Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
787
Views
4
Helpful
8
Replies

WLC 9800 - Central Switching and Central DHCP

michalbachtin
Level 1
Level 1

‎01-17-2025 01:28 AM

Hello,

we were experiencing to the issue when some WLAN clients were not able to get IP from external DHCP server.

Infrastructure: APs - WLC 9800 - Fortigate (DHCP relay) - Windows server (DHCP server)

On the WLAN policy we had:

  • Central switching - ON
  • Central DHCP - OFF

As far as I know the Central switching means that all traffic goes from AP to WLC via CAPWAP. So for other devices the traffic is coming from WLC.

The Central DHCP means the same, but only for DHCP traffic - so for example if we have VLAN99 then on the VLAN99 must somewhere (Fortigate) be HDCP relay.

But for us strange is that when we turned on Central DHCP then all is working properly.

I read lot of documentation but I am still lost how it is possible.

Can you explain me this, please? Thank you so much, Michal

 

0 Helpful
8 Replies 8

MHM Cisco World
VIP
VIP

‎01-17-2025 01:33 AM

I think it mandatory for AP local mode run both central switching and central dhcp' 

You can not disable central dhcp.

MHM

marce1000
Hall of Fame
Hall of Fame

‎01-17-2025 01:38 AM

 

  - Advisory DHCP setup : https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/technical-reference/c9800-best-practices.html#DHCPbridgingandDHCPrelay

   M.
   



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

michalbachtin
Level 1
Level 1
In response to marce1000

‎01-17-2025 01:41 AM

Thank you for the link. I already saw the content, but did not found the relation with my question.

0 Helpful

ammahend
VIP Alumni
VIP Alumni

‎01-17-2025 02:52 AM

As you said “As far as I know the Central switching means that all traffic goes from AP to WLC via CAPWAP”, all traffic includes DHCP as well, client sends DHCP discover which gets to AP. AP packs it over a capwap tunnel and sends it to controller, controller if configured as DHCP server it sends back offer, else if configured as DHCP relay then sends it forward to the relay address (DHCP Server) as unicast discovery packet 

-hope this helps-
0 Helpful

michalbachtin
Level 1
Level 1
In response to ammahend

‎01-17-2025 05:42 AM

Thank you for your answer. Do you mean that the Central DHCP button should have no real impact in this scenario?

0 Helpful

Flavio Miranda
VIP
VIP

‎01-17-2025 03:07 AM

@michalbachtin 

 what you see is the expected behavior. If you need the DHCP traffic to be send locally, turn the access point to  flexconnect mode.

michalbachtin
Level 1
Level 1
In response to Flavio Miranda

‎01-17-2025 05:18 AM

It is quite strange for me, because it has no explanation why other WLAN clients were working perfectly.

0 Helpful

Rich R
VIP
VIP
In response to michalbachtin

‎01-17-2025 05:57 AM

It is quite strange for me, because it has no explanation why other WLAN clients were working perfectly.
Luck <smile>
Basically like @MHM Cisco World said it's mandatory so disabling Central DHCP for that setup is an unsupported config therefore results can be unpredictable. I suspect AP got "confused" and sent some DHCP to WLC and some to local AP port.  That's a boundary condition which would never have been tested because it's unsupported.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card