Добрый день !
Столкнулся со следующей проблемой.
На свиче

Device Type DGS-3612G Gigabit Ethernet Switch
Boot PROM Version Build 1.10-B09
Firmware Version Build 2.50.B15
Hardware Version A1 ?
Serial Number P1J5185000701 ?

сконфигурирован DHCP сервер :

====================================================


#-------------------------------------------------------------------------------

# DGS-3612G Gigabit Ethernet Switch

# Configuration

#

# Firmware: Build 2.50.B15

# Copyright(C) 2008 D-Link Corporation. All rights reserved.

#-------------------------------------------------------------------------------




# DOUBLE_VLAN

disable double_vlan


# BASIC


# ACCOUNT LIST


# ACCOUNT END

config serial_port auto_logout 10_minutes

enable telnet 23

enable web 80

enable clipaging


# STORM


config traffic trap both

config traffic control 1-11 broadcast enable multicast enable unicast enable action drop threshold 1310 countdown 5 time_interval 5

config traffic control 12 broadcast enable multicast enable unicast enable action drop threshold 131072 countdown 5 time_interval 5


# LOOP_DETECT



# GM


config sim candidate

disable sim

config sim dp_interval 30

config sim hold_time 100


# GM_H



# SYSLOG


disable syslog

config system_severity log information

config system_severity trap warning

create syslog host 1 severity all facility local0 udp_port 514 ipaddress 172.25.4.91 state enable

create syslog host 2 severity all facility local0 udp_port 514 ipaddress 172.25.4.1 state enable

create syslog host 3 severity all facility local0 udp_port 514 ipaddress 172.25.4.2 state enable

config log_save_timing on_demand


# QOS


config scheduling_mechanism strict

config scheduling 0 max_packet 1

config scheduling 1 max_packet 2

config scheduling 2 max_packet 3

config scheduling 3 max_packet 4

config scheduling 4 max_packet 5

config scheduling 5 max_packet 6

config scheduling 6 max_packet 7

config 802.1p user_priority 0 2

config 802.1p user_priority 1 0

config 802.1p user_priority 2 1

config 802.1p user_priority 3 3

config 802.1p user_priority 4 4

config 802.1p user_priority 5 5

config 802.1p user_priority 6 6

config 802.1p user_priority 7 6

enable hol_prevention

config 802.1p default_priority 1-12 0

config bandwidth_control 1-12 rx_rate no_limit tx_rate no_limit


# MIRROR


disable mirror


# TRAF-SEGMENTATION

config traffic_segmentation 1-8,11 forward_list 9-10,12
config traffic_segmentation 9,12 forward_list 1-8,10-11
config traffic_segmentation 10 forward_list 1-9,11-12


# SSL


disable ssl

enable ssl ciphersuite RSA_with_RC4_128_MD5

enable ssl ciphersuite RSA_with_3DES_EDE_CBC_SHA

enable ssl ciphersuite DHE_DSS_with_3DES_EDE_CBC_SHA

enable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5

config ssl cachetimeout 600


# PORT


disable jumbo_frame

config ports 1-8 speed auto capability_advertised 100_full 1000_full flow_control disable learning enable state enable

config ports 9-12 medium_type copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full flow_control disable learning enable state enable

config ports 9-12 medium_type fiber speed auto capability_advertised 100_full 1000_full flow_control disable learning enable state enable


# PORT_LOCK


config port_security ports 1-12 admin_state disable max_learning_addr 1 lock_address_mode DeleteOnReset


# SNMPv3


delete snmp community public

delete snmp community private

delete snmp user initial

delete snmp group initial

delete snmp group ReadGroup

delete snmp group WriteGroup

delete snmp view restricted all

delete snmp view CommunityView all

config snmp engineID 800000ab03001e58ce8300

create snmp view restricted 1.3.6.1.2.1.1 view_type included

create snmp view restricted 1.3.6.1.2.1.11 view_type included

create snmp view restricted 1.3.6.1.6.3.10.2.1 view_type included

create snmp view restricted 1.3.6.1.6.3.11.2.1 view_type included

create snmp view restricted 1.3.6.1.6.3.15.1.1 view_type included

create snmp view CommunityView 1 view_type included

create snmp view CommunityView 1.3.6.1.6.3 view_type excluded

create snmp view CommunityView 1.3.6.1.6.3.1 view_type included

create snmp group xxxxxx v1 read_view CommunityView notify_view CommunityView

create snmp group xxxxxx v2c read_view CommunityView notify_view CommunityView

create snmp group yyyyyy v1 read_view CommunityView write_view CommunityView notify_view CommunityView

create snmp group yyyyyy v2c read_view CommunityView write_view CommunityView notify_view CommunityView

