7705 SAR R6.0 Configuration Note
Introduction:
VRRP specifies an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN. The VRRP router controlling the IP address(es) associated with a virtual router is called the Master, and forwards packets sent to these IP addresses. The election process provides dynamic fail over in the forwarding responsibility should the Master become unavailable. In a load balancing case, this allows any of the virtual router IP addresses on the LAN to be used as the default first hop router by end-hosts. The advantage gained from using VRRP is a higher availability default path without requiring configuration of dynamic routing or router discovery protocols on every end-host. (RFC 3768 – Virtual Router Redundancy Protocol).
This config note applies the VRRP concept to a VPRN service. The same concepts apply to an IES service.
Setup:
Figure 1: scenario 1 – VRRP owner mode for master
Figure 2: scenario 2 – VRRP non-owner mode for master
Prerequisites:
This Configuration Note assumes that following base configuration has been implemented on the PEs:
- Cards, MDAs and ports configured
- Interfaces configured
- IGP configured and converged
- MPLS configured
- SDPs configured between all PE routers
- iBGP peering amongst all PE routers
- VPRN service configured
Configure VRRP parameters
For both PE-1 and PE-3, enable VRRP on the VPRN interface that connects to the 192.168.1.0/24 subnet.
Two different scenarios:
VRRP owner mode for master (see Fig. 1)
To achieve default path redundancy and
load-balancing, two VRRP instances are created on the 192.168.1.0/24
subnet:
VRID = 10 Master (owner) = PE-1
Backup = PE-3
VRRP IP = 192.168.1.1
VRID = 30 Master (owner) =
PE-3
Backup = PE-1
VRRP IP = 192.168.1.3
Host 1 is configured with default gateway = 192.168.1.1
Host 2 is configured with default gateway = 192.168.1.3
Following RFC 3768, a VRRP router must not accept packets addressed to the IP addresses associated with the virtual router if it is not the IP address owner. The ALU implementation allows one to override this restriction for ping, telnet and ssh on a per VRRP instance basis.
*A:PE1# configure service vprn 20 interface "vrrp_vprn_PE1"
vrrp 10 owner
backup 192.168.1.1
exit
vrrp 30
backup 192.168.1.3
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
*A:PE3#configure service vprn 20 interface "vrrp_vprn_PE3"
vrrp 10
backup 192.168.1.1
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
vrrp 30 owner
backup 192.168.1.3
exit
VRRP non-owner mode for master (see Fig. 2)
To
achieve default path redundancy and load-balancing, two VRRP instances are
created on the 192.168.1.0/24 subnet:
VRID = 10 Master (non owner) = PE-1 (priority = 200)
Backup = PE-3 (priority = 100)
VRRP IP = 192.168.1.2
VRID =
30 Master (non owner) = PE-3 (priority = 200)
Backup = PE-1 (priority = 100)
VRRP IP = 192.168.1.4
Host 1 is configured with default gateway = 192.168.1.2
Host 2 is configured with default gateway = 192.168.1.4
Following RFC 3768, a VRRP router must not accept packets addressed to the IP addresses associated with the virtual router if it is not the IP address owner. The ALU implementation allows to override this restriction for ping, telnet and ssh on a per VRRP instance basis. (See optional config statements: ping-reply, telnet-reply and ssh-reply)
PE-1:
# configure service vprn 20 interface "vrrp_vprn_PE1"
vrrp 10
backup 192.168.1.2
priority 200
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
vrrp 30
backup 192.168.1.4
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
PE-3:
# configure service vprn 20 interface "vrrp_vprn_PE3"
vrrp 10
backup 192.168.1.2
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
vrrp 30
backup 192.168.1.4
priority 200
ping-reply # optional
telnet-reply # optional
ssh-reply # optional
exit
Verification:
VRRP owner mode for master (see Fig. 1)
Verify the initial VRRP state on PE-1 and PE-3.
