Meraki

Community

Mac clients not finding DHCP, but on is some areas..

MattTaylorTas
Comes here often
‎Aug 2 2023 4:53 PM
‎Aug 2 2023 4:53 PM

Mac clients not finding DHCP, but on is some areas..

Hi all,

 

I have a set of clients (specifically macbooks) that are struggling to pick up a DHCP addresses when connecting via access points hanging off just one of our switches (which was new in the last few weeks).

When they are in other parts of the network there is no issue connecting and picking up a DHCP address.

This DCHP range is served by the Core Meraki stack, so the request never leaves the mearki environment.

I have checked

 - Scope, plenty of room, and it functions on 70% of the network ok

 - Uplink ports, all uplink ports are trunk ports will all vlans allowed

 - Device's have an active lease

 

of note:

- This is the only DHCP range that is served by the Mearki devices, others relay to our AD servers (no idea why, this setup preceeded me)

- The switch was replaced in the last few weeks, however same firmware version as others in use

 

Any tips?

0 Kudos
7 Replies 7
Ryan_Miles
Meraki Employee
Meraki Employee
‎Aug 2 2023 5:03 PM
‎Aug 2 2023 5:03 PM

Opening a Support case would likely get this resolved faster as they can see your dashboard config. 

 

What was new as of a few weeks ago? The switch, the APs, the entire setup?

 

Are non Macs having issues?

MattTaylorTas
Comes here often
‎Aug 2 2023 5:05 PM
‎Aug 2 2023 5:05 PM

Thank Ryan, I have a support case open as well as this thread.  Non macs are spot on, I can see 8 clients on that vlan active on the troublesome AP right now.

It was the switch that these APs hang off that was replaced during out last student term break.

0 Kudos
Brash
Kind of a big deal
Kind of a big deal
‎Aug 2 2023 5:11 PM
‎Aug 2 2023 5:11 PM

Is the issue only seen with Macbooks?
Ie. Do other clients (Windows, Android, IOS) see the same issue when connecting to the same access points?

Are other clients being served from that same DHCP pool on the Meraki core?

When you say the switch was replaced, was this simply a like-for-like hardware swap with no changes to configuration?

0 Kudos
MattTaylorTas
Comes here often
‎Aug 2 2023 5:30 PM
‎Aug 2 2023 5:30 PM

It looks to be only macbooks with the issue, my IOS connected ok, as do windows (I don't have an android handy to test).

 

The switch that the APs hang off was replaced of late, with the base setup created with a clone of an existing switch.

 

All of our BYOD devices serve from the same DHCP pool, I can see 70ish % free so not running out of address.

 

Interestingly, I just added a LAN device to test, and it didn't pull and address.  All of my uplink ports are untagged on management and all other vlans allowed.

0 Kudos
MattTaylorTas
Comes here often
‎Aug 2 2023 7:28 PM
‎Aug 2 2023 7:28 PM

soooo futher testing no confirms

 

- Any client connecting on this VLAN that is not Windows (OSX, iOS, Android) either on LAN or WLAN will not pick up an IP, wait for it... ONLY when connected to an edge switch.

 

- When connected directly to the core, either on LAN or via AP connected directly to Core  (where the DHCP scope sits) we get an IP ok regardless of OS.

0 Kudos
In response to MattTaylorTas
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Aug 3 2023 1:24 PM
‎Aug 3 2023 1:24 PM

Thats an odd one.

 

1. What are your event logs saying?

 

2. Have you got mandatory DHCP enabled on that SSID? If so does turning it off make any difference?

 

3. As a temporary solution you could setup a different DHCP server to get around the issue while you trouble shoot it. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
MattTaylorTas
Comes here often
‎Aug 3 2023 8:08 PM
‎Aug 3 2023 8:08 PM

OK! So I think I have this sorted!

 

Being a VLAN for our BYOD devices (we are a school) I had some ACL rules in place to keep the filthy byod devices to themselves, with some basic allows to let DHCP, DNS, paper cut printing and the like through, then an overarching deny to block 10.10.18.0/24 from accessing the rest of our internal network being 10.0.0.0/8.

 

Turns out, windows clients can pull an IP from 10.10.18.1 while this rule is in place, where others can not.

 

If I split the rule into separate rules, denying each of our internal vlans 

Deny 10.10.18.0/24 -> 10.10.10.0/24

Deny 10.10.18.0/24 -> 10.10.11.0/24

Deny 10.10.18.0/24 -> 10.10.12.0/24

ect ect

 

and then remove the overall deny rule , all clients can pull an IP..

 

so odd!

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2025 Cisco Systems, Inc.