4.7. Configuring VRRP with CLI
This section provides information to configure VRRP using the command line interface.
4.8. VRRP Configuration Overview
Configuring VRRP policies and instances on service interfaces is optional. The basic owner and non-owner VRRP configurations on an IES or VPRN service interface must specify the backup ip-address parameter.
VRRP helps eliminate the single point of failure in a routed environment by using virtual router IP addresses shared between two or more routers connecting the common domain. VRRP provides dynamic failover of the forwarding responsibility to the backup router if the master becomes unavailable.
The VRRP implementation allows one master per IP subnet. All other VRRP instances in the same domain must be in backup mode.
4.8.1. Preconfiguration Requirements
VRRP policies:
- VRRP policies must be configured before they can be applied to an IES or VPRN VRRP instance. VRRP policies are configured in the config>vrrp context.
Configuring VRRP on an IES or VPRN service interface:
- the service customer account must be created prior to configuring an IES or VPRN VRRP instance
- the interface address must be specified in both the owner and non-owner IES or VPRN instances
4.9. Basic VRRP Configurations
VRRP parameters are configured in the following contexts:
4.9.1. VRRP Policy
Configuring and applying VRRP policies is optional. There are no default VRRP policies. Each policy must be explicitly defined. A VRRP configuration must include the following:
- policy ID
- at least one of the following priority events:
- port down
- LAG port down
- host unreachable
- route unknown
The following example displays a configuration of an IES VRRP policy.
The following example displays a configuration of a VPRN VRRP policy.
4.9.2. VRRP IES or VPRN Service Parameters
VRRP parameters are configured within an IES or VPRN service with two contexts, owner or non-owner. The status is specified when the VRRP configuration is created. When configured as owner, the virtual router instance has the same real IP addresses as the virtual backup IP addresses. All other virtual router instances participating in this message domain must have the same VRID configured and cannot be configured as owner.
 | Note: VRRP service parameter configuration is the same for both VPRN and IES services. |
For IPv4 and IPv6, up to two VRRP instances (VRIDs) can be configured on an IES or VPRN service interface. IPv4 can backup up to eight addresses per VRRP instance (one primary and seven secondary). IPv6 can backup up to four addresses (one primary and three secondary.
VRRP parameters configured within an IES or VPRN service must include the following:
- VRID
- virtual backup IP addresses
The following example displays a configuration of IES service owner and non-owner VRRP configurations.
4.9.2.1. Configuring IES or VPRN VRRP for IPv6
The following output shows an IES VRRP for IPV6 configuration example.
4.10. Common Configuration Tasks
This section provides a brief overview of the tasks that must be performed to configure VRRP and lists the CLI commands.
VRRP parameters are defined under a service interface context. An IP address must be assigned to each IP interface. Only one primary IP address can be associated with an IP interface but several secondary IP addresses can be associated.
Owner and non-owner configurations must include the following parameters:
- all participating routers in a VRRP instance must be configured with the same VRID
- all participating non-owner routers can specify up to eight backup IP addresses (that is, the IP addresses that the master is representing). The owner configuration must include at least one backup IP address.
- for IPv6, one of the backup addresses configured must be the link-local address of the owner VRRP instance
Owner and non-owner configurations can also include the following optional commands:
- authentication-key (IPv4 only)
- MAC
- message-interval
In addition to the common parameters, the following non-owner commands can be configured:
- master-int-inherit
- priority
- bfd-enable
- initial delay
- policy
- ping-reply
- preempt
- telnet-reply
- ssh-reply (IPv4 only)
- shutdown
4.11. Configuring IES or VPRN VRRP Parameters
VRRP parameters can be configured on a service interface to provide virtual default router support that allows traffic to be routed without relying on a single router in case of failure. VRRP can be configured in the following ways:
4.11.1. Configuring VRRP on Subnets
If you have multiple subnets configured on an IES or VPRN service interface, you can configure VRRP on each subnet.
The following displays an IES interface configuration example:
4.11.2. Owner VRRP
The following displays an owner VRRP configuration example for an IPv4 service interface:
If a VRRP instance is created as owner, it cannot be changed to the non-owner state. The VRID must be deleted and then recreated without the owner keyword to remove IP address ownership.
4.11.3. Non-owner VRRP
The following displays a basic non-owner VRRP configuration example for an IPv4 service interface:
If a VRRP instance is created as non-owner, it cannot be changed to the owner state. The VRID must be deleted and then recreated with the owner keyword to invoke IP address ownership.
4.12. VRRP Management Tasks
This section discusses the following VRRP management tasks:
4.12.1. Deleting a VRRP Policy
Policies are only applied to non-owner VRRP instances. A VRRP policy cannot be deleted if it is applied to an IES or VPRN service. Each instance in which the policy is applied must be deleted. The following example displays a policy deletion.
The” Applied” column in the following example displays whether the VRRP policies are applied to an entity. The services using the VRRP policy can be viewed using the specific policy ID in the CLI command (for example, show>vrrp>policy 1).
4.12.2. Deleting VRRP on a Service
The VRID does not need to be shut down to remove the virtual router instance from a service.
The following example displays the commands to delete a VRRP instance in non-owner mode from an IES service: