Click here to load reader

Passport 8600 Technical Configuration Guide for · PDF file6.1 VRRP NORMAL OPERATION CLI ... IP = 10.1.20.2/24 VRRP VIP = 10.1.20.1 ... Passport 8600 "A" Configuration: Command Comments

  • View
    223

  • Download
    5

Embed Size (px)

Text of Passport 8600 Technical Configuration Guide for · PDF file6.1 VRRP NORMAL OPERATION CLI ......

  • Passport 8600 Technical Configuration Guide

    for VRRP

  • PP8600 TCG VRRP Version 1.2 August 2003

    Copyright 2003 Nortel Networks All rights reserved. August 2003 The information in this document is subject to change without notice. The statements, configurations, technical data, and recommendations in this document are believed to be accurate and reliable, but are presented without express or implied warranty. Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel Networks Inc. The software described in this document is furnished under a license agreement and may be used only in accordance with the terms of that license. Trademarks Nortel Networks, the Nortel Networks logo, the Globemark, Unified Networks, and PASSPORT are trademarks of Nortel Networks. Adobe and Acrobat Reader are trademarks of Adobe Systems Incorporate.

    Nortel Networks External Distribution 1

  • PP8600 TCG VRRP Version 1.2 August 2003 Table of Contents

    1. INTRODUCTION ............................................................................................................................... 3 2. VRRP CONFIGURATION: NORMAL OPERATION................................................................... 4

    2.1 CONFIGURATION STEPS: ................................................................................................................ 4 2.2 VERIFICATION................................................................................................................................ 7 2.3 CONFIGURATION FILES .................................................................................................................. 8

    3. VRRP CONFIGURATION: WITH SPLIT-MLT............................................................................ 9 3.1 CONFIGURATION STEPS ................................................................................................................. 9 3.2 VERIFICATION.............................................................................................................................. 11 3.3 CONFIGURATION FILES ................................................................................................................ 11

    4. SOFTWARE BASELINE ................................................................................................................. 12 5. REFERENCE DOCUMENTATION:.............................................................................................. 12 6. ADDENDUM A.................................................................................................................................. 13

    6.1 VRRP NORMAL OPERATION CLI ................................................................................................ 13 6.2 VRRP WITH SPLIT-MLT CLI...................................................................................................... 14

    List of Figures: Figure 1: VRRP Normal Operation.................................................................................................. 4 Figure 2: VRRP with Split-MLT........................................................................................................ 9

    Nortel Networks External Distribution 2

  • PP8600 TCG VRRP Version 1.2 August 2003

    1. Introduction The Virtual Router Redundancy Protocol (VRRP) eliminates a single point of failure by providing multi-homed connectivity in a routed environment. VRRP uses an election process to select a Master that hosts will use as the default gateway. If the Master should fail, then the VRRP backup will take the place of the Master. In either case, the default gateway IP address and MAC will not change providing transparent operation. For load-balance applications using Split-MLT, the Passport 8600 can be configured for Master-Master so that both switches can responds to ARPs and forward traffic. The decision regarding who is going to be the VRRP Master for a particular VLAN is configured using the VRRP Priority setting. This is a number from 0-255 where the highest number wins. If two or more switches have the same priority, the highest IP address wins and becomes VRRP Master. The host is oblivious to the whole process. When a host sends traffic to a different subnet, it sends an ARP request for the MAC address of the default gateway. Here, the Passport 8600 VRRP Master will reply with its virtual MAC address. The benefit of using a virtual MAC address is that when the Master fails, the VRRP backup will use the same virtual MAC address. The virtual address does not have to be configured on the Passport 8600. It is automatically set for 00-00-5E-00-01- where VRID = 1-255. It is assigned when you configure VRRP to a port or vlan; i.e. config vlan 2 ip vrrp 199 address 10.1.20.1 where 199 is the VRID, hence, the VRRP MAC address will become 00-00-5E-00-01-199. In addition to supporting normal VRRP operations, the Passport 8600 supports fast advertisement providing faster VRRP failure detection. Fast advertisement is proprietary to Nortel Networks Passport 8600 supporting an advertising interval from 200 to 1000 ms with a default value of 200ms.

