WRVS4400N QuickVPN and DHCP

Similar Messages

• I need help configuring three products: WRVS4400N, WAG325N and WVC200

  Hello,
  I want your help in three linksys products as mentioned below:
  WAG325N ADSL2+ Router
  WVC200 PTZ CAMERA
  WRVS4400N VPN Router
  The computer connections and configuration of above linksys products which I am working with and which are connected with the above three linksys products at present are as follows:
  1) I have one server and one laptop.
  2) Laptop has two wireless adapters which I use to connect to the routers.
  3) The server is connected to the WRVS4400N Router through one of the four ethernet ports mentioned on backside of the WRVS4400N Router. The DHCP of this router is disabled by me and the router's default IP 192.168.1.1 was changed to 192.168.1.12
  4) The WRVS4400N router is connected to the Wag325N router for internet access to the server and server is connected to WRVS4400N Router as mentioned in point number 3 above.
  5) The WAG325N router is setup as per the instructions mentioned that came with the CD of this router. The only change that I have modified is the router's default IP. I have changed the default IP of WAG325N from 192.168.1.1 to 192.168.1.13 and DHCP is enabled on this router.
  The help that I want is step by step as follows:
  1) I want to configure the both routers in such a way so that I can access them from anywhere across the world i.e. remotely using internet.
  2) I have WVC200 Camera which I setup according to instructions mentioned in the CD and also configured the DDNS service. But when the " RJ45 Cable is connected " to my WAG325N router and Camera, then only the camera works properly. What I want is that after the setup is completed, I want to remove the RJ45 Cable connected from my camera to router and use the camera wirelessly from any location within the range of my above mentioned WAG325N router. I need flexibility to use my camera without cable connections from any location and any rooms of my house. I also configured the port forwarding and DDNS properly. The only problem is that if I remove the Cable after the setup of camera is finished, then the camera access is not working on LAN or internet(through DDNS). Whereas the same works on LAN and internet using the DDNS service, when the cable is physically connected to the WAG325N router. Also I want one more thing additionally other then this. I want to use this camera wirelessly by configuring the port forwarding options on both routers at a same time(i.e. simultaneously at once on WRVS4400N and WAG325N).
  3) Now as two DHCP cannot work at a same time and as my routers are connected with each other, So I have disabled the DHCP on WRVS4400N. Here I need help so that DHCP can be enabled on both at a same time. Because if the DHCP is not enabled on WRVS4400N then I have to give IP to the server which is connected with server. If I enable the DHCP then there are two DHCP's at a same time on same network and thus problems occurs in internet access to the server. So, what should I do in such a way so that I do not have to give any IP to my server and set it to automatic.
  4) This question is just for my knowledge so that I can use the above mentioned linksys purchases upto full extent possible in future. I want to know what is VPN and how is it usefull? What is the difference between VPN and VPN tunnel? How can VPN be used to access all my network resources connected with my server  in the above situation where my server is connected to WRVS4400N which in turn is connected to WAG325N?
  Thanks !
  Sincerely
  Kalpesh Sharma
  +91-79-25351208
  +919227435453
  Ahmedabad, India.

  for question number 1:
  you said that your main router is WAG325N, for you to remotely access the 2nd router is for you to forward the IP addr [192.168.1.12] on your first router and change its management port of your second router that is located on either the security tab or the administration tab on its User Interface
  to access your first router open and Internet Explorer and enter
  http://[public IP addr]:[management port]
  the PUBLIC IP or INTERNET IP is located on the status page of your router
  to access your second router just change the management port to
  ex.
  http://66.77.88.99:8080 first router
  http://66.77.88.99:8081 second router
  for question number 2:
  make sure that you have configured all wireless settings on both your camera and your main router WAG235N, once done save settings and power down your camera and power it back up.
  for question number 3:
  for you to enable DHCP on both routers your connection can go like so...
  from a regular port of your main router going to the INTERNET port of your second router [this way you can enable DHCP on both routers]. INTERNET is no problem, your cesond router will be able to get connection
  for question number 4:
  VPN - Virtual Private Network
  VPN tunnel -is/are connections from router to router [gateway to gateway]
  VPN is used to connect a diff network on a diff location for you to have access to the shared filed [it is like a file sharing through the internet]
  for you to be able to use VPN tunnel you have to connect to a different VPN router on a diff location. In that way you can get access to the other network 

• Wrvs4400n vlans/ssid/dhcp issue

  Hi all,
  it will be great if someone will help me with my problem.
  the problem is : our wrvs4400n  wifi router configuration.
  network description: we need 2 separated wifi networks one for guests and one for internal access, and i configured them on router, and also configured each one of them to different vlan, guests to vlan 200 and internal use default vlan 1.
  vlan 1 configured as dhcp relay and its working pritty well.
  vlan 200 configured as dhcp and the problem begins here.
  somehow  on vlan 200 i get dhcp from our externam dhcp server,
  wrvs4400n conected  as follow> lan port1/vlan 200 connected to firewall port(configured as vlan 200) and lan port 4/vlan1 conected to our main switch wich connected to firewall also.
  i guess that my knowlege in networking its not so good......
  how can i prevent from our internal dhcp to comunicate with vlan 200 ,
  any help will be very appreciated.

  Hi Rich,
  You cannot have different L3 VLANs sharing the same subnet.
  Each VLAN must have it's own subnet and then you have a routing device routing between both VLANs.
  You should have a DHCP pool also for VLAN 111 configured on the DHCP server.
  Even if you have ip helper address configured and this should be done on the VLAN111 interface of the switch, you still need a DHCP pool for VLAN 111 because the DHCP discovery is coming on VLAN 111.
  Please take a look into this document:
  http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a0080665ceb.shtml.
  Here it explains how to configure 2 ssids on 2 vlans and dhcp pool (on the switch itself) for each vlan.
  HTH,
  Tiago
  If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

• I want to use Back to my mac. When I try to turn it on, it says "Back to My Mac may be slow because more than one device on your network is providing network services.   Turn off NAT and DHCP on one of the devices and try again." How do I fix this?

  Not sure if I am doing this right. This is my first time in the support community.
  I imagine what I put in my heading was supposed to go in here.
  I want to use Back to my mac. When I try to turn it on, it says "Back to my mac may be slow because more than one device on your network is providing network services. Turn off NAT and DHCP on one of the devices and try again. See the documentation that came with your device for information about turning off network services"
  Does anyone know how I do this? I contacted my ISP (Telus in Canada) and they did not know anything (not that they usually do).

  Why do ISPs insist upon making things so difficult for their customers?
  If you cannot get them to understand that you would prefer to use your own router over their piece of cheap junk, perhaps the information in the following will be useful:
  http://keithbalomben.wordpress.com/2012/03/29/telus-actiontec-v1000h-hacks-and-i nformation/
  Scroll down to DHCP Settings
  You will need to log in with proper "technician" credentials. They are provided in the above link as
  Username: tech
  Password: t3lu5tv
  ... but these may or may not work. Try it, and if you cannot get anywhere at least now you know what to ask Telus to do in return for your business.

• QuickVPN and Windows 7

  I know that this is a very common problem but by starting a new thread and rattling the cages, maybe someone at Cisco may take notice
  QuickVPN does not work with Windows 7 - FIX IT
  I have used QuickVPN 1.4.0.5 running on XP and Windows 7 on the same box and XP always works, Windows never does
  I have used QuickVPN 1.4.0.5 running in an XP virtual machine and a Windows 7 Virtual machine and XP always works, Windows 7 never does.
  I have read all the messages on this forum and none of them helped.
  Clearly there is nothing wrong with my router(s) or ISP blocking ports etc etc since XP ALWAYS WORKS !!!!
  I have to keep an XP virtual machine around just to run QuickVPN - I guess I should count myself as lucky.
  At least I can get some work done!

