HPE Community
Switches, Hubs, and Modems
1752805 Members
5649 Online
108789 Solutions
New Discussion юеВ

DHCP-snooping in 28/2600's

 
SOLVED
Go to solution
Marcus_20
Frequent Advisor

тАО05-08-2007 08:35 PM

тАО05-08-2007 08:35 PM

DHCP-snooping in 28/2600's

Hi all,
I have several 28/2600 switches and I want to enable dhcp-snooping.

I configure it like this:

dhcp-snooping
dhcp-snooping authorized-server [ip-addr]
dhcp-snooping vlan [vlan]
no dhcp-snooping option 82
dhcp-snooping trust [interface]

And it seems to be working.

However when a switch is connected to another switch, the dhcp logg in my server starts filling up with DHCPDISCOVER's from both switches. Like this:

May 6 18:18:38 dhcpd: DHCPOFFER on 89.253.73.50 to xx:xx:xx:xx:xx:xx via 10.100.225.2
May 6 18:18:38 dhcpd: DHCPDISCOVER from xx:xx:xx:xx:xx:xx via 10.100.225.3
May 6 18:18:38 dhcpd: DHCPOFFER on 89.253.73.50 to xx:xx:xx:xx:xx:xx via 10.100.225.3
May 6 18:18:38 dhcpd: DHCPDISCOVER from xx:xx:xx:xx:xx:xx via 10.100.225.3

It seems that the switches them selves send the DHCPDISCOVER unicast to the server. Is that the correct behaviour?

Does anybody have any experience with dhcp-snooping on these switches? The manual doesn't say much...

Best regards
0 Kudos
8 REPLIES 8
Sergej Gurenko
Trusted Contributor

тАО05-13-2007 11:42 PM

тАО05-13-2007 11:42 PM

Re: DHCP-snooping in 28/2600's

AFAIK DHCP-snooping only works if the routing enabled on the HP Procurve switch. This is the biggest HP Procurve DHCP-snooping implementation disadvantage.
0 Kudos
Marcus_20
Frequent Advisor

тАО05-14-2007 09:15 PM

тАО05-14-2007 09:15 PM

Re: DHCP-snooping in 28/2600's

Thank you for you're reply. That's bad news however.

I can't find anything in the manuals, does anybody else have any experience with dhcp-snooping and can confirm the need of ip routing turned on?
0 Kudos
Roar Pettersen_1
Advisor

тАО05-16-2007 09:44 PM

тАО05-16-2007 09:44 PM

Re: DHCP-snooping in 28/2600's

Hi !


>Does anybody have any experience with dhcp-snooping on these switches?


I have more or less exacly the same layer 2 configuration on some of our 2650 switches
and it is working, but you need the latest
firmware H.10.35 if you want a stable dhcp snooping solution.
0 Kudos
Marcus_20
Frequent Advisor

тАО05-17-2007 03:54 AM

тАО05-17-2007 03:54 AM

Re: DHCP-snooping in 28/2600's

Roar,
Are you using this feature without ip routing enabled?

I'm running H.10.31, are you saying HP made improvements to the dhcp-snooping feature in later code?
0 Kudos
Holger Hasenaug
Trusted Contributor

тАО05-17-2007 09:20 AM

тАО05-17-2007 09:20 AM

Solution

Re: DHCP-snooping in 28/2600's

DHCP snooping is working without routing enabled.

For updates and DHCP documentation always refer to the latest release notes:
ftp://ftp.hp.com/pub/networking/software/2600-RelNotes-h1035-59906003.pdf

And here you will find that two bugs have been fixed:
Crash (PR_1000392148) ├в Repeatedly toggling DHCP Snooping on and off may crash the
switch with a message similar to: Software exception at bcmHwDsnoop.c:195 -- in
'mAdMgrCtrl', task ID = 0x65a3370 -> BCM ASIC call failed: Table full.


DHCP Snooping (PR_1000403133) ├в DHCP-Snooping stops working after some period
of time.


Have fun
Roar Pettersen_1
Advisor

тАО05-19-2007 11:41 PM

тАО05-19-2007 11:41 PM

Re: DHCP-snooping in 28/2600's

>Are you using this feature without ip routing enabled?

Yes.

>I'm running H.10.31, are you saying HP made improvements to the dhcp-snooping feature in later code?

Advise you to upgrade to H.10.35.
0 Kudos
Devinder Sharma
New Member

тАО12-28-2007 07:49 AM

тАО12-28-2007 07:49 AM

Re: DHCP-snooping in 28/2600's

Hi,

I have another issue. 2650 with H 10.50 and 3500 with K 12.51 connected via a trunked uplink (2 ports bundled) and dhcp server connected to the 3500. I am trying to implement dhcp-snooping on 2650 and am getting error message while trying to configure "interface trk1 dhcp-snooping trust" in order to receive dhcp offer thru this trunked uplink. Message says that I can not configure this feature on trunked interfaces. How do i then achieve dhcp snopping thru switch to switch uplinks which are bundled?

Thanks
0 Kudos
cenk sasmaztin
Honored Contributor

тАО04-07-2008 01:52 AM

тАО04-07-2008 01:52 AM

Re: DHCP-snooping in 28/2600's

hi
when other switch connected before check uplink port trust port
you make sucessfull dhcp-snooping config

switch to switch link and switch to dhcp server link ports assign trust port other all ports untrust

good luck
cenk

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.