    Nortel Networks External Distribution 3

  • PP8600 TCG VRRP Version 1.2 August 2003

    2. VRRP Configuration: Normal Operation

    PP8600A

    PP8600B

    Location Y

    1/48

    1/48

    VLAN 2 IP = 10.1.20.2/24

    VRRP VIP = 10.1.20.1 vrrp priority = 100

    VLAN 2 IP = 10.1.20.3/24

    VRRP VIP = 10.1.20.1 vrrp priority = 200

    Location X

    1/47

    VLAN 3 IP = 10.1.21.3/24

    VRRP VIP = 10.1.20.1 vrrp priority = 100

    1/47

    VLAN 3 IP = 10.1.21.2/24

    VRRP VIP = 10.1.20.1 vrrp priority = 200

    Legend:

    Solid Line = VRRP Master Dashed Line = VRRP Backup

    Figure 1: VRRP Normal Operation

    In this configuration example, we wish to provide VRRP service for two edge host locations. It is always best to try to load balance the VRRP Master between the Passport 8600s. In this example, PP8600A will be the VRRP Master for Location Y while PP8600B will be the VRRP Master for Location X. In order to select the VRRP Master, the priority setting will be used. The higher priority wins and becomes the VRRP Master. Note that if you leave the priority the same, the higher IP address wins. Hence, it is very important to set the correct priority value. VRRP Fast Advertisement is also enabled to allow for fast fail-over detection.

    2.1 Configuration Steps: Passport 8600 "A" Configuration: Command Comments Step 1 Configuration for Access VLAN 2

    config vlan 2 create byport 1 This command creates VLAN = 2

    using Spanning Tree Group = 1. If using another STG group, create the new STG group first, then add port 1/48 to the new STG group.

    config vlan 2 ports add 1/48 This command adds the access port 1/48

    Nortel Networks External Distribution 4

  • PP8600 TCG VRRP Version 1.2 August 2003 config vlan 2 ip create 10.1.20.2/24 This command adds the IP address

    of 10.1.20.2/24 to VLAN 2 config vlan 2 ip ospf interface-type

    passive config vlan 2 ip ospf enable

    This command enables ospf and configures it as an passive interface

    config vlan 2 ip vrrp 1 address 10.1.20.1 config vlan 2 ip vrrp 1 fast-adv-enable enable config vlan 2 ip vrrp 1 enable

    These commands add the VRRP VIP address of 10.1.20.1 to VLAN 2 using VRID = 1. Note, the VRRP priority is not configured here; it is left at factory default of 100. We will set the priority on PP8600B to a higher value. Note, that fast advertisement is enabled. This is proprietary to Nortel to support an advertisement interval from 200 to 1000 ms with default of 200. If normal vrrp is required, disable fast advertisement.

    config ethernet 1/48 stg 1 stp disable Disables Spanning tree on port level.

    Step 2 Configuration for Access VLAN 3 config vlan 3 create byport 1 This command creates VLAN = 3

    using Spanning Tree Group = 1. If using another STG group, create the new STG group first, then add port 1/47 to the new STG group.

    config vlan 3 ports add 1/47 This command adds the access port 1/48

    config vlan 3 ip create 10.1.21.2/24 This command adds the IP address of 10.1.21.2/24 to VLAN 3

    config vlan 3 ip ospf interface-type passive config vlan 3 ip ospf enable

    This command enables ospf and configures it as an passive interface

    config vlan 3 ip vrrp 2 address 10.1.21.1 config vlan 3 ip vrrp 2 priority 200 config vlan 3 ip vrrp 2 fast-adv-enable enable config vlan 3 ip vrrp 2 enable

    These commands add the VRRP VIP address of 10.1.21.1 to VLAN 3. The VRRP priority is set to a value of 200 so that it should become the VRRP Master. Note, that fast advertisement is enabled. This is proprietary to Nortel to support an advertisement interval from 200 to 1000 ms with default of 200. If normal vrrp is required, disable fast advertisement.

    config ethernet 1/47 stg 1 stp disable Disables Spanning tree on port level.

    Nortel Networks External Distribution 5

  • PP8600 TCG VRRP Version 1.2 August 2003 Passport 8600 "B" Configuration: Command Comments Step 1 Configuration for Access VLAN 2

    config vlan 2 create byport 1 This command creates VLAN = 2

    using Spanning Tree Group = 1. If using another STG group, create the new STG group first, then add port 1/48 to the new STG group.

    config vlan 2 ports add 1/48 This command adds the access port 1/48

    config vlan 2 ip create 10.1.20.3/24 This com