  First of all sorry for my English.
  I had the same issue and finally solved it by installing the CISCO.VPN.Client.v5.0.04.0300 (the one which is used for routers like Cisco 877) additionally into my computer (QuickVpn and CiscoVPNClient).
  I found this solution by "accident", because I had a Laptop with Windows 7 in my home, where Quicvpn was working perfect from the beginning.
  Then I thought that the only deference was that I had installed first the CISCO.VPN.Client to establish a vpn connection to a different place. So I tried this procedure to a new laptop and it worked also.
  Hope helping you for solving this headache to...

• Solaris 10 zone configuration with sysidcfg and dhcp and hostname

  Hi
  Excuse me if I look like a n00b... it's probably because I'm a n00b.
  I've been struggling in the dark for more than 2 days now and I'm wondering if I'm thinking about this all wrong...
  I have stand-alone server where I need to run zones. I want to create zones and automagically configure them at boot (read: by running a script). So here's what I need...
  A zone
  starting from unconfigured state
  whose hostname is not the same as the zone name
  using corporate DHCP to get its IP address
  with DNS config coming from the DHCP server
  registering its address the DNS
  with a preconfigured root password
  (I don't own the corporate DHCP or DNS servers, I can't put my own DHCP or DNS servers on the network.)
  I would lke to create the zone, throw some config at it, then boot the zone and walk away. I am using zones with exclusive-IP. I can construct the zones and manually configure them once they're started to have DHCP, my own name, registered IP address with DNS and everything else I have specified above. But I don't want to do it manually...
  Sysidcfg seems to do some of what I want but not entirely.
  In sysidcfg I can set the root_password, the primary interface using DHCP, DNS server. I can't set a hostname in sysidcfg AND use configure it for DHCP. So the hostname is not what I want it to be after the zone is started and ready to go. The DHCP server is providing the DNS configuration, Solaris does not seem to honour it, but i'll ignore that for the moment.
  I have tried various combinations of using sysidcfg, /etc/nodename, /etc/hostname.+interface+ and /etc/dhcp.+interface+ but I can't find any combination that actually works.
  I can write to the zonestorage/etc/nodename to set the nodename, that works. But it does not match the DHCP address, so I get prompted for a new name service because it can't find a DNS entry for the name.
  I can write to the zonestorage/etc/hostname.+interface+ and /etc/dhcp.+interface+ (to get the system to register its name with the DNS server after getting its DHCP address) but then I get a system with no root password and no DNS configuration, even though they are set in the sysidcfg file.
  I can write a script that gets part of the way using sysidcfg and /etc/... files, then boots the zone and then runs a bunch of voodoo via zlogin commands to fix all the stuff that couldn't be done 'properly', but that's not a 'boot and walk away' environment. I can write a script that uses sysidcfg and hacks around with other files in /etc (like nsswitch.conf, resolv.conf), but that just feels likes a dirty hack to fix something that wasn't done properly in the first place.
  So where am I going wrong and how do I do it right (within the constraints defined)? Why can't I configure, boot and walk away?
  Thanks

