GET-IT: TEAMS DAY | 1-Day Free Virtual Conference all about Teams. Here on Petri.com - 8/12/20 GET-IT: TEAMS DAY - 8/12/20

Trouble with DHCP client on WAN Interface

Home Forums Networking Cisco Routers & Switches How-to Trouble with DHCP client on WAN Interface

Viewing 1 post (of 1 total)
  • Author
    Posts
  • Avatar
    kalsto
    Member
    #154848

    I’ve been perusing the forums on various sites for a while now, and I’m having no luck, so I thought I’d actually post my question and see if anybody has seen it before..

    My problem is this: I have a brand new SR520 Router and I can’t get it to get an ip address on it’s external interface.. I’ve tried on a few different DHCP servers (whatever my ISP is using, as well as a Windows 2008 DHCP server back at the office). Every time, it fails to get an ip address.. I have a very basic config.. it’s a dhcp server and that portion is working just fine.. I have removed any acl’s that might be causing problems..

    Below is the output from having

    Code:
    debug dhcp[/CODE] and running [CODE]renew dhcp fastethernet 4[/CODE]

    [code]

    May 31 03:16:04.579: DHCP: DHCP client process started: 10
    May 31 03:16:04.579: RAC: Starting DHCP discover on FastEthernet4
    May 31 03:16:04.579: DHCP: Try 1 to acquire address for FastEthernet4
    May 31 03:16:04.587: DHCP: allocate request
    May 31 03:16:04.587: DHCP: new entry. add to queue, interface FastEthernet4
    May 31 03:16:04.587: DHCP: SDiscover attempt # 1 for entry:
    May 31 03:16:04.587: DHCP: SDiscover: sending 292 byte length DHCP packet
    May 31 03:16:04.587: DHCP: SDiscover 292 bytes
    May 31 03:16:04.587: B’cast on FastEthernet4 interface from 0.0.0.0
    May 31 03:16:07.664: DHCP: SDiscover attempt # 2 for entry:
    May 31 03:16:07.664: DHCP: SDiscover: sending 292 byte length DHCP packet
    May 31 03:16:07.664: DHCP: SDiscover 292 bytes
    May 31 03:16:07.664: B’cast on FastEthernet4 interface from 0.0.0.0
    May 31 03:16:11.664: DHCP: SDiscover attempt # 3 for entry:
    May 31 03:16:11.664: DHCP: SDiscover: sending 292 byte length DHCP packet
    May 31 03:16:11.664: DHCP: SDiscover 292 bytes
    May 31 03:16:11.664: B’cast on FastEthernet4 interface from 0.0.0.0r elease dhcp fast
    May 31 03:16:11.664:%Unknown DHCP problem.. No allocation possible

    And here’s the config, in case you were curious about what I’ve done in there.. I’ve cut out anything that is sensitive or is not applicable to the problem above..

    There’s some 192.168.75.1 NAT translations still there from the default ip pool, however it’s not in use, and I didn’t clean it up yet (because I can’t get the dhcp client portion working)

    Code:
    Building configuration…

    Current configuration : 5785 bytes
    !
    version 12.4
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    no service password-encryption
    !
    !
    boot-start-marker
    boot-end-marker
    !
    logging message-counter syslog
    enable secret 5 $1$dwz4$pcQSxwRdmVHyxXajc7D/R.
    enable password
    !
    no aaa new-model
    clock timezone MST -7
    clock summer-time MDT recurring
    !
    crypto pki trustpoint TP-self-signed-3955684171
    enrollment selfsigned
    subject-name cn=IOS-Self-Signed-Certificate-3955684171
    revocation-check none
    rsakeypair TP-self-signed-3955684171
    !
    !
    crypto pki certificate chain TP-self-signed-3955684171
    certificate self-signed 01

