Cannot get On 100 to get DHCP address

Similar Messages

• Clients connected to AP541N cannot get DHCP address

  New install with 3 AP541N's in a cluster. Two AP's are connected by an ESW-520-8P PoE switch and one on its own power adapter and a 3COM switch.  I have set up a single SSID with WPA-AES encryption. I am connecting with HP 2740P tablets with Intel wireless cards. Clients can see and connect to the AP's but only some can get IP addesses from our Small Business Server 2003 DHCP server.
  It's intermittent, some will get an IP and work for a while, while other can't. Then the ones that are working will drop and then none of the devices can get an IP. Then suddenly a few will start to work again. I have solid connectivity everywhere in the building but can't get an IP. Also, strangely, even when assigning a static IP I can not pass traffic, although it says I am connected with "5 bars" of signal strength.
  Clients show up under Cluster>Sessions, but sometimes with really high counts of "Signal" and "Error Rate". However, even the clients with a "good" connection cannot get an IP.
  Here is what I have tried:
  Upgrade firmware on all 3 AP's to 1.9.1 (latest)
  Wiped and reloaded the devices several times
  Tried no encryption, WEP, WPA, doesn't make a difference
  Tried everything described in this thread: https://supportforums.cisco.com/message/3078962#3078962 including the registry entry on the DHCP server
  I have a spare AP that I put into production with the same load, but it didn't seem to make a difference.
  Broadcast/Multicast limiting set to off
  Upgraded to latest drivers on tablets; Boosted power on adapter to highest strength; Turned off power saving
  I have exhausted all efforts in searching and trying based on my own experience, so any help the community can provide would be appreciated.
  Thanks,
  Derek

  Hi Derek,
  Have you considered using our Online Chat Support?
  Cisco Online Chat Support provides live, real-time technical support for  Cisco Small Business products through a web chat session with a Small  Business Support Center engineer during local  business hours
  Note: Warranty Coverage is one year from the date of purchase.
  Regards,
  Cindy Toy
  Cisco Small Business
  Community Manager

• VWLC clients getting DHCP address from management VLAN

  Hi,
  We have a strange scenario whereby some wireless employees are obtaining addresses from the management VLAN.
  Some details:
  DHCP managed by MS DHCP 2008 R2 (in remote data centre)
  Cisco vWLC AIR-CTVM-K9 running v7.6.110.0
  AP's are a mix of 2602 and 3702 (46 and 2 of each respectively)
  SSID's are employee, guest, and production devices (all mapped to their own interface with relevant VLAN tag as per normal)
  AP's all in FlexConnect mode as per vWLC caveats
  Some employees are receiving addresses in the wireless management VLAN. This network only has six DHCP addresses available as it is solely for AP's, WLC and HSRP gateway. Obviously this gets exhausted very quickly leaving us with a scenario where clients are not obtaining DHCP addresses.
  I understand that with FlexConnect mode, it will assign IP's from the native VLAN. What I don't understand is why most clients receive addresses in the correct VLAN, but a handful do not, and then cannot get an address from DHCP. Obviously the ideal scenario would be to put the AP's into local mode but unless this has changed in a SW release then I don't believe it's possible...
  My question is: How do I get ALL the employees to obtain addresses from their interface and not the management VLAN?
  Thanks in advance.

  Hi,
  I think we need a closer look to your configurarion to eliminate some possibilities:
  - What is the WLAN security you choose?
  - What is the interface that is configured under the WLAN?
  - Does your WLAN have local switching enabled?
  - If your security is using RADIUS server, do you have AAA override enabled under the WLAN config?
  - If your security is using RADIUS server, do you send any attributes to the users?
  - You have eliminate that clients that got management vlan IPs are always on same AP or they can be on any AP.
  HTH
  Amjad

• I cannot get my address book to merge with iCloud?

  I cannot get my address book to merge with iCloud?

  Yes, the settings all appear to be correct on the Info page in Itunes.  I have contacts checked to synch, calendars and mail accounts but only the contacts are not moving to the Iphone. 

