35.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 11thfloor
network 10.85.40.0 255.255.255.0
default-router 10.85.40.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool WIRELESS
network 10.85.64.0 255.255.254.0
default-router 10.85.64.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool Mobility
network 10.85.89.0 255.255.255.0
default-router 10.85.89.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
!
qos queue-softmax-multiplier 100
!
crypto pki trustpoint TP-self-signed-2007993793
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2007993793
revocation-check none
rsakeypair TP-self-signed-2007993793
!
!
crypto pki certificate chain TP-self-signed-20079
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32303037 39393337 3933301E 170D3137 30363037 31303337
34325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
DC557EDD 5434F520 53BECA95
D6FB9EA5 CD39C3A3 2995DC26 1F4F5F
quit
diagnostic bootup level minimal
!
spanning-tree mode pvst
spanning-tree extend system-id
spanning-tree vlan 1-4094 priority 24576
hw-switch switch 1 logging onboard message level 3
hw-switch switch 2 logging onboard message level 3
!
redundancy
mode sso
!
!
!
class-map match-any non-client-nrt-class
!
policy-map port_child_policy
class non-client-nrt-class
bandwidth remaining ratio 10
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel9
switchport mode trunk
!
interface GigabitEthernet0/0
vrf forwarding Mgmt-vrf
no ip address
negotiation auto
!
interface TenGigabitEthernet1/0/1
description "Connected With 12_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet1/0/2
description "Connected With 12_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet1/0/3
description "Connected With 12_Floor_HUB4"
switchport mode trunk
!
interface TenGigabitEthernet1/0/4
description "Connected With 12_Floor_HUB6"
switchport mode trunk
!
interface TenGigabitEthernet1/0/5
description "Connected With 11_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet1/0/6
description "Connected With 11_Floor_HUB2"
switchport mode trunk
!
interface TenGigabitEthernet1/0/7
description "Connected With 11_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet1/0/8
description ""Connected with HUB-9 11th floor""
switchport mode trunk
!
interface TenGigabitEthernet1/0/9
switchport mode trunk
channel-group 9 mode on
!
interface TenGigabitEthernet1/0/10
!
interface TenGigabitEthernet1/0/11
description ""uplink Cisco WLC_2504""
switchport mode trunk
!
interface TenGigabitEthernet1/0/12
description "Connected with MPLS(Primary)RTR-1"
switchport access vlan 80
switchport mode access
speed 100
duplex full
spanning-tree portfast
!
interface TenGigabitEthernet1/1/1
!
interface TenGigabitEthernet1/1/2
!
interface TenGigabitEthernet1/1/3
!
interface TenGigabitEthernet1/1/4
!
interface TenGigabitEthernet2/0/1
description "Connected With 12_Floor_HUB1"
switchport mode trunk
spanning-tree vlan 10 cost 200
!
interface TenGigabitEthernet2/0/2
description "Connected With 12_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet2/0/3
description "Connected With 12_Floor_HUB4"
switchport mode trunk
!
interface TenGigabitEthernet2/0/4
description "Connected With 12_Floor_HUB6"
switchport mode trunk
!
interface TenGigabitEthernet2/0/5
description "Connected With 11_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet2/0/6
description "Connected With 11_Floor_HUB2"
switchport mode trunk
!
interface TenGigabitEthernet2/0/7
description "Connected With 11_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet2/0/8
description "" Connected with HUB-9 11th Floor""
switchport mode trunk
!
interface TenGigabitEthernet2/0/9
switchport mode trunk
channel-group 9 mode on
!
interface TenGigabitEthernet2/0/10
!
interface TenGigabitEthernet2/0/11
switchport access vlan 70
speed 100
!
interface TenGigabitEthernet2/0/12
description "Connected with MPLS(Secondary)RTR-2"
switchport access vlan 80
speed 100
duplex full
!
interface TenGigabitEthernet2/1/1
!
interface TenGigabitEthernet2/1/2
!
interface TenGigabitEthernet2/1/3
!
interface TenGigabitEthernet2/1/4
!
interface Vlan1
ip address 10.85.64.2 255.255.254.0
!
interface Vlan10
ip address 10.85.45.2 255.255.255.0
!
interface Vlan11
ip address 10.85.40.1 255.255.255.0
!
interface Vlan20
ip address 10.85.67.2 255.255.255.0
!
interface Vlan30
ip address 10.85.41.1 255.255.255.0
!
interface Vlan40
ip address 10.85.42.2 255.255.255.0
!
interface Vlan50
ip address 137.40.35.1 255.255.255.0
!
interface Vlan70
no ip address
ip helper-address 192.168.1.1
!
interface Vlan80
ip address 10.85.80.5 255.255.255.0
!
interface Vlan89
ip address 10.85.89.1 255.255.255.0
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip route 0.0.0.0 0.0.0.0 10.85.80.1
!