  Thanks abrante
  Thanks for your response!
  I don't think the config is messed up after the installation. I think the installation is fine, it's just not what I want :-)
  I'm trying to decouple the zonename from the system name and get DNS registrations working. After installation, a DHCP client can get its hostname from DNS but I'm trying to do it the other way around. I want the DHCP client specify its own hostname, get an address from the DHCP server and then register its hostname with DNS. If the system gets its name from DNS/DHCP then I have to configure those to provide the system name and I don't own the DHCP/DNS infrastructure. These zones are for a development/QA environment, so we create and reconfigure these frequently. Hence the need to specify the system name within the zone and register that name in the DNS.
  I have tried fiddling with the PARAM_REQUEST_LIST but it does not seem to be working as I expect. :-$ Removing 12 did not help with setting the hostname from the system. DNS does not have a registered name for this system anyway, so even if it tried to get a name for this system, it would get nothing.
  I also do want the DHCP to change the DNS server and domain name, but this does not happen even though my dhcpagent includes 6 and 15 in the PARAM_REQUEST_LIST. I still have to set them in the sysidcfg file because it is always ignored in Solaris (S10u8 with 10_Recommended 30-Jul-2010)
  As stated, I know I can hack around with the system after it has booted. But I'm trying to configure the system before it starts and let it take care of itself and not have to touch it. Frankly I'm surprised that the sysidcfg does not allow you to set a hostname name when you are using DHCP, that the default DHCP configuration does not register the system name with the DNS server, and the DNS config from the DHCP response is ignored. Even a sys-unconfiged system requires DNS configuration during initial boot, when I know that the DHCP response contains DNS information.
  FYI: Windows systems using DHCP work as expected in this respect by default, i.e. set system name, use DHCP --> system gets address from corporate DHCP, DNS settings are set from DHCP information, DNS registration is made for system name.
  I'm working around this at the moment... I call my zone by the system name I want, I hardcode the DNS settings in the sysidcfg file and I create the hostname.+nic+ and dhcp.+nic+ files in the zone storage to get the system to register its name with DNS, them boot.
  Edited by: cydonian on Aug 19, 2010 7:45 PM

• DNS and DHCP Roles

  Hi
  does Snow Leopard have DNS & DHCP services in it ? how to make those role run and configure them ?
  and how to make a server a domain controller "silly Windows History in my mind"

  does Snow Leopard have DNS & DHCP services in it
  You mean Snow Leopard Server, right? In which case, yes.
  how to make those role run and configure them ?
  Click a checkbox or two in Server Admin (and add your domain/network-specific data, of course).
  and how to make a server a domain controller "silly Windows History in my mind
  Do you intend to make a Windows domain controller? If so, you can't. Mac OS X Server includes a Samba server which can handle parts of a Windows directory system, but it can't emulate a full Windows Active Directory server which has way more elements.
  On the other hand, if you just mean to create a directory server for your network then, just like the DNS and DHCP server response above, you click a couple of checkboxes in Server Admin and add your directory-specific data via Workgroup Manager (one of the bundled Server apps).

• What are the endpoints attributes collected by NAC Profiler through SNMP and DHCP?

  Hi Everyone,
  Please help on this.
  I want to know what are the endpoints attributes collected by NAC Profiler to discover and profile the endpoints.through SNMP protocol and DHCP protocol.
  Also if anybody can explain a simple used case on this.
  Please guide me on this.
  Thanks in advance.
  Thanks,
  Abuzar.

  Hi,
  SNMP
  =====
  NetMap queries network devices via SNMP for:
  System information
  Interface information
  Bridge information
  802.1X information (PAE MIB)
  Routing/IP information
  CDP MIB Information
  This information is used to Build and maintain a model of the network topology and endpoint discovery.
  NetMap uses SNMP Get, GetNext and GetBulk (when available) requests to  query the SNMP agents running on the network infrastructure devices to  gather specific Management Information Base (MIB) objects about their  status based on device type (Layer 2 or Layer 3).
  In addition to polling each network device for all MIB data at a regular  interval, NetMap may also be commanded to poll port-specific  information when the NAC Profiler system is notified that an endpoint  has joined or left the network via SNMP traps sent by devices at the  network edge, switches typically.
  Upon receipt and verification of a link state (link up, link down) or  MAC notification trap, NetTrap will notify the NAC Profiler Server that a  change has occurred on the network edge (endpoint joined or left a  network port). If the trapping device is in the NAC Profiler  configuration, the NetMap component module assigned to poll the device  that sent the trap will be commanded by the Server module to initiate a  poll of the device's port information to determine the change to the  endpoint topology that resulted in the trap being sent by the network  device.
  The information gathered by NetMap is processed by the Server  accordingly to update the network topology, noting the endpoint joining  or leaving a port. Note that NetMap SNMP polling of network devices  resulting from a trap is localized to the port specified in the trap.  This is unlike the regular polling that occurs at the frequency  specified for each device type (L2 and L3) which gathers all SNMP  information from the device used by the NAC Profiler system.
  DHCP:
  =====
  The NetWatch module listens for traffic including DHCP traffic.
  The module will collect all the DHCP information on the traffic collected, like mac address, ip address,  DHCP Vendor Class Identifier in DHCP request, host name in DHCP request, requested specified options in DHCP request (option 55) and full list of DHCP options supported by the DHCP client as specified in the DHCP request.
  All the endpointe data can then be used to map endpoints with profiles.
  HTH,
  Tiago
  If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