• Wireless Router 877W users cannot get ip address from DHCP

  Users can connect to wireless but they cant get ip address what can be the problem ?
  Thanks
  no aaa new-model
  resource policy
  ip subnet-zero
  ip cef
  no ip dhcp use vrf connected
  ip dhcp excluded-address 10.10.10.1
  ip dhcp excluded-address 192.168.239.1 192.168.239.50
  ip dhcp pool users
     network 192.168.239.0 255.255.255.0
     default-router 192.168.239.1
     dns-server 4.2.2.2
  bridge irb
  interface ATM0
  no ip address
  no atm ilmi-keepalive
  dsl operating-mode auto
  interface ATM0.1 point-to-point
  no snmp trap link-status
  pvc 8/35
    pppoe-client dial-pool-number 1
  interface FastEthernet0
  interface FastEthernet1
  interface FastEthernet2
  interface FastEthernet3
  interface Dot11Radio0
  no ip address
  encryption vlan 1 key 1 size 40bit 0 1234567890 transmit-key
  encryption vlan 1 mode wep mandatory
  ssid wirele
      vlan 1
      authentication open
      guest-mode
  speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  channel 2437
  station-role root
  interface Dot11Radio0.1
  encapsulation dot1Q 1 native
  no snmp trap link-status
  no cdp enable
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 spanning-disabled
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  interface Vlan1
  description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
  ip address 192.168.239.1 255.255.255.0
  ip nat inside
  ip virtual-reassembly
  ip tcp adjust-mss 1452
  bridge-group 1
  bridge-group 1 spanning-disabled
  interface Dialer1
  ip address negotiated
  ip nat outside
  ip virtual-reassembly
  encapsulation ppp
  ip tcp adjust-mss 1452
  dialer pool 1
  no cdp enable
  ppp authentication pap callin
  ppp pap sent-username xxxx password xxx
  crypto map MerkezVPN
  interface Dialer0
  no ip address
  interface BVI1
  no ip address
  ip classless
  ip route 0.0.0.0 0.0.0.0 Dialer1

  go into config t and add "bridge 1 route ip" and see what you get....

• Wireless clients cannot get ip address

  I have 7 WLANs configured all work fine but the latest. The 7th WLAN I configured will not let clients get an IP address. I can plug a wire into the port with the same VLAN configured on the port and I get an IP address but wireless clients connected to an AP on that port cannot get an IP adddress. Any suggestions would be appreciated.

  Hello,
  where is the DHCP server configured?
  - do all other 6 WLAN's work fine with the same DHCP server.
  - do you have any H-REAP VLAN mapping , or AP groups configured?
  they will override the WLAN-interface configuration.
  Kind regards
  Talal
  =======
  please rate answers that you find useful , and mark as answered - when it is :-) - so others can find it easily

• Not getting DHCP address on HP 8000 Elite

  I'm using the Feb 2010 CD. Windows 2003 DHCP server
  Boot with the cd and no dhcp address.
  If I type "dhcpcd eth0 -n" enough times I will eventually get an address, although the first time it's usually "err, eth0: Failed to lookup hostname via DNS: Name or service not known"
  The same CD works OK with a HP dc7900, dc7800, etc. It looks like they all have the same Intel e1000e nic, but maybe no?

  I'm starting to investigate issues that may be similar to yours and I had a
  thought that I thought I'd share with you ;-)
  In what may be a related situation one of our admins is having issues with
  the dhcp client on an openSUSE 11.1 (and 11.2) during and after the install
  on some Dell servers. Sometimes the dhcp client will not get an ip address.
  After some poking he found that there are in fact two dhcp clients available
  : dhcpcd (dhcp client daemon) and dhclient (package is called dhcp-client).
  The default client in openSUSE - and presumably the Linux environment of
  ZENworks Imaging - is dhcpcd v3.x. It seems that there are a number of
  reports of this client being problematic. The maintainer of this client has
  recently released v5.x which may resolve the issues with v3.x.
  In our testing on openSUSE dhclient works much more reliably than dhcpcd,
  where "more" is equal to 100%. None of this helps us of course, but it is
  background info that leads up to my idea: is it possible to use the other
  client, dhclient in the ZEN Linux environment? I don't know if this client
  is even included in the ZEN Imaging Linux environment or not. If it isn't
  then maybe it might be possible to modify the initrd/root/linux files to
  include it. This would at least let you have another means of acquiring a
  dhcp ip address. I'm sorry that I do not have the Linux skills to do more
  than make a suggestion...
  Cheers,
  Ron
  PS I have submitted an enhancement request via the openFATE website to have
  the dhcp client daemon upgraded to v5.x. Maybe if you think it a good idea
  you could login to the openFATE portal and vote it up!