!
ip sla enable reaction-alerts
logging trap debugging
logging host 137.40.35.161
!
snmp-server community pana123 RO
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps cpu threshold
snmp-server enable traps tty
snmp-server enable traps eigrp
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface-old
snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps flash insertion removal
snmp-server enable traps power-ethernet police
snmp-server enable traps energywise
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps license
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps stackwise
snmp-server enable traps port-security
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps event-manager
snmp-server enable traps hsrp
snmp-server enable traps ipmulticast
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps vstack
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps ipsla
snmp-server enable traps errdisable
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server host 137.40.35.102 version 2c ro
snmp-server host 137.40.35.102 version 2c wr
!
!
!
banner login ^CXTCCC
WARNING: This system is for the use of authorized ADMINISTRATOR only.
Individuals trying to connect to the network devices without authorization are
subject to having all their reactivity on this network domain monitored and
recorded by log server.
Anyone connected to the terminal expressly consents to such monitoring and is
advised that if such monitoring reveals possible conduct of criminal activity,
network monitoring tools may provide the evidence of such activity to the
Network Administrator.
Unauthorized access is a violation of law and may lead to criminal action.
^C
banner motd ^CXTCCC
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
WARNING: $$$$
^C
!
line con 0
stopbits 1
line aux 0
line vty 0 4
transport input ssh
line vty 5 15
transport input ssh
!
wsma agent exec
profile httplistener
profile httpslistener
!
wsma agent config
profile httplistener
profile httpslistener
!
wsma agent filesys
profile httplistener
profile httpslistener
!
wsma agent notify
profile httplistener
profile httpslistener
!
!
wsma profile listener httplistener
transport http
!
wsma profile listener httpslistener
transport https
!
ap group default-group
end
PI-Core#
PI-Core#
PI-Core>en
Password:
PI-Core#sh run
PI-Core#sh running-config
Building configuration...
Current configuration : 12435 bytes
!
! Last configuration change at 12:23:07 IST Fri Feb 2 2018 by
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
service compress-config
!
hostname PI-Core
!
boot-start-marker
boot-end-marker
!
!
vrf definition Mgmt-vrf
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
no logging console
enable secret 5 $1$4ENJ$Pt9HR7odQMHrCo58UK28W1
!
username panasonicindia privilege 15 secret 5 $1$VHPe$iCepdr5VRLEYmidkUU6ta1
aaa new-model
!
!
!
!
!
!
!
!
aaa session-id common
clock timezone IST 5 30
switch 1 provision ws-c3850-12xs
switch 2 provision ws-c3850-12xs
!
!
!
!
!
coap http enable
!
!
!
!
!
!
ip routing
!
ip domain-name PANASONIC.COM
no ip dhcp conflict logging
ip dhcp excluded-address 10.85.45.1 10.85.45.5
ip dhcp excluded-address 10.85.67.1 10.85.67.5
ip dhcp excluded-address 10.85.64.100 10.85.64.104
ip dhcp excluded-address 10.85.64.1 10.85.64.60
ip dhcp excluded-address 10.85.42.1 10.85.42.20
ip dhcp excluded-address 10.85.41.1 10.85.41.50
ip dhcp excluded-address 137.40.35.1 137.40.35.70
ip dhcp excluded-address 10.85.41.213 10.85.41.225
ip dhcp excluded-address 10.85.67.105
ip dhcp excluded-address 10.85.67.200 10.85.67.205
ip dhcp excluded-address 10.85.40.1 10.85.40.80
ip dhcp excluded-address 10.85.67.226
ip dhcp excluded-address 10.85.64.218
ip dhcp excluded-address 137.40.35.161 137.40.35.162
ip dhcp excluded-address 10.85.40.106
ip dhcp excluded-address 10.85.41.108
ip dhcp excluded-address 137.40.35.102
ip dhcp excluded-address 10.85.41.62
ip dhcp excluded-address 10.85.67.6 10.85.67.7
ip dhcp excluded-address 10.85.67.16
ip dhcp excluded-address 10.85.65.117
ip dhcp excluded-address 10.85.65.251
ip dhcp excluded-address 10.85.89.1 10.85.89.50
ip dhcp excluded-address 10.85.64.237
ip dhcp excluded-address 137.40.35.180
no ip dhcp ping packets
!
