【Lab Objective】
Master the configuration of Layer3 redundancy with VRRP for gateways
【Lab Topology】
【Lab Steps】
1. This lab can be completed by using Layer3 switches or routers, if using routers, you should examine the IOS version to make sure that it supports HSRP protocol.
2. Configure PC1 and PC2 to simulate hosts, the configurations are as follows:
|
PC1(config)#no ip routing PC1(config)# PC1(config)#interface fastEthernet 0/0 PC1(config-if)#ip address 192.168.1.10 255.255.255.0 PC1(config-if)#no cdp enable PC1(config-if)#no shutdown PC1(config-if)#exit PC1(config)# PC1(config)#ip default-gateway 192.168.1.1 PC1(config)#exit |
|
PC2(config)#no ip routing PC2(config)# PC2(config)#interface fastEthernet 0/0 PC2(config-if)#ip address 192.168.1.20 255.255.255.0 PC2(config-if)#no cdp enable PC2(config-if)#no shutdown PC2(config-if)#exit PC2(config)# PC2(config)#ip default-gateway 192.168.1.2 PC2(config)#exit |
3. Use the ping command and the traceroute command on PC1 and PC2 to test whether the network can be reached.
|
PC1#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 48/60/72 ms PC1# PC1#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 192.168.1.1 12 msec * 96 msec PC1# |
|
PC2#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 72/293/1084 ms PC2# PC2#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 192.168.1.2 120 msec * 72 msec |
4. Set the interface FA0/0 on R1 DOWN
|
R1(config)#interface fastEthernet 0/0 R1(config-if)#shutdown R1(config-if)# |
5. Use the ping command and the traceroute command again on R1and R2 to test
|
C1#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: ….. Success rate is 0 percent (0/5) PC1# PC1#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 * * * 2 * * * 3 * * * ……… |
|
PC2#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 72/128/160 ms PC2# PC2#tr PC2#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 192.168.1.2 112 msec * 96 msec |
6. Although the two routers can reach the destination network, the redundant devices are not fully used by default, so, some users can’t access network when the network fails on a single-node.
7. In order to solve this problem, configure VRRP on R1 and R2, the configurations are as follows:
|
R1(config)#interface fastEthernet 0/0 R1(config-if)#vrrp 1 ip 192.168.1.1 R1(config-if)#vrrp 1 priority 200 R1(config-if)#vrrp 1 preempt R1(config-if)# R1(config-if)#vrrp 2 ip 192.168.1.2 R1(config-if)#vrrp 2 priority 100 R1(config-if)#vrrp 2 preempt R1(config-if)#exit R1(config)# |
|
R2(config)#interface fastEthernet 0/0 R2(config-if)#vrrp 1 ip 192.168.1.1 R2(config-if)#vrrp 1 priority 100 R2(config-if)#vrrp 1 preempt R2(config-if)# R2(config-if)#vrrp 2 ip 192.168.1.2 R2(config-if)#vrrp 2 priority 200 R2(config-if)#vrrp 2 preempt R2(config-if)#exit R2(config)#exit R2# |
8. Identify the IDs of different router groups by checking the summary information of VRRP groups of the two routers:
|
R1#show vrrp FastEthernet0/0 – Group 1 State is Master Virtual IP address is 192.168.1.1 Virtual MAC address is 0000.5e00.0101 Advertisement interval is 1.000 sec Preemption enabled Priority is 255 (cfgd 200) Master Router is 192.168.1.1 (local), priority is 255 Master Advertisement interval is 1.000 sec Master Down interval is 3.003 sec
FastEthernet0/0 – Group 2 State is Backup Virtual IP address is 192.168.1.2 Virtual MAC address is 0000.5e00.0102 Advertisement interval is 1.000 sec Preemption enabled Priority is 100 Master Router is 192.168.1.2, priority is 255 Master Advertisement interval is 1.000 sec Master Down interval is 3.609 sec (expires in 3.349 sec) |
|
R2#show vrrp FastEthernet0/0 – Group 1 State is Backup Virtual IP address is 192.168.1.1 Virtual MAC address is 0000.5e00.0101 Advertisement interval is 1.000 sec Preemption enabled Priority is 100 Master Router is 192.168.1.1, priority is 255 Master Advertisement interval is 1.000 sec Master Down interval is 3.609 sec (expires in 2.773 sec)
FastEthernet0/0 – Group 2 State is Master Virtual IP address is 192.168.1.2 Virtual MAC address is 0000.5e00.0102 Advertisement interval is 1.000 sec Preemption enabled Priority is 255 (cfgd 200) Master Router is 192.168.1.2 (local), priority is 255 Master Advertisement interval is 1.000 sec Master Down interval is 3.003 sec |
9. Set the interface Fa0/0 on R1 DOWN again, the two routers will display the following information:
|
R1(config)#interface fastEthernet 0/0 R1(config-if)#shutdown R1(config-if)# *Jul 8 21:49:59.131: %VRRP-6-STATECHANGE: Fa0/0 Grp 1 state Master -> Init *Jul 8 21:49:59.135: %VRRP-6-STATECHANGE: Fa0/0 Grp 2 state Backup -> Init |
|
R2# *Jul 8 21:50:03.191: %VRRP-6-STATECHANGE: Fa0/0 Grp 1 state Backup -> Master |
10. Use the ping command and the traceroute command on R1 and R2 to confirm
|
PC1#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 48/78/96 ms PC1# PC1#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 192.168.1.2 92 msec * 120 msec |
|
PC2#ping 10.1.1.1
Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 72/172/452 ms PC2# PC2#traceroute 10.1.1.1
Type escape sequence to abort. Tracing the route to 10.1.1.1
1 192.168.1.2 132 msec * 168 msec |
11. Because two different VRRP groups are enabled in the network, network redundancy can be guaranteed at large extent. It is recommended to use the extended PING command on R1 and R2 to send data packets to the destination network in order to best observe the working process of VRRP. Use the following commands on R1 and R2 to debug, the detailed steps will not be listed:
|
debug vrrp events debug vrrp packets |
12. End.
Hope to helpful for you!