    quit
    dot11 syslog
    ip source-route
    !
    !
    ip dhcp excluded-address 192.168.129.1 192.168.129.15
    ip dhcp excluded-address 192.168.129.134
    !
    ip dhcp pool inside
    import all
    network 192.168.129.0 255.255.255.0
    default-router 192.168.129.1
    !
    !
    ip cef
    !
    no ipv6 cef
    multilink bundle-name authenticated
    !
    !
    username cisco privilege 15 secret 5 $1$ZPq3$mvkHhNptuTcH9ceBDByVA0
    !
    !
    !
    archive
    log config
    hidekeys
    !
    !
    !
    class-map type inspect match-any SDM-Voice-permit
    match protocol h323
    match protocol skinny
    match protocol sip
    class-map type inspect match-any sdm-cls-icmp-access
    match protocol icmp
    match protocol tcp
    match protocol udp
    class-map type inspect match-any sdm-cls-insp-traffic
    match protocol cuseeme
    match protocol dns
    match protocol ftp
    match protocol h323
    match protocol https
    match protocol icmp
    match protocol imap
    match protocol pop3
    match protocol netshow
    match protocol shell
    match protocol realmedia
    match protocol rtsp
    match protocol smtp extended
    match protocol sql-net
    match protocol streamworks
    match protocol tftp
    match protocol vdolive
    match protocol tcp
    match protocol udp
    class-map type inspect match-all sdm-invalid-src
    match access-group 100
    class-map type inspect match-all sdm-protocol-http
    match protocol http
    !
    !
    policy-map type inspect sdm-permit-icmpreply
    class type inspect sdm-cls-icmp-access
    inspect
    class class-default
    pass
    policy-map type inspect sdm-inspect
    class type inspect sdm-invalid-src
    drop log
    class type inspect sdm-cls-insp-traffic
    inspect
    class type inspect sdm-protocol-http
    inspect
    class type inspect SDM-Voice-permit
    pass
    class class-default
    pass
    policy-map type inspect sdm-inspect-voip-in
    class type inspect SDM-Voice-permit
    pass
    class class-default
    drop
    policy-map type inspect sdm-permit
    class class-default
    drop
    !
    zone security out-zone
    zone security in-zone
    zone-pair security sdm-zp-self-out source self destination out-zone
    service-policy type inspect sdm-permit-icmpreply
    zone-pair security sdm-zp-out-self source out-zone destination self
    service-policy type inspect sdm-permit
    zone-pair security sdm-zp-in-out source in-zone destination out-zone
    service-policy type inspect sdm-inspect
    zone-pair security sdm-zp-out-in source out-zone destination in-zone
    service-policy type inspect sdm-inspect-voip-in
    !
    !
    !
    interface FastEthernet0
    switchport access vlan 75
    !
    interface FastEthernet1
    switchport access vlan 75
    !
    interface FastEthernet2
    switchport access vlan 75
    !
    interface FastEthernet3
    switchport access vlan 75
    !
    interface FastEthernet4
    description $FW_OUTSIDE$
    ip address dhcp
    ip nat outside
    ip virtual-reassembly
    zone-member security out-zone
    duplex auto
    speed auto
    !
    interface Vlan1
    no ip address
    shutdown
    !
    interface Vlan75
    description $FW_INSIDE$
    ip address 192.168.129.1 255.255.255.0
    ip nat inside
    ip virtual-reassembly
    zone-member security in-zone
    !
    ip forward-protocol nd
    !
    ip http server
    ip http authentication local
    ip http secure-server
    ip http timeout-policy idle 60 life 86400 requests 10000
    ip nat inside source list 1 interface FastEthernet4 overload
    ip nat inside source static tcp 192.168.75.2 5060 interface FastEthernet4 5060
    ip nat inside source static udp 192.168.75.2 5060 interface FastEthernet4 5060
    ip nat inside source static tcp 192.168.75.2 1720 interface FastEthernet4 1720
    ip nat inside source static tcp 192.168.129.3 2022 interface FastEthernet4 2022
    ip nat inside source static udp 192.168.129.3 2022 interface FastEthernet4 2022
    !
    !
    !
    !
    !
    !
    control-plane
    !
    banner login ^CSR520 Base Config – MFG 1.0 ^C
    !
    line con 0
    password

    login
    no modem enable
    line aux 0
    line vty 0 4
    privilege level 15
    login local
    transport input telnet ssh
    !
    scheduler max-task-time 5000
    end

    Sorry for the long post, but any help would be greatly appreciated! :smile:

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.