ip dhcp pool LAN
network 10.85.67.0 255.255.255.0
default-router 10.85.67.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 10.85.42.X
network 10.85.42.0 255.255.255.0
default-router 10.85.42.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 10.85.41.X
network 10.85.41.0 255.255.255.0
default-router 10.85.41.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 137.40.35.X
network 137.40.35.0 255.255.255.0
default-router 137.40.35.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool 11thfloor
network 10.85.40.0 255.255.255.0
default-router 10.85.40.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool WIRELESS
network 10.85.64.0 255.255.254.0
default-router 10.85.64.2
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
ip dhcp pool Mobility
network 10.85.89.0 255.255.255.0
default-router 10.85.89.1
dns-server 10.85.28.33 137.40.35.12 10.81.248.31
netbios-name-server 137.40.35.12 10.85.28.33
lease 0 8
!
!
qos queue-softmax-multiplier 100
!
crypto pki trustpoint TP-self-signed-2007993793
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2007993793
revocation-check none
rsakeypair TP-self-signed-2007993793
!
!
crypto pki certificate chain TP-self-signed-20079
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32303037 39393337 3933301E 170D3137 30363037 31303337
34325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
DC557EDD 5434F520 53BECA95
D6FB9EA5 CD39C3A3 2995DC26 1F4F5F
quit
diagnostic bootup level minimal
!
spanning-tree mode pvst
spanning-tree extend system-id
spanning-tree vlan 1-4094 priority 24576
hw-switch switch 1 logging onboard message level 3
hw-switch switch 2 logging onboard message level 3
!
redundancy
mode sso
!
!
!
class-map match-any non-client-nrt-class
!
policy-map port_child_policy
class non-client-nrt-class
bandwidth remaining ratio 10
!
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Port-channel9
switchport mode trunk
!
interface GigabitEthernet0/0
vrf forwarding Mgmt-vrf
no ip address
negotiation auto
!
interface TenGigabitEthernet1/0/1
description "Connected With 12_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet1/0/2
description "Connected With 12_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet1/0/3
description "Connected With 12_Floor_HUB4"
switchport mode trunk
!
interface TenGigabitEthernet1/0/4
description "Connected With 12_Floor_HUB6"
switchport mode trunk
!
interface TenGigabitEthernet1/0/5
description "Connected With 11_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet1/0/6
description "Connected With 11_Floor_HUB2"
switchport mode trunk
!
interface TenGigabitEthernet1/0/7
description "Connected With 11_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet1/0/8
description ""Connected with HUB-9 11th floor""
switchport mode trunk
!
interface TenGigabitEthernet1/0/9
switchport mode trunk
channel-group 9 mode on
!
interface TenGigabitEthernet1/0/10
!
interface TenGigabitEthernet1/0/11
description ""uplink Cisco WLC_2504""
switchport mode trunk
!
interface TenGigabitEthernet1/0/12
description "Connected with MPLS(Primary)RTR-1"
switchport access vlan 80
switchport mode access
speed 100
duplex full
spanning-tree portfast
!
interface TenGigabitEthernet1/1/1
!
interface TenGigabitEthernet1/1/2
!
interface TenGigabitEthernet1/1/3
!
interface TenGigabitEthernet1/1/4
!
interface TenGigabitEthernet2/0/1
description "Connected With 12_Floor_HUB1"
switchport mode trunk
spanning-tree vlan 10 cost 200
!
interface TenGigabitEthernet2/0/2
description "Connected With 12_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet2/0/3
description "Connected With 12_Floor_HUB4"
switchport mode trunk
!