PE1# show router 20 vrrp instance interface vrrp_vprn_PE1
===============================================================================
VRRP Instances for interface "vrrp_vprn_PE1"
===============================================================================
-------------------------------------------------------------------------------
VRID 10
-------------------------------------------------------------------------------
Owner : Yes VRRP State : Master
Primary IP of Master: 192.168.1.1 (Self)
Primary IP : 192.168.1.1
VRRP Backup Addr : 192.168.1.1
Admin State : Up Oper State : Up
Up Time : 03/03/2005 13:37:41 Virt MAC Addr : 00:00:5e:00:01:0a
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Base Priority : 255 In-Use Priority : 255
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.1 (Self)
Addr List Mismatch : No Master Priority : 255
Master Since : 03/03/2005 13:37:41
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/03/2005 13:37:41 No 0
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 66 Adv Received : 0
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
-------------------------------------------------------------------------------
VRID 30
-------------------------------------------------------------------------------
Owner : No VRRP State : Backup
Primary IP of Master: 192.168.1.3 (Other)
Primary IP : 192.168.1.1
VRRP Backup Addr : 192.168.1.3
Admin State : Up Oper State : Up
Up Time : 03/03/2005 13:37:59 Virt MAC Addr : 00:00:5e:00:01:1e
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 100 In-Use Priority : 100
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.3 (Other)
Addr List Mismatch : No Master Priority : 255
Master Since : 03/03/2005 14:02:22
Master Down Interval: 3.609 sec (Expires in 3.160 sec)
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/03/2005 13:38:02 No 0
192.168.1.3 03/03/2005 14:13:10 No 67
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 0 Adv Received : 67
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
==============================================================================================================================================================
PE3# show router 20 vrrp instance interface vrrp_vprn_PE3
===============================================================================
VRRP Instances for interface "vrrp_vprn_PE3"
===============================================================================
-------------------------------------------------------------------------------
VRID 10
-------------------------------------------------------------------------------
Owner : No VRRP State : Backup
Primary IP of Master: 192.168.1.1 (Other)
Primary IP : 192.168.1.3
VRRP Backup Addr : 192.168.1.1
Admin State : Up Oper State : Up
Up Time : 03/03/2005 14:01:50 Virt MAC Addr : 00:00:5e:00:01:0a
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 100 In-Use Priority : 100
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.1 (Other)
Addr List Mismatch : No Master Priority : 255
Master Since : 03/03/2005 14:01:51
Master Down Interval: 3.609 sec (Expires in 3.220 sec)
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/03/2005 14:12:38 No 64
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 0 Adv Received : 64
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
-------------------------------------------------------------------------------
VRID 30
-------------------------------------------------------------------------------
Owner : Yes VRRP State : Master
Primary IP of Master: 192.168.1.3 (Self)
Primary IP : 192.168.1.3
VRRP Backup Addr : 192.168.1.3
Admin State : Up Oper State : Up
Up Time : 03/03/2005 14:01:50 Virt MAC Addr : 00:00:5e:00:01:1e
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Base Priority : 255 In-Use Priority : 255
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.3 (Self)
Addr List Mismatch : No Master Priority : 255
Master Since : 03/03/2005 14:01:50
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/03/2005 14:01:51 No 0
192.168.1.3 03/03/2005 14:01:50 No 0
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 64 Adv Received : 0
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
===============================================================================
VRRP non-owner mode for master (see Fig. 2)
Verify the initial VRRP state on PE-1 and PE-3.