• No Hyperv Virtuals get DHCP address - but Physical Host Can

  HyperV Server 2012 Core on a dedicated machine on local domain.
  Machine connected directly into local network that has a DC running DHCP.
  None of the VM's can get a DHCP Address from the server. Even if i set static addresses still they cannot route anywhere, cannot even ping the HyperV server they are sat on but other local machines can!!!!
  The physical host cant ping the 
  The physical HyperV server has no problem getting a DHCP address or any routing issues, nor do any of the other clients on the local network, including another HyperV server running server VM's
  What ive tried so far
  Deleted Virtual Switch and removed the NIC from the virtual hosts in HyperV Manager- then re-adding new one.
  Put in a different network card
  Removed Physical host from Domain, renamed machine to different name and re-joined
  Used different IP addresses for the Physical host
  Reloaded the HyperV server from scratch and created new VM.
  Ive had HyperV previously running on this machine without problem, so now i cant see why i cant get it running again.
  Anybody have any suggestions on what i can try next, im all out of ideas.

  Hi Fulgent,
  I am assuming that , the hyper-v server have two NICs , one for host and the other one  was  configured as an external switch for VMs .
  If the VMs can not access the dhcp and local network , please try to  delete the external switch then uninstall the Physical NIC in device manager and  click " scan for hardware changes " to reload it.
  Try to create external virtual switch for VMs again .
  Any further information please feel free to let us know .
  Best Regards
  Elton Ji
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Help please - cannot get IP address

  Hi everyone, I have a WRT54GS router with WEP encryption. I have 2 laptops, both with XP. I cannot get one of the laptops to get an IP connection. It connects to the router, but when I run ipconfig, I get the following error message Windows IP Configuration An internal error occured. A device attached to the system is not functioning. Please contact Microsoft product support services for further help. I have many years of IT experience, and I've also had my network admin brother help me, but we can't figure it out. I have entered the WEP address correctly and have unchecked the box "Key is provided for me automatically". The key index is the same on both PC's. We have released the IPconfig. The PC that can't connect has been recently acquired and has never successfully got an IP connection on this wireless LAN. Any suggestions greatly appreciated. Thanks so much, Lynne

  Sounds like an issue on the computer itself not the network. You might need to uninstall reinstall your wireless card.

• Linksys WRT54GL won't get dhcp address from isp

  I'm using Linux.
  I just bought this router because it had good reviews on Newegg but for the past 4 hours I have gotten nowhere with it.
  When I connect the router to the net and click the refresh button on the browser interface, the router doesn't go out and get a dhcp address. I see the initial click of the mouse that hits the modem but no information comes back. No addresses are updated.
  I have tried cloning the mac address but that does no good either.
  Any hints appreciated.
  Thanks

  Try resetting the router for 30 secs in such a way that power light is blinking on the router.Also, try doing the complete network power cycle i.e., unplug the power cables from the modem & from the router.Then, plug in the power cable to the modem first once all the lights are solid on the modem you could plug in the power cable to the router & then try configuring the router & it will definately work!!!

• Hyper-V - Legacy NIC not getting DHCP address at boot, but when OS loads the NIC gets a DHCP address

  Hi, I have a strange issue with DHCP.
  I have a lab environment on a single Hyper-v 2012 Server.  AD, DNS & DHCP exist on a single virtual machine, I have a flat network 192.168.1.x, all VM's are on this network.  I have authorised DHCP and Setup the scope.
  A VM has a legacy adaptor, the legacy nic is configured in the boot order as the first device.
  When I boot the machine I do not get a DHCP address, however when the OS boots the Legacy NIC then gets a DHCP address??
  I need to use a legacy NIC as I need to PXE boot the VM, however I should get an IP address at boot time, which I don't get.
  I have run Wireshark on the DHCP server, I can see the legacy NIC do a "DHCP Discover and the DHCP Server respond with a DHCP Offer" however all communication ends there.  I have disable all firewalls and I see no reason for this not to work. 
  I have done tis before with no issues but I am unable to get this to work on this server!!!!!

  Hi
  According to your description , it is recommended to make sure or do :
          In your environment , there is no any other valid DHCP, BOOTP or proxy DHCP offers.
          Make sure if the DHCP server is overload.
          So suggest to test that creating a new “internal virtual switch” and change the settings of VM which provide DHCP service to connect to the new “virtual switch”.
          Then create a new VM use legacy NIC also connect to the new “internal  virtual switch” and try to PXE Boot.
  Hope this helps.
  Best Regards
  Elton ji
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• WRVS4400N Unable to get DHCP address via wireless

  I am having an issue with the WRVS4400N.  I am unable to get a DHCP address via wireless.  If I connect directly to the router via RJ45, I get a dhcp address an and able to get to the internet.  Has anyone ran into this issue.

  This seems to be a problem with the latest firmware (v1.01.03) available from Linksys for this router.  The stock firmware for my WRVS4400N router assigned DHCP addresses to wireless devices without any issue.  As soon as I upgraded the router to v1.01.03, the router no longer assigns DHCP addresses to wireless devices.  I have verified there is no issue with the router itself by rolling back to version 1.00.16 with the recovery utility.
  One workaround I noticed with firmware v1.01.03 is that the router will actually assign DHCP addresses to wirelss devices temporarily if it assigns a DHCP address to a device connected to the physical port.  This only last for a little before the router stops giving out DHCP address to wireless devices though.  It's a shame since I was looking forward to some of the features in the v1.01.03 firmware.
  Chuck

• AEX fails to get DHCP address, but works on DLink

  Sorry for the long post -- I'm hoping the details will help you diagnose the problem faster in the long run.
  My DLink router gets a DHCP IP address from the (Comcast) cable modem, but when I switch to the AirPort Extreme (5th gen, refurbished), it doesn't. It shows an autoconfiguration IP address of the 169.254 variety, suggesting that DHCP isn't working for the AEX. (Just fyi, my girlfriend's macbook can connect to the AEX and get 10.0.1.x IP addresses; I can ping the AEX over wifi.)
  Airport Utiltiy shows a red number 2 with a single error indicating Internet failure to get IP address or something. The suggested solution is power-cycling the modem; failing that, contact the ISP. Contacting Comcast was amusing but useless...they gave me instructions for setting up AEX with a DSL modem -- twice -- without understanding my objection!
  The AEX is configured for DHCP (not Static or PPPoE), and uses all stock settings (I did both a soft reset and used the Airport Utility to restore default settings...not sure if those two are the same).
  I've tried power-cycling the router and cable modem numerous times, including leaving them off for 15+ minutes and leaving the AEX connected for 6+ hours. I tried using the DLink to release the DHCP reservation and then quickly switching the cable over to the AEX.
  I read somewhere that resetting the "CMTS (cable modem termination system)" might help. I mentioned it to the Comcast tech support, but they didn't respond.
  At this point, I'm not sure what else to try. It could be the refurbished unit is broken, but 95% of the time these sorts of things are configuration issues. (I know a fair amount about networking, but I'm new to Apple products so I could be doing something stupid.) I may try connecting the AEX to the LAN side of the DLink to see if it can get a DHCP address from that...but I'm clearly grasping at straws.
  <whimpers>...Help?

  Update: The AEX does get a DHCP address when connected to the LAN side of the DLink gateway. (But the AEX doesn't get one when connected directly to the cable modem. Yet the DLink gets a DHCP address when connected to the cable modem.) So...??!?!!!

• I have reset this firefox daily... it works for a few hours, then will not open a website for 15 mins, and I cannot get emails addresses to show up when sending

  This new updated firefox is awful.. I cannot get websites to open for about 10-15 mins it keeps showing S1 Yimg.com ans s.ytimg, and says shockwave plug in is bad, and all other kinds of crap..
  The connection was reset.. I got this msg below and had to reopen this page in another window, and reload it to be able to write on this now... and my network connection is working xlnt, and there is no firewall blocking firefox...
  The connection to the server was reset while the page was loading.
  The site could be temporarily unavailable or too busy. Try again in a few moments.
  If you are unable to load any pages, check your computer's network connection.
  If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.
  Try Again
  I never had this until I got all these new automatic updates with this new firefox.. I did a system restore, which helped for 1 day, and I have had to reset firefox daily to use it.. And now it took 10 mins to open this page, and then I had to reload this page twice to write this..
  I've used firefox for years, and never never had any problems with it. And I see alot of similiar complaints like mine on this forum now..
  What suggestions do you have for me NOW... much appreciated, Cyrus

  I uninstalled all the old flash players and installed the flash player v16.0.0.235 from the Adobe website posted.
  And Firefox is still the same. It takes forever to web search, It takes a long time to get on Youtube, and a longer time now to open a video..
  It's actual worse since I upgraded to the newer flash player.
  I'll do one more fifefox reset (this is the 8th one in a week)
  and it works for a few hrs, and goes back to the slowww way of working...
  Many of my friends I talked to about this, told me to switch over to Chrome like they had to do..
  I guess that's the only alternative now..
  Thankyou all for your help and suggestions anyway.. :)

• Router connected to cable modem by Ethernet port cannot get IP address from DHCP.