interface TenGigabitEthernet2/0/4
description "Connected With 12_Floor_HUB6"
switchport mode trunk
!
interface TenGigabitEthernet2/0/5
description "Connected With 11_Floor_HUB1"
switchport mode trunk
!
interface TenGigabitEthernet2/0/6
description "Connected With 11_Floor_HUB2"
switchport mode trunk
!
interface TenGigabitEthernet2/0/7
description "Connected With 11_Floor_HUB3"
switchport mode trunk
!
interface TenGigabitEthernet2/0/8
description "" Connected with HUB-9 11th Floor""
switchport mode trunk
!
interface TenGigabitEthernet2/0/9
switchport mode trunk
channel-group 9 mode on
!
interface TenGigabitEthernet2/0/10
!
interface TenGigabitEthernet2/0/11
switchport access vlan 70
speed 100
!
interface TenGigabitEthernet2/0/12
description "Connected with MPLS(Secondary)RTR-2"
switchport access vlan 80
speed 100
duplex full
!
interface TenGigabitEthernet2/1/1
!
interface TenGigabitEthernet2/1/2
!
interface TenGigabitEthernet2/1/3
!
interface TenGigabitEthernet2/1/4
!
interface Vlan1
ip address 10.85.64.2 255.255.254.0
!
interface Vlan10
ip address 10.85.45.2 255.255.255.0
!
interface Vlan11
ip address 10.85.40.1 255.255.255.0
!
interface Vlan20
ip address 10.85.67.2 255.255.255.0
!
interface Vlan30
ip address 10.85.41.1 255.255.255.0
!
interface Vlan40
ip address 10.85.42.2 255.255.255.0
!
interface Vlan50
ip address 137.40.35.1 255.255.255.0
!
interface Vlan70
no ip address
ip helper-address 192.168.1.1
!
interface Vlan80
ip address 10.85.80.5 255.255.255.0
!
interface Vlan89
ip address 10.85.89.1 255.255.255.0
!
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip route 0.0.0.0 0.0.0.0 10.85.80.1
!
!
ip sla enable reaction-alerts
logging trap debugging
logging host 137.40.35.161
!
snmp-server community pana123 RO
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps transceiver all
snmp-server enable traps cpu threshold
snmp-server enable traps tty
snmp-server enable traps eigrp
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface-old
snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps flash insertion removal
snmp-server enable traps power-ethernet police
snmp-server enable traps energywise
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps license
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps stackwise
snmp-server enable traps port-security
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps event-manager
snmp-server enable traps hsrp
snmp-server enable traps ipmulticast
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps vstack
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps ipsla
snmp-server enable traps errdisable
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vlan-membership
snmp-server host 137.40.35.102 version 2c ro
snmp-server host 137.40.35.102 version 2c wr
!
!
!
banner login ^CXTCCC
WARNING: This system is for the use of authorized ADMINISTRATOR only.
Individuals trying to connect to the network devices without authorization are
subject to having all their reactivity on this network domain monitored and
recorded by log server.
Anyone connected to the terminal expressly consents to such monitoring and is
advised that if such monitoring reveals possible conduct of criminal activity,
network monitoring tools may provide the evidence of such activity to the
Network Administrator.
Unauthorized access is a violation of law and may lead to criminal action.
^C
banner motd ^CXTCCC
$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$
WARNING: $$$$
^C
!
line con 0
stopbits 1
line aux 0
line vty 0 4
transport input ssh
line vty 5 15
transport input ssh
!
wsma agent exec
profile httplistener
profile httpslistener
!
wsma agent config
profile httplistener
profile httpslistener
!
wsma agent filesys
profile httplistener
profile httpslistener
!
wsma agent notify
profile httplistener
profile httpslistener
!
!
wsma profile listener httplistener
transport http
!
wsma profile listener httpslistener
transport https
!
ap group default-group
end
PI-Core#
PI-Core#
Please find the router config below
Panasonic_India_Gurgaon>en
Password:
Panasonic_India_Gurgaon#
Panasonic_India_Gurgaon#
Panasonic_India_Gurgaon#sh run
Panasonic_India_Gurgaon#sh running-config
Building configuration...
Current configuration : 8261 bytes
!
! Last configuration change at 10:26:55 IST Fri Jun 23 2017 by
!
version 15.4
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
!
hostname
!
boot-start-marker
boot-end-marker
!