• How to synchronize between DHCP binding table and DHCP snooping table ?

  I clear DHCP snooping table with command "clear ip dhcp snooping binding " , and PC can't communicate with other any more. So how to synchronize between DHCP binding table and DHCP snooping table ?
  dhcp-test#sh ip dhcp bind
  IP address Client-ID/ Lease expiration Type
  Hardware address
  99.1.65.32 0100.1125.353c.25 Mar 02 1993 01:05 AM Automatic
  99.1.65.33 0100.1438.059f.85 Mar 02 1993 12:01 AM Automatic
  dhcp-test#sh ip dhcp snooping binding
  MacAddress IpAddress Lease(sec) Type VLAN Interface
  Total number of bindings: 0
  thanks!

  ip dhcp snooping binding mac-address vlan vlan-id ip-address interface interface-id expiry seconds
  Add binding entries to the DHCP snooping binding database. The vlan-id range is from 1 to 4904. The seconds range is from 1 to 4294967295.
  Enter the above command for each entry that you add
  To delete the database agent or binding file, use the no ip dhcp snooping database interface configuration command. To reset the timeout or delay values, use the ip dhcp snooping database timeout seconds or the ip dhcp snooping database write-delay seconds global configuration command.To renew the database, use the renew ip dhcp snooping database privileged EXEC command.

• IPoE BNG and DHCP on the ASR9K

  Hi,
  can some one tell me if this is possible.
  I have a bundle Interface -using ambiguous VLANS:
  interface Bundle-Ether100.1
  vrf customers_1
  ipv4 unnumbered lo2
  ipv4 point-to-point
  arp learning disable
  service-policy type control subscriber UFB_DHCP
  ipsubscriber ipv4 l2-connected
    initiator dhcp
  encapsulation ambiguous dot1q any second-dot1q any
  I have two loopback interfaces:
  interface lo2
  vrf customers_1
  ipv4 address 100.64.0.1 255.255.128.0
  interface lo3
  vrf customers_1
  ipv4 address 200.200.200.1 255.255.254.0
  I am authenticating users using option82 remote-id, and DHCP for address allocation.  I want to use RADIUS to send back attributes, to set the users template, and, somehow set the dhcp giaddr so that the user gets an address from the correct pool.
  ie. put the user into this template:
  dynamic-template
  type ipsubscriber CUSTOMER
    vrf customers_1
    ipv4 unnumbered Loopback3
  and have them then given an address in the lo3 (200.200.200.0) range.  No matter what i do the dhcp giadd remains the address of the Bundle Interface.
  I have tried all sorts of radius attributes:
  Cisco-AVPair = 'subscriber:service-name=CUSTOMER'
  Cisco-AVPair = 'subscriber:command=activate-service'
  I have tried:
  Cisco-AVPair= 'ipv4:ip-unnumbers=Loopback3'
  Cisco-AVPair= 'subscriber:classname=lo192'  - and creating a dhcp class to set giaddr
  I get a "aaa_type invalid attribute, flags 0x21"
  I am at a bit of loss, and am not sure if what I am wanting to do is even possible.
  though if set the template statically via an onboard policy things seem to work, and my user gets an address from the correct loopback.
  any help would be appreciated.
  ta.

  Alexander,
  thanks for your reply,
  If I use
  Cisco-AVPair = 'subscriber:sa=UFB_CUSTOMER'  -> sets dynamic template
  Cisco-AVPair += 'ipv4:ipv4-unnumbered=Loopback3' -> sets ipv4 loopback
  I get the following form the RADIUS debug (showing template, and loopback understood by RADIUS)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]: Radius packet decryption complete with rc = 0
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]:  RADIUS: Received from id 195 202.74.33.109:1812, Access-Accept, len 121
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]:  RADIUS:   Vendor-Specific    [26]    34             
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]:  RADIUS:  authenticator F2 4D D3 E7 B1 E8 90 D3 - F8 77 F1 1C 28 36 E9 6C
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]:  RADIUS:   Vendor-Specific    [26]    41             
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]:  RADIUS:  Reply-Message       [18]    26      User authenticated - UBA
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: pack_length = 121 radius_len = 121
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: rad_nas_reply_to_client: Received response from id : 195,packet type 2
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Total len = 121, Radius len = 121
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: filter not found
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Decoding the attribute: Vendor-Specific, aaa_type invalid attribute, flags 0x21
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Decoding the attribute: Vendor-Specific, aaa_type invalid attribute, flags 0x21
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: This is sub-string of the Loopback interface name
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Loopback attribute value: Loopback3
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Decoding the attribute: Reply-Message, aaa_type reply-message, flags 0x100
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: Reply-Message fragments, 24
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: , total 24 bytes
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: RADIUS: parsing sevice 'UFB_CUSTOMER' (len 12)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: (rad_nas_reply_to_client) Successfully decoded the response No error: PASS
  RP/0/RSP0/CPU0:Nov 28 13:33:11.479 : radiusd[1120]: (rad_nas_reply_to_client) Successfully stored the preferred server info
  RP/0/RSP0/CPU0:Nov 28 13:33:11.478 : radiusd[1120]: Freeing server group transaction_id (B1000047)
  output from show subscriber running:
  Subscriber Label: 0xff
  % No such configuration item(s)
  dynamic-template
  type ipsubscriber UFB_CUSTOMER
    vrf customers_1
  The subscriber shows up as a session:
  RP/0/RSP0/CPU0:tpisp-cr02-h#show subscriber session all
  Thu Nov 28 13:38:05.389 UTC
  Codes: IN - Initialize, CN - Connecting, CD - Connected, AC - Activated,
         ID - Idle, DN - Disconnecting, ED - End
  Type         Interface                State     Subscriber IP Addr / Prefix                             
                                                  LNS Address (Vrf)                             
  IP:DHCP      BE100.1.ip71             AC        100.64.0.98 (customers_1) 
  However..
  the ip address range is from the loopback 2 address, (this is the loopback bound to the unbundled BNG interface)
  My understanding is that the giaddr address should have been changed to the ip address of lo3, which is the loopback specified in the RADIUS attribute.
  dhcp debug: (this is the dhcp debug that follows directly after the RADIUS debug)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.484 : dhcpd[1080]: DHCPD PACKET: TP1225: Process packet event, client mode: PROXY
  RP/0/RSP0/CPU0:Nov 28 13:33:11.484 : dhcpd[1080]: DHCPD PROXY: TP1955: FSM called for chaddr 000c.4270.6e7c with event DPM_SUCCESS state INIT_DPM_WAIT
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD PROXY: TP1917: Process client request called for chaddr 000c.4270.6e7c
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD PACKET: TP1883: Giaddr not present, Set giaddr 100.64.0.1, chaddr 000c.4270.6e7c
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD PACKET: TP571: L3 packet TX unicast to dest 202.74.33.108, port 67, source 100.64.0.1, vrf 0x60000003 (1610612739), tbl 0xe0000012 (3758096402)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: ---------- IPv4 DHCPD --- dhcpd_iox_l3_unicast_packet -------
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: VRF name (id): customers_1 (0x60000003)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: L3 src: 100.64.0.1
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: L3 dst: 202.74.33.108
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: L3 dst port: 67
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: L3 input Intf: Bundle-Ether100.1
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Output Intf: Null
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: FROM: L3
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: NETWORK_ORDER
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan Info
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan EtherType 1: 0x8100
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan Priority 1: 0 (0x0)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan Format 1: 0 (0x0)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan ID 1: 101 (0x65)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan EtherType 2: 0x8100
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan Priority 2: 0 (0x0)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan Format 2: 0 (0x0)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: metadata: Vlan ID 2: 23 (0x17)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666:
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: op:     BOOTREQUEST
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: chaddr: 000c.4270.6e7c
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: xid:    0x303751ed
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: flags:  0x8000 (broadcast)
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: ciaddr: 0.0.0.0
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: yiaddr: 0.0.0.0
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: siaddr: 0.0.0.0
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: giaddr: 100.64.0.1
  RP/0/RSP0/CPU0:Nov 28 13:33:11.485 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: cookie: 0x63825363
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: MESSAGE_TYPE: DISCOVER
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: PARAMETER_REQUEST data: "0x01-79-03-21-06-2a"
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: CLIENT_IDENTIFIER data: "0x01-00-0c-42-70-6e-7c"
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: HOST_NAME data: "MikroTik"
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: RELAY_INFORMATION
  RP/0/RSP0/CPU0:Nov 28 13:33:11.486 : dhcpd[1080]: DHCPD_PACKET: pktTx id 666: option: RELAY_INFORMATION: CIRCUIT_ID: 0x01-0f-43-48-4f-52-55-53-31-30-30-30-30-30-34-35-33
  I tried changing the dynamic template to service rather than ipsubscriber, this did not make a difference.  You make a reference to DHCP classname.  I have defined a DHCP class, however do not know how to match or force the use of a particular class by using a RADIUS attribute.
  Thanks,
  Mike