  I have an ethernet cable on Fa0/0 connecting my 1841 router to my cable modem. The issue is that the router cannot obtain an IP address via DHCP when I have the "ACL-OUTSIDE-IN" ACL applied inbound on the Fa0/0 interface. I tried to allow all BOOTP and BOOTPS traffic in my ACL, but still no luck. I really don't want to run the router without a simple ACL firewall and connect it to the internet. When I take off the ACL off of Fa0/0, the router is able to get an IP address via DHCP.
  Router#sh run
  Building configuration...
  Current configuration : 10736 bytes
  ! Last configuration change at 18:14:42 MST Fri Nov 16 2012 by matt.chan
  version 12.4
  service nagle
  service timestamps debug datetime msec localtime show-timezone year
  service timestamps log datetime msec localtime show-timezone year
  service password-encryption
  hostname Router
  boot-start-marker
  boot system flash:c1841-advipservicesk9-mz.124-25f.bin
  boot-end-marker
  logging count
  logging userinfo
  logging buffered 1048576 informational
  enable secret 5 <removed>
  aaa new-model
  aaa authentication login AUTH-LOCAL local-case
  aaa session-id unique
  memory-size iomem 25
  clock timezone MST -7
  ip cef
  ip nbar pdlm flash:directconnect.pdlm
  ip nbar pdlm flash:citrix.pdlm
  ip nbar pdlm flash:bittorrent.pdlm
  ip nbar custom steam destination udp range 27000 27030
  ip nbar custom rdp destination tcp range 3389 3391 55402
  ip domain lookup source-interface FastEthernet0/0
  ip name-server 8.8.8.8
  ip inspect name fa0/0_inspect_ou icmp router-traffic timeout 10
  ip inspect name fa0/0_inspect_ou ftp timeout 300
  ip inspect name fa0/0_inspect_ou udp router-traffic timeout 120
  ip inspect name fa0/0_inspect_ou tcp router-traffic timeout 300
  login block-for 60 attempts 4 within 60
  login quiet-mode access-class ACL-ACCESS-QUIET
  password encryption aes
  crypto pki trustpoint TP-self-signed-1755372391
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-1755372391
  revocation-check none
  rsakeypair TP-self-signed-1755372391
  crypto pki certificate chain TP-self-signed-1755372391
  certificate self-signed 01
    3082023F 308201A8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
    31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
    69666963 6174652D 31373535 33373233 3931301E 170D3132 31313137 30313130
    35325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
    4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 37353533
    37323339 3130819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
    8100D53F 9EB5B123 3103A4D5 82E786F7 F91C2DE5 9E409A22 80AF78F6 812F624A
    89FE9103 73C4AAAB 13FF880D F628607D 6888AC49 18BEDD77 778F0DB1 F9A796E9
    E92717CD 6DD19450 5066620A 91278C33 E38349EA 92B8C671 80761609 0AC46E6F
    2C8C6BCF ABC7E1F7 A64BD28C C85477FE B23F8A7C 555ECDF9 CE461B8D 6C017370
    0ED70203 010001A3 67306530 0F060355 1D130101 FF040530 030101FF 30120603
    551D1104 0B300982 074E5543 4C455553 301F0603 551D2304 18301680 146CA2E0
    936C651F E2ED4DCD D7025FF3 2AB029E0 95301D06 03551D0E 04160414 6CA2E093
    6C651FE2 ED4DCDD7 025FF32A B029E095 300D0609 2A864886 F70D0101 04050003
    8181004A AFA4D07C 1424DE0E EF3F17F2 BB1EA63B CB17C13D 1AEA31A1 BAB6AF77
    DB6EA8A2 2117DCD1 5530A18C 3618D568 CC7EF520 E039ACBD DA906352 BB7E51BD
    0954490C B2AB30C2 FBBE4738 C214BE1C CB63FFEA BAFC46E0 3DC419EE 714B9ABD
    144A21E3 3E54C103 FF47FAF1 412FE5C4 59ACD1FE FD72356B C8DC04C3 E2EDF275 45954C
    quit
  username <removed secret 5 <removed>
  ip ssh maxstartups 10
  ip ssh time-out 60
  ip ssh authentication-retries 2
  ip ssh port 2226 rotary 1
  ip ssh version 2
  class-map match-all Zuri-YouTube-Class
  match access-group name NAT-Pool-Zuri-WLAN
  match protocol http host "*youtube.com*"
  policy-map PMAP-QOS-VTI-IN
    description QOS FOR TU0
  class class-default
    shape peak 1512000
  policy-map PMAP-QOS-VTI-OUT
    description QOS FOR TU0
  class class-default
    shape peak 512000
  crypto isakmp policy 1
  encr aes 256
  authentication pre-share
  group 5
  lifetime 43200
  crypto isakmp key 6 <removed> address <removed>
  crypto isakmp invalid-spi-recovery
  crypto isakmp keepalive 10 5 periodic
  crypto ipsec transform-set EDGE-TS ah-sha-hmac esp-aes 256
  crypto ipsec profile EDGE
  set security-association lifetime kilobytes 256000
  set transform-set EDGE-TS
  set pfs group5
  interface Loopback0
  no ip address
  interface Tunnel0
  description "VTI Link"
  bandwidth 4000
  ip address 172.20.0.2 255.255.255.0
  ip mtu 1400
  ip nbar protocol-discovery
  ip nat inside
  ip virtual-reassembly
  ip tcp adjust-mss 1360
  ip ospf authentication message-digest
  ip ospf message-digest-key 1 md5 7 12090011003E5A0C0F186E752220211B4A
