1. Home
  2. Cisco Systems
  3. VRRP : I am unable to ping the virtual address, I can only ping the backup addresses.

VRRP : I am unable to ping the virtual address, I can only ping the backup addresses.

I have two vlans and two VRRPs on a layer2/3 switch.

Switch 1 | Switch 2

---------------------------------------------------------------------|---------------------------------------------------------------------- Master VRRP 1 IP Backup

vlan 11 ] 10.199.9.32 --------| 10.199.9.50 | ----------------|

10.199.9.50 |------10.199.9.33 [ Vlan 21

Master VRRP 2 IP

vlan 12 ] 10.199.77.32 --------| 10.199.77.50 |--------------|

10.199.77.50|-----10.199.77.33 [ Vlan 22

---------------------------------------------------------------------|----------------------------------------------------------------------

I can consistently ping only the back up vlan ip ( 10.199.9.33 or

10.199.77.33 ) But I can never ping the virtual IPs ( 10.199.9.50 or 10.199.77.50) and the IPs of the master ( 10.199.9.32/10.199.77.32)

All interfaces and VRRP interconnects are untagged mode. Am i missing something ?

Thanks a lot Arvind

Reply to
ATM
Loading thread data ...

=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0|

-------------------------------------------------------------------

=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 VRRP 1

=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0VRRP 2 IP

-------------------------------------------------------------------

I can't speak to this directly, but here is a related link.

formatting link
a control-F for 'through' and you'll see some posts about pings failing to group IP after failover.

I would recommend doing some show arps and show cam/macs on the network gear to see exactly what is going on.

Reply to
Trendkill

VRRP standard explicitly says the software should do wierd things for the "master" IP address which dont apply to backup, so you may be stumbling over this.

the issue was about the owner MAC address and ping responses (only a master will reply, which was something about knowing when backup is active) - sounds like the opposite of what you are getting.

it was much easier for diags if each physical interface has its own address and the VRRP floating address(es) are separate (and your NMS may prefer this as well for consistent polling).

1 way around this on other systems (Bay / Nortel routers) was to use 2 different backup priorities and not configure a master at all.

note from someone setting it up, who seems to have had similar issues.

formatting link

Reply to
Stephen

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.