PE1# show router 20 vrrp instance interface vrrp_vprn_PE1
===============================================================================
VRRP Instances for interface "vrrp_vprn_PE1"
===============================================================================
-------------------------------------------------------------------------------
VRID 10
-------------------------------------------------------------------------------
Owner : No VRRP State : Master
Primary IP of Master: 192.168.1.1 (Self)
Primary IP : 192.168.1.1
VRRP Backup Addr : 192.168.1.2
Admin State : Up Oper State : Up
Up Time : 03/04/2005 15:09:05 Virt MAC Addr : 00:00:5e:00:01:0a
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 200 In-Use Priority : 200
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.1 (Self)
Addr List Mismatch : No Master Priority : 200
Master Since : 03/04/2005 15:09:08
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/04/2005 15:09:08 No 0
192.168.1.3 03/04/2005 15:08:51 No 0
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 10 Adv Received : 0
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
-------------------------------------------------------------------------------
VRID 30
-------------------------------------------------------------------------------
Owner : No VRRP State : Backup
Primary IP of Master: 192.168.1.3 (Other)
Primary IP : 192.168.1.1
VRRP Backup Addr : 192.168.1.4
Admin State : Up Oper State : Up
Up Time : 03/04/2005 15:09:05 Virt MAC Addr : 00:00:5e:00:01:1e
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 100 In-Use Priority : 100
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.3 (Other)
Addr List Mismatch : No Master Priority : 200
Master Since : 03/04/2005 15:09:10
Master Down Interval: 3.609 sec (Expires in 2.810 sec)
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/04/2005 15:09:06 No 0
192.168.1.3 03/04/2005 15:10:41 No 11
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 0 Adv Received : 11
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
===============================================================================
PE3# show router 20 vrrp instance interface vrrp_vprn_PE3
===============================================================================
VRRP Instances for interface "vrrp_vprn_PE3"
===============================================================================
-------------------------------------------------------------------------------
VRID 10
-------------------------------------------------------------------------------
Owner : No VRRP State : Backup
Primary IP of Master: 192.168.1.1 (Other)
Primary IP : 192.168.1.3
VRRP Backup Addr : 192.168.1.2
Admin State : Up Oper State : Up
Up Time : 03/04/2005 15:08:43 Virt MAC Addr : 00:00:5e:00:01:0a
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 100 In-Use Priority : 100
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.1 (Other)
Addr List Mismatch : No Master Priority : 200
Master Since : 03/04/2005 15:08:47
Master Down Interval: 3.609 sec (Expires in 3.240 sec)
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/04/2005 15:10:17 No 9
192.168.1.3 03/04/2005 15:08:47 No 0
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 0 Adv Received : 9
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
-------------------------------------------------------------------------------
VRID 30
-------------------------------------------------------------------------------
Owner : No VRRP State : Master
Primary IP of Master: 192.168.1.3 (Self)
Primary IP : 192.168.1.3
VRRP Backup Addr : 192.168.1.4
Admin State : Up Oper State : Up
Up Time : 03/04/2005 15:08:43 Virt MAC Addr : 00:00:5e:00:01:1e
Auth Type : None
Config Mesg Intvl : 1 In-Use Mesg Intvl : 1
Master Inherit Intvl: No
Base Priority : 200 In-Use Priority : 200
Policy ID : n/a Preempt Mode : Yes
Ping Reply : Yes Telnet Reply : Yes
SSH Reply : Yes
-------------------------------------------------------------------------------
Master Information
-------------------------------------------------------------------------------
Primary IP of Master: 192.168.1.3 (Self)
Addr List Mismatch : No Master Priority : 200
Master Since : 03/04/2005 15:08:46
-------------------------------------------------------------------------------
Masters Seen (Last 32)
-------------------------------------------------------------------------------
Primary IP of Master Last Seen Addr List Mismatch Msg Count
-------------------------------------------------------------------------------
192.168.1.1 03/04/2005 15:08:47 No 0
192.168.1.3 03/04/2005 15:08:46 No 0
-------------------------------------------------------------------------------
Statistics
-------------------------------------------------------------------------------
Become Master : 0 Master Changes : 0
Adv Sent : 9 Adv Received : 0
Pri Zero Pkts Sent : 0 Pri Zero Pkts Rcvd: 0
Preempt Events : 0 Preempted Events : 0
Mesg Intvl Discards : 0 Mesg Intvl Errors : 0
Addr List Discards : 0 Addr List Errors : 0
Auth Type Mismatch : 0 Auth Failures : 0
Invalid Auth Type : 0 Invalid Pkt Type : 0
IP TTL Errors : 0 Pkt Length Errors : 0
Total Discards : 0
===============================================================================