  keepalive 10 5
  tunnel source FastEthernet0/0
  tunnel destination <removed>
  tunnel mode ipsec ipv4
  tunnel path-mtu-discovery
  tunnel protection ipsec profile EDGE
  service-policy output PMAP-QOS-VTI-OUT
  hold-queue 75 out
  interface FastEthernet0/0
  description "Link to ISP"
  bandwidth 4000
  ip address dhcp
  ip access-group ACL-OUTSIDE-IN in
  no ip proxy-arp
  ip nbar protocol-discovery
  ip nat outside
  ip inspect fa0/0_inspect_ou out
  ip virtual-reassembly
  ip ospf cost 1
  duplex auto
  speed auto
  no keepalive
  no cdp enable
  interface FastEthernet0/1
  description "Link to LAN"
  ip address 172.16.0.1 255.255.255.248
  ip access-group ACL-INSIDE-IN in
  no ip proxy-arp
  ip nbar protocol-discovery
  ip nat inside
  ip virtual-reassembly
  ip ospf cost 1
  ip ospf priority 255
  duplex auto
  speed auto
  no keepalive
  router ospf 1
  log-adjacency-changes
  redistribute static subnets
  passive-interface default
  no passive-interface Tunnel0
  network 172.20.0.0 0.0.0.3 area 0
  ip forward-protocol nd
  ip route 10.0.0.0 255.0.0.0 Null0 name "Class A Private"
  ip route 172.16.0.0 255.240.0.0 Null0 name "Class B Private"
  ip route 172.17.0.0 255.255.0.0 FastEthernet0/1 172.16.0.2 name "Home WLAN"
  ip route 172.19.73.31 255.255.255.255 Null0
  ip route 172.27.0.0 255.255.0.0 Tunnel0 172.20.0.1 name "IPsec GRE Tunnel"
  ip route 192.168.0.0 255.255.0.0 Null0 name "Class C Private"
  ip route 192.168.0.0 255.255.255.0 Tunnel0 172.20.0.1 name "VLAN 70"
  ip route 192.168.100.1 255.255.255.255 FastEthernet0/0 70.162.0.1 permanent name "CABLE MODEM MANAGEMENT"
  ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp 253
  ip dns server
  no ip http server
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 60 life 86400 requests 10000
  ip nat translation tcp-timeout 300
  ip nat translation udp-timeout 120
  ip nat translation max-entries 2048
  ip nat inside source list ACL-NAT-172.16.0.0/29 interface FastEthernet0/0 overload
  ip nat inside source list ACL-NAT-MANAGEMENT interface FastEthernet0/0 overload
  ip nat inside source static tcp 172.16.0.4 22 interface FastEthernet0/0 2227
  ip nat inside source static tcp 172.16.0.5 3389 interface FastEthernet0/0 3391
  ip nat inside source static tcp 172.16.0.3 3389 interface FastEthernet0/0 3390
  ip nat inside source static tcp 172.16.0.4 80 interface FastEthernet0/0 8084
  ip access-list standard ACL-ACCESS-QUIET
  permit 216.161.180.16
  permit 172.16.0.0 0.1.255.255
  permit 172.27.0.0 0.0.127.255
  permit 172.20.0.0 0.0.0.3
  ip access-list standard ACL-NAT-172.16.0.0/29
  permit 172.16.0.0 0.0.0.7
  ip access-list standard ACL-NAT-172.17.0.0/24
  permit 172.17.0.0 0.0.0.255
  ip access-list standard ACL-NAT-172.17.1.0/24
  permit 172.17.1.0 0.0.0.255
  ip access-list standard ACL-SNMP
  permit 172.16.0.4
  ip access-list extended ACL-CRY-MAP
  ip access-list extended ACL-INSIDE-IN
  deny   ip host 172.16.0.2 172.27.0.0 0.0.127.255
  deny   ip host 172.16.0.2 172.20.0.0 0.0.0.3
  permit ip 172.17.0.0 0.0.0.255 any
  permit ip 172.16.0.0 0.0.0.7 any
  permit ip 172.17.1.0 0.0.0.255 any
  ip access-list extended ACL-NAT-MANAGEMENT
  permit tcp host 172.27.10.11 eq 3389 host 72.166.77.196
  ip access-list extended ACL-OUTSIDE-IN
  deny   ip 10.0.0.0 0.255.255.255 any
  deny   ip 172.16.0.0 0.15.255.255 any
  deny   ip 192.168.0.0 0.0.255.255 any
  permit tcp any any range 3390 3391
  permit udp any any eq bootpc
  permit udp any any eq bootps
  permit tcp any any range 2226 2228
  permit tcp any any range 8081 8084
  permit icmp any any echo
  permit icmp any any net-unreachable
  permit icmp any any host-unreachable
  permit icmp any any port-unreachable
  permit icmp any any parameter-problem
  permit icmp any any packet-too-big
  permit icmp any any administratively-prohibited
  permit icmp any any source-quench
  permit icmp any any ttl-exceeded
  deny   icmp any any
  deny   ip any any
  ip access-list log-update threshold 10
  logging history informational
  logging trap debugging
  logging 172.17.228.17
  logging 172.17.228.10
  control-plane
  line con 0
  exec-timeout 15 0
  privilege level 15
  logging synchronous
  login authentication AUTH-LOCAL
  line aux 0
  login authentication AUTH-LOCAL
  line vty 0 4
  exec-timeout 60 0
  privilege level 15
  logging synchronous
  login authentication AUTH-LOCAL
  rotary 1
  transport input ssh
  scheduler allocate 20000 1000
  ntp clock-period 17178311
  ntp source FastEthernet0/0
  ntp server 148.167.132.201
  end

  Hi Matt,
  Try adding below line
  ip access-list extended ACL-OUTSIDE-IN
  permit udp any eq bootpc any eq bootps
  Regards
  Najaf
  Please rate when applicable or helpful !!!