!
logging buffered 4098
enable secret 5 $1$7n5Q$vrpXfZojEXYUggNIO2PZY1
!
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization console
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 1 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
!
!
!
!
!
aaa session-id common
clock timezone IST 5 30
!
!
!
!
!
!
no ip source-route
!
!
!
!
!
!
!
!
!
ip dhcp excluded-address 10.10.10.1
!
ip dhcp pool ccp-pool
import all
network 10.10.10.0 255.255.255.128
default-router 10.10.10.1
lease 0 2
!
!
!
no ip bootp server
ip domain name yourdomain.com
ip cef
no ipv6 cef
multilink bundle-name authenticated
!
!
cts logging verbose
!
crypto pki trustpoint TP-self-signed-2607201271
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2607201271
revocation-check none
rsakeypair TP-self-signed-2607201271
!
!
crypto pki certificate chain TP-self-signed-26
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32363037 32303132 3731301E 170D3135 30383236 30343039
33365A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 36303732
30313237 3130819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100C91F DB7EFC4D F8933480 79CBEBC0 8B81306E E85A46BF 6615C72D 54D0B762
7CA5ED3C FD45602E 856F4957 2223C821 D112A04F 2711AC6E 020086EB 722E9FA2
2E45FA83 77D2028E FE1773FF 94D9FF19 B3492573 C4FB4F5C C1DEB46E CEE0D726
BF4D1937
quit
license udi pid CISCO1941/K9 sn FGL193520WY
!
!
username vsnl password 7 021605552B101C2F40
username emergency privilege 15 secret 5 $1$Pps2$3m1V5jR5kACIhoHPpGuOK/
!
redundancy
!
!
track 1 ip sla 1 reachability
!
track 2 ip sla 2 reachability
!
!
!
!
!
interface Loopback0
description *** Management Loopback ***
ip address 10.85.169.207 255.255.255.255
!
interface Loopback12312312
no ip address
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
description *** LAN LINK ***
ip address 10.85.80.2 255.255.255.0
ip accounting output-packets
standby 1 ip 10.85.80.1
standby 1 timers 1 3
standby 1 priority 130
standby 1 preempt delay minimum 25
standby 1 name PRIMARY
standby 1 track 2 decrement 40
duplex full
speed 100
!
interface GigabitEthernet0/1
description *** TCL WAN ***
ip address 10.85.148.226 255.255.255.252
load-interval 30
duplex full
speed 100
!
router bgp 64916
bgp log-neighbor-changes
neighbor 10.85.148.225 remote-as 4755
!
address-family ipv4
network 10.85.40.0 mask 255.255.255.0
network 10.85.41.0 mask 255.255.255.0
network 10.85.42.0 mask 255.255.255.0
network 10.85.45.0 mask 255.255.255.0
network 10.85.64.0 mask 255.255.255.0
network 10.85.65.0 mask 255.255.255.0
network 10.85.67.0 mask 255.255.255.0
network 137.40.35.0 mask 255.255.255.0
redistribute connected
redistribute static
neighbor 10.85.138.225 activate
neighbor 10.85.138.225 soft-reconfiguration inbound
exit-address-family
!
ip forward-protocol nd
!
no ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
ip route 10.85.40.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.41.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.42.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.45.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.64.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.65.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.67.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 10.85.89.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
ip route 137.40.35.0 255.255.255.0 GigabitEthernet0/0 10.85.80.5
!
ip access-list standard TATA-MONITORING-SNMP
permit 121.244.180.47
permit 121.244.180.37
permit 121.244.227.114
permit 121.244.180.36
permit 121.244.227.113
permit 115.114.226.164
permit 115.114.9.67
permit 115.114.9.68
permit 10.70.0.202
permit 10.70.0.199
permit 202.54.29.81
permit 115.114.146.71
permit 115.114.146.70
permit 115.114.146.69
permit 115.114.226.160 0.0.0.31
permit 115.114.219.32 0.0.0.15
deny any
ip access-list standard TCL_SNMP
permit 121.244.180.47
permit 121.244.180.37
permit 121.244.227.114
permit 121.244.180.36
permit 121.244.227.113
permit 115.114.226.164
permit 115.114.9.67
permit 115.114.9.68
permit 10.70.0.201
permit 10.70.0.202
permit 10.70.0.199
permit 202.54.29.81
permit 172.31.6.123
permit 202.54.29.25
permit 115.114.219.35
permit 202.54.29.27
permit 10.209.19.0 0.0.0.255
permit 115.114.226.160 0.0.0.31
permit 115.114.219.32 0.0.0.15
deny any
!