• WLAN and DHCP with WLC controller

  Hi,
  I've a question about how works dhcp for wifi clients.
  On the WLAN edit I've seen that my option are:
  1) DHCP override-> i insert the dhcp server address here
  2) without DHCP override -> the WLAN will use the DHCP server configured under the management interface
  Based upon these informations: why I can configure DHCP server also in other interfaces and not only in the "management" interface ?
  If I configure 2 DHCP servers on a "user interface" ( without the "override" option in WLAN ) my clients will use these DHCP or the DHCP on the "management" interface ?
  Many thanks in advance
  Luigi

  from the on-line help it seems different ;-/
  =====
  DHCP Server (Override)
  When selected, you can enter the IP address of your DHCP server. This is a required field for some WLAN configurations. There are three valid configurations:
  DHCP Server Override ON, a valid DHCP Server IP address, and DHCP Address Assignment Required: Requires all WLAN clients to obtain an IP address from the DHCP Server.
  DHCP Server Override ON, a valid DHCP Server IP address, and DHCP Address Assignment Not Required: Allows all WLAN clients to obtain an IP address from the DHCP Server or use a static IP address.
  DHCP Server Override OFF: Forces all WLAN clients to use the DHCP setting in the Management Interface, not the static address.
  ===========
  It seems that i can Use external DHCP server, putting the address :
  - in the box that appair when i flag the "override" option
  - or in the management interface
  I think documentation is not so clean
  many thanks
  Luigi

• WET200 and DHCP

  Hi there,
  I noticed a few discussion about Cisco Wireless bridges not being able to pass DHCP requests from clients.
  In my case I have a WET200 successfully associated with a Deliberant DLB2700 access point. When client computers are configured with static IP addresses they can browse the network, connect to e-mail etc. Problem starts when a computer will try to obtain the IP address via DHCP while connected to the wireless bridge. It simply doesn't work.
  Is there a newer firmware or a secret settings which will allow me to make it working? I have a quite few of these WET200 units ...
  Thanks in advance for any suggestions.

  Hi Mr 2,
  Please check the following link;
  1.  http://support.deliberant.com/forums/p/1069/4889.aspx#4889  does this sound familiar ?
  But my thoughts are  at this stage,  sure look like there is a question hanging over  the deliberant model number you mentioned, at least that what the deliberant forum might be suggesting.
  2. But does a WET200 in place of the deliberant result in DHCP requests being dropped?
  (Since you have multiple WET200, it would be interesting to peruse this approach for diagnostic reasons and to confirm this in your mind.)
  But,  if you can't do step 2 above, and  are adventurous, maybe you can capture the DHCP server interaction.
  I'm guessing your network may look like the following, excuse the rough network diagram;
  PC---WET200~~~~~~~~~deliberant-------managed switch------------router
                                                                    |                |         |
                                                                 HUB              |        |------DHCP Server
                                                                             mirror port
  Beg borrow or steal a 'HUB' and they are hard to find these days, NOT a switch.
  Or as an alternative, if connected to a managed switch, mirror the Ethernet switch port that leads to  the deliberant AP to a PC running ethereal.
  Using ethereal or similar application,  just checkout the state  of ARP and DHCP packets that egress in and out of the switch port that is connected to the deliberant AP.  (I'm guess ARP is working otherwise you would not be getting anywhere from behind the WET200.)
  But  if you wish to post a ethereal trace, it would be fun to quickly check it out.
  If you do this please don't capture megabytes, try to capture just a bit before and after a DHCP request.
  The other option is to just keep doing what you are doing and statically define IP addresses.
  regards Dave

• I´m doing a design for presale, where I will need a router what support PAT for 500 or a little more of users, it not need any more features only static routing and dhcp pool for 500 users, can you help me for know what router recommend?

  I´m doing a design for presale, where  I will  need a router what support PAT for 500 or a little more of users, it  not need any more features only static routing and dhcp pool for 500 users, can you help me for know what router recommend?

  What is your WAN speed currently and projected WAN speed in the next 3 years?

• Wrvs4400v2 and quickvpn and sprint network

  I have used for 1 year my laptop to connect to my office with quickvpn...my router at the office is  wrvs4400v2 and i use my sprint phone as a modem without any problem...last week i chance phone and even though all the settings are the same, i am getting the"Connection failed" from the quickvpn and cannot vpn into my office...i have check all my settigns and they look the same on the phone as last phone and sprint as usual will not help....Anybody can help me or have any idea where the problem can be??
  Thanks
  P.D..i am using windows xp professional

  Is your sprint device you have a modem/router in one? In order for the QVPN, the WRVS4400 router should be receiving a public IP address. If your modem is also a router, you need to make the modem act as a regular modem only so that the WRVS4400 will receive a public IP address. Also make sure that you are using the latest firmware for the said router. You can download the latest firmware of the router on this link:
  http://www.cisco.com/en/US/products/ps9931/index.html 
  Other than this, I suggest contacting CISCO tech support to further look into your problem. I believe this unit belongs to the business series devices that Cisco is now supporting. Try to go to this link for the other business series devices and the site where you can get hold of Cisco for support:  
  http://www.cisco.com/web/products/linksys/index.html

• Radius, and DHCP DNS info

  I have recently turned on the Radius server, and it seems to work fine, and has taken control of my Airport base station which is great. I only have one problem which is that the DHCP info provided by the server to the clients only seems to give one of the 2 DNS addresses that I have listed in the DHCP server info section. This is rather frustrating as it worked fine with WPA!
  Any thoughts?

  I just upgraded from a 2008 domain to 2012. I followed all the best practices, set up new 2012 DC and transferred all roles to it then removed the 2008 server. I just have the one DC at the moment and it's running both DNS and DHCP. Ever since we've had some odd DNS issues which usually require a reboot of the server to fix. Now at this point I'm digging through DNS and DHCP and seeing that a lot of client IP addresses are not matching up. DNS does not have the correct IP's for several clients. How can I fix dns?
  This topic first appeared in the Spiceworks Community