create snmp group public v1 read_view CommunityView notify_view CommunityView

create snmp group public v2c read_view CommunityView notify_view CommunityView

create snmp group private v1 read_view CommunityView write_view CommunityView notify_view CommunityView

create snmp group private v2c read_view CommunityView write_view CommunityView notify_view CommunityView

create snmp community yyyyyy view CommunityView read_only

create snmp community yyyyyy view CommunityView read_write


# MANAGEMENT


enable snmp traps

enable snmp authenticate_traps
disable snmp

enable snmp linkchange_traps

config snmp system_location WWWWWW

disable rmon

config snmp linkchange_traps ports 1-12 enable


# VLAN


enable pvid auto_assign

config vlan default delete 1-12

config vlan default advertisement disable

create vlan Vlan_kkk tag 7

config vlan Vlan_kkk add tagged 1-8,10-12 advertisement disable

create vlan Vlan_254 tag 254

config vlan Vlan_254 add tagged 1-8,10-12 advertisement disable

create vlan Vlan_850 tag 850

config vlan Vlan_850 add tagged 1-8,10-11 advertisement disable

create vlan Vlan888 tag 888

config vlan Vlan888 add tagged 1-8,10-11

config vlan Vlan888 add untagged 9 advertisement disable

create vlan Vlan_999 tag 999

config vlan Vlan_999 add tagged 1-8,10-12 advertisement disable

disable qinq

disable gvrp

config gvrp 1-12 state disable ingress_checking enable acceptable_frame admit_all pvid 1


# PROTOCOL_VLAN



# QINQ


config qinq ports 1-12 missdrop disable tpid 0x8100


# RSPAN


disable rspan


# 8021X


disable 802.1x

config 802.1x auth_protocol radius_eap

config 802.1x capability ports 1-12 none

config 802.1x auth_parameter ports 1-12 direction both port_control auto quiet_period 60 tx_period 30 supp_timeout 30 server_timeout 30 max_req 2 reauth_period 3600 enable_reauth disable


# guestvlan



# TR



# ACL


create access_profile profile_id 1 ip udp src_port_mask 0xFFFF

config access_profile profile_id 1 add access_id 1 ip udp src_port 67 port 1-11 permit rx_rate no_limit

config access_profile profile_id 1 add access_id 2 ip udp src_port 67 port 12 deny

config access_profile profile_id 1 add access_id 3 ip udp src_port 68 port 12 deny

disable cpu_interface_filtering


# LIMITED_MULTICAST_RANGE



# MULTICAST_VLAN



# FDB


config fdb aging_time 300


# ADDRBIND


config address_binding ip_mac ports 1-12 forward_dhcppkt enable

disable address_binding dhcp_snoop

disable address_binding trap_log

config address_binding dhcp_snoop max_entry ports 1-12 limit no_limit


# DhcpServerScreening


config filter dhcp_server port all state disable

config filter dhcp_server illegal_server_log_suppress_duration 5min

config filter dhcp_server trap_log disable


# MAC_ADDRESS_TABLE_NOTIFICATION


enable mac_notification

config mac_notification interval 15 historysize 50

config mac_notification ports 1-12 enable


# STP


config stp version rstp

config stp maxage 20 maxhops 20 forwarddelay 15 txholdcount 3 fbpdu enable hellotime 2 lbd enable lbd_recover_timer 60

config stp priority 32768 instance_id 0

config stp mst_config_id name 00:1E:58:CE:83:00 revision_level 0

disable stp

config stp ports 1-12 externalCost auto edge false p2p auto state enable lbd disable

config stp mst_ports 1-12 instance_id 0 internalCost auto priority 128

config stp ports 1-12 fbpdu enable


# BPDU_TUNNEL


config bpdu_tunnel ports all type none
disable bpdu_tunnel


# SAFEGUARD_ENGINE


config safeguard_engine state enable utilization rising 30 falling 20 trap_log enable mode fuzzy


# BANNER_PROMP


config command_prompt default

config greeting_message default


# SSH


config ssh algorithm 3DES enable

config ssh algorithm AES128 enable

config ssh algorithm AES192 enable

config ssh algorithm AES256 enable

config ssh algorithm arcfour enable

config ssh algorithm blowfish enable

config ssh algorithm cast128 enable

config ssh algorithm twofish128 enable

config ssh algorithm twofish192 enable

config ssh algorithm twofish256 enable

config ssh algorithm MD5 enable

config ssh algorithm SHA1 enable

config ssh algorithm RSA enable

config ssh algorithm DSA enable

config ssh authmode password enable

config ssh authmode publickey enable

config ssh authmode hostbased enable

config ssh server maxsession 8

config ssh server contimeout 120

config ssh server authfail 2

config ssh server rekey never

config ssh user zzzzzzzz authmode password

disable ssh


# SNTP


disable sntp

config time_zone operator + hour 0 min 0

config sntp primary 0.0.0.0 secondary 0.0.0.0 poll-interval 720

config dst disable


# LACP


config link_aggregation algorithm ip_source

config lacp_port 1-12 mode passive


# IP


config ipif_mac_mapping ipif System mac_offset 0

config ipif System ipaddress 172.25.4.9/16 vlan Vlan888

config ipif System proxy_arp disable local disable

config ipif_mac_mapping ipif internet mac_offset 1

create ipif internet 10.109.48.5/21 Vlan_kkk state enable

config ipif internet proxy_arp disable local disable

config ipif_mac_mapping ipif in-tel-lud mac_offset 2

create ipif in-tel-lud 192.168.168.1/24 Vlan_850 state enable

config ipif in-tel-lud proxy_arp disable local disable

config ipif System ip_mtu 1500

config ipif internet ip_mtu 1500

config ipif in-tel-lud ip_mtu 1500

disable autoconfig


# LLDP


disable lldp

config lldp message_tx_interval 30

config lldp tx_delay 2

config lldp message_tx_hold_multiplier 4

config lldp reinit_delay 2

config lldp notification_interval 5

config lldp ports 1-12 notification disable

config lldp ports 1-12 admin_status tx_and_rx


# MBA

disable mac_based_access_control
config mac_based_access_control ports 1-12 state disable
config mac_based_access_control ports 1-12 mode host_based
config mac_based_access_control method local
config mac_based_access_control password default


# MCFILTER



# SNOOP


config limited_multicast_addr ports 1-12 state disable


# MLDSNP



# ACCESS_AUTHENTICATION_CONTROL


config authen_login default method local

config authen_enable default method local_enable

config authen application console login default

config authen application console enable default

config authen application telnet login default

config authen application telnet enable default

config authen application ssh login default

config authen application ssh enable default

config authen application http login default

config authen application http enable default

config authen parameter response_timeout 30

config authen parameter attempt 3

disable authen_policy


# AAA_LOCAL_ENABLE_PASSWORD


# AAA ADMIN PWD LIST

config admin local_enable




# AAA ADMIN PWD END


# NDP


config ipv6 nd ns ipif System retrans_time 0

config ipv6 nd ra ipif System state disable life_time 1800 reachable_time 1200000 retrans_time 0 hop_limit 64 managed_flag disable other_config_flag disable min_rtr_adv_interval 198 max_rtr_adv_interval 600

config ipv6 nd ns ipif internet retrans_time 0

config ipv6 nd ra ipif internet state disable life_time 1800 reachable_time 1200000 retrans_time 0 hop_limit 64 managed_flag disable other_config_flag disable min_rtr_adv_interval 198 max_rtr_adv_interval 600

config ipv6 nd ns ipif in-tel-lud retrans_time 0

config ipv6 nd ra ipif in-tel-lud state disable life_time 1800 reachable_time 1200000 retrans_time 0 hop_limit 64 managed_flag disable other_config_flag disable min_rtr_adv_interval 198 max_rtr_adv_interval 600


# WAC

config wac method local
disable wac


# ARP


config arp_aging time 20

config gratuitous_arp send ipif_status_up enable

config gratuitous_arp send dup_ip_detected enable

config gratuitous_arp learning enable


# ROUTE


config route preference static 60

config route preference rip 100

config route preference ospfIntra 80

config route preference ospfInter 90

config route preference ospfExt1 110

config route preference ospfExt2 115

create iproute default 10.109.48.1 1 primary

config ecmp algorithm ip_destination crc_low

enable ecmp ospf


# PROUTE



# IGMP


config igmp ipif System version 3 query_interval 125 max_response_time 10 robustness_variable 2 state disable

config igmp ipif System last_member_query_interval 1

config igmp ipif internet version 3 query_interval 125 max_response_time 10 robustness_variable 2 state disable

config igmp ipif internet last_member_query_interval 1

config igmp ipif in-tel-lud version 3 query_interval 125 max_response_time 10 robustness_variable 2 state disable

config igmp ipif in-tel-lud last_member_query_interval 1


# PIMSM


disable pim

config pim cbsr hash_masklen 30

config pim cbsr bootstrap_period 60

config pim register_suppression_time 60

config pim register_probe_time 5

config pim last_hop_spt_switchover never

config pim crp holdtime 150 priority 192

config pim crp wildcard_prefix_cnt 0

config pim ipif System state disable hello 30 jp_interval 60 mode dm dr_priority 1

config pim cbsr ipif System priority -1

config pim ipif internet state disable hello 30 jp_interval 60 mode dm dr_priority 1

config pim cbsr ipif internet priority -1

config pim ipif in-tel-lud state disable hello 30 jp_interval 60 mode dm dr_priority 1

config pim cbsr ipif in-tel-lud priority -1


# DVMRP


disable dvmrp

config dvmrp ipif System metric 1 probe 10 neighbor_timeout 35 state disable

config dvmrp ipif internet metric 1 probe 10 neighbor_timeout 35 state disable

config dvmrp ipif in-tel-lud metric 1 probe 10 neighbor_timeout 35 state disable


# IPMROUTE



# RIP


disable rip

config rip ipif System tx_mode disable state disable

config rip ipif System rx_mode disable state disable

config rip ipif internet tx_mode disable state disable

config rip ipif internet rx_mode disable state disable

config rip ipif in-tel-lud tx_mode disable state disable

config rip ipif in-tel-lud rx_mode disable state disable


# MD5



# SFLOW



# OSPF


config ospf ipif internet area 0.0.0.0 priority 1 hello_interval 10 dead_interval 40

config ospf ipif internet authentication none metric 1 state disable passive disable

config ospf ipif System area 0.0.0.0 priority 1 hello_interval 10 dead_interval 40

config ospf ipif System authentication none metric 1 state disable passive disable

config ospf ipif in-tel-lud area 0.0.0.0 priority 1 hello_interval 10 dead_interval 40

config ospf ipif in-tel-lud authentication none metric 1 state disable passive disable

config ospf router_id 0.0.0.0

disable ospf


# DNSR


disable dnsr

config dnsr primary nameserver 0.0.0.0

config dnsr secondary nameserver 0.0.0.0

disable dnsr cache

disable dnsr static


# DHCP_RELAY

disable dhcp_relay
config dhcp_relay hops 4 time 0
config dhcp_relay option_82 state disable
config dhcp_relay option_82 check disable
config dhcp_relay option_82 policy replace


# DHCP_SERVER

create dhcp pool Pool_1
config dhcp pool network_addr Pool_1 10.109.48.0/21
config dhcp pool netbios_node_type Pool_1 peer_to_peer
config dhcp pool default_router Pool_1 10.109.48.5 0.0.0.0 0.0.0.0
config dhcp pool lease Pool_1 0 12 0
create dhcp excluded_address begin_address 10.109.48.1 end_address 10.109.48.10
config dhcp ping_packets 2
config dhcp ping_timeout 500
enable dhcp_server


# VRRP


config vrrp ipif System authtype none

config vrrp ipif internet authtype none

config vrrp ipif in-tel-lud authtype none

disable vrrp


disable vrrp ping



#-------------------------------------------------------------------

# End of configuration file for DGS-3612G

#-------------------------------------------------------------------

====================================================




к портам 1 - 8 подключены свичи второго уровня des-3526, на каждом от 5 до 12 штук.

Общее число ip - адресов, наблюдаемых при раздаче по DHCP доходит до 350.
Реальное время получения адреса - 4-8 секунд. Всё прекрасно работает много дней.


Не меняя конфигурационного файла, заливаю прошивку - Build 2.50.B35 ,
сохраняю её и перезагружаю свич отключением из розетки.
Раздача адресов сильно сокращается - только несколько компьютеров получило ip-шники.
Дальше с этим свичем не игрался - вернул старую прошивку, перегрузился розеткой, всё заработало как прежде.


Делаю по другому.
Беру другой свич с уже залитой прошивкой Build 2.50.B35 но Hardware Version 1A1G ? -
и заливаю ту же конфигурацию.

Абоненты получают ip-шки, и видно что скорость выделения ip -адреса заметно выше чем при старой прошивке Build 2.50.B15. (пробую сам много раз)
Но по мере роста числа подключающихся, время выделения ip - растёт. На числе подключившихся абонентов около 45 -
выделение адресов прекрашается. (Винда кричит - подключение ограничено или отсутствует).
Смотрю журнал свича - всё чисто,режим не менялся, утилизация процессора ~ 10 % ,нагрузка на порты до 8 %, сеть работает , а ip-шники не раздаются.
Вытягиваю шнурок из 12 го порта (туда бегут все пакеты), и через несколько секунд получаю ip-шку. Перепроверяюсь несколько раз - ip-шки раздаются.
Вставляю шнурок назад - опять не раздаются.
Вынимаю шнурки из трёх портов, идущих на внутренние свичи. Опять ip-шки раздаются. Вставляю два шнурка - не раздаются.
Проверяю журнал, слежу за утилизацией процессора и портов - всё чисто.
Похоже что в этой прошивке алгоритм вадачи ip - адреса перестаёт работать при незначительной нагрузке на свич.

Пришлите, пожалуйста, мне на rbigarov]a[dlink].[ru отдельным файлом конфигурационный файл, топологию сети с указанными портами подключения и описание проблемы, я займусь её решением.

_________________
С уважением,
Бигаров Руслан.