ip sla 1
icmp-echo 10.75.246.73 source-interface GigabitEthernet0/1
ip sla schedule 1 life forever start-time now
ip sla 2
icmp-echo 10.85.138.225 source-interface GigabitEthernet0/1
ip sla schedule 2 life forever start-time now
ip sla responder
logging trap debugging
logging facility local5
logging source-interface GigabitEthernet0/1
logging host 10.70.0.201
logging host 10.209.19.200
logging host 121.244.180.36
logging host 121.244.180.37
logging host 121.240.118.90
logging host 115.114.170.78
logging host 115.114.151.107
logging host 115.114.151.114
!
!
snmp-server community t2c2l2com RO TCL_SNMP
snmp-server community pan@vsnl RO 10
snmp-server ifindex persist
snmp mib persist cbqos
tacacs-server host 10.70.0.201
tacacs-server directed-request
tacacs-server key 7 051D15012D
access-list 10 permit 203.200.231.222
access-list 10 permit 10.70.0.202
access-list 10 permit 172.31.6.123
access-list 10 permit 202.54.29.25
access-list 10 permit 10.209.19.0 0.0.0.255
access-list 10 deny any
access-list 23 permit 10.10.2.0 0.0.0.127
!
!
!
control-plane
!
!
privilege exec level 4 traceroute ip
privilege exec level 4 traceroute
privilege exec level 4 ping ip
privilege exec level 4 ping
privilege exec level 4 show ip accounting
privilege exec level 4 show ip interface brief
privilege exec level 4 show ip interface
privilege exec level 4 show ip
privilege exec level 15 show startup-config
privilege exec level 4 show configuration
privilege exec level 4 show interfaces description
privilege exec level 4 show interfaces
privilege exec level 4 show
privilege exec level 4 clear ip accounting
privilege exec level 4 clear ip
privilege exec level 4 clear counters
privilege exec level 4 clear
!
line con 0
line aux 0
line 2
no activation-character
no exec
transport preferred none
transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
stopbits 1
line vty 0 4
password 7 05080F1C2243
transport input telnet ssh
line vty 5 15
access-class 23 in
privilege level 15
transport input telnet ssh
!
scheduler allocate 20000 1000
ntp source GigabitEthernet0/1
ntp update-calendar
ntp server 10.75.26.73
!
end
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-15-2018 01:31 AM
Please configure IP helper command on your Core switches. for example as below:
Suppose your DHCP IP address: 192.168.1.100 and it is in VLAN 10 so reset VLAN configuration must me like:
interface Vlan30
ip address 10.85.41.1 255.255.255.0
ip helper-address 192.168.1.100
!
interface Vlan40
ip address 10.85.42.2 255.255.255.0
ip helper-address 192.168.1.100
!
interface Vlan50
ip address 137.40.35.1 255.255.255.0
ip helper-address 192.168.1.100
!!
interface Vlan80
ip address 10.85.80.5 255.255.255.0
ip helper-address 192.168.1.100
etc.
Regards,
Deepak Kumar
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-05-2018 01:13 AM
Dear Deepak,
Is there requirement of enabling of IP DHCP relay also if we already enable ip helper address on particular vlan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-05-2018 01:21 AM
Dear Deepak,
Is there requirement of enabling of IP DHCP relay command on l3 switch also if we already enable ip helper address on each vlan.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-05-2018 02:08 AM
No need for IP DHCP Relay command.
Regards,
Deepak Kumar
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2018 12:32 AM
Hello,
basically, the ip helper-address command goes on the first Layer 3 interface that is between your clients and the DHCP server. In the example below, the 'ip helper-address' command needs to be configured on the Vlan10 interface. What this command does: it converts the DHCP broadcast sent out by the clients into a routable unicast, allowing the DHCP request to be routed to your DHCP server...
PC --> Vlan10 (SVI) --> DHCP server
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide