Ccnpv7.1 Switch Lab6-2 Hsrpv6 Student
Ccnpv7.1 Switch Lab6-2 Hsrpv6 Student
Ccnpv7.1 Switch Lab6-2 Hsrpv6 Student
1 SWITCH
Objective
Configure inter-VLAN routing with HSRP for IPV6 to provide redundant, fault-tolerant routing to the
internal network.
Configure HSRP object tracking
Adjust HSRP times for optimization.
Background
Hot Standby Router Protocol (HSRP) version 2 is a Cisco-proprietary redundancy protocol for establishing a
fault-tolerant default gateway. It is described in RFC 2281. HSRP provides a transparent failover mechanism
to the end stations on the network. This provides users at the access layer with uninterrupted service to the
network if the primary gateway becomes inaccessible. The Virtual Router Redundancy Protocol (VRRP) is a
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
standards-based alternative to HSRP and is defined in RFC 3768. The two technologies are similar but not
compatible. This lab focuses on HSRP.
Note: This lab uses Cisco ISR G2 routers running Cisco IOS 15.4(3) images with IP Base and Security
packages enabled, and Cisco Catalyst 3560 and 2960 switches running Cisco IOS 15.0(2) IP Services and
LAN Base images, respectively. The switches have Fast Ethernet interfaces, so the routing metrics for all
Ethernet links in the labs are calculated based on 100 Mb/s, although the routers have Gigabit Ethernet
interfaces. The 3560 and 2960 switches are configured with the SDM templates “dual-ipv4-and-ipv6 routing”
and “lanbase-routing”, respectively. Depending on the router or switch model and Cisco IOS Software
version, the commands available and output produced might vary from what is shown in this lab. Catalyst
3650 switches (running any Cisco IOS XE release) and Catalyst 2960-Plus switches (running any Cisco IOS
image) can be used in place of the Catalyst 3560 switches and the Catalyst 2960 switches.
Note(2): This lab's topology is based on the NETLAB Multi-Purpose Academy Pod (MAP). If your classroom
is using the standard Cuatro Switch Pod, the PC names may be different than displayed here. Consult with
your instructor.
Required Resources
1 switches (Cisco 2960 with the Cisco IOS Release 15.0(2)SE6 C2960-LANBASEK9-M image or
comparable)
2 switches (Cisco 3560 with the Cisco IOS Release 15.0(2)SE6 C3560-IPSERVICESK9-M image or
comparable)
Ethernet and console cables
1 PC
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 2 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
The interface VLAN 99 will not come up immediately, because the layer 2 instance of the vlan has not yet
been defined. This issue will be remedied in subsequent steps.
(Optional) On each switch, create an enable secret password and configure the VTY lines to allow remote
access from other network devices.
DLS1 example:
DLS1(config)# enable secret class
DLS1(config)# line vty 0 15
DLS1(config-line)# password cisco
DLS1(config-line)# login
Note: The passwords configured here are required for NETLAB compatibility only and are NOT
recommended for use in a live environment.
Note(2): For purely lab environment purposes, it is possible to configure the VTY lines so that they accept
any Telnet connection immediately, without asking for a password, and place the user into the privileged
EXEC mode directly. The configuration would be similar to the following example for DLS1:
DLS1(config)# enable secret class
DLS1(config)# line vty 0 15
DLS1(config-line)# no login
DLS1(config-line)# privilege level 15
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 3 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
a. Configure trunks and EtherChannels from DLS1, DLS2, and ALS1 according to the diagram. Use PaGP
as the negotiation protocol for EtherChannel configurations. **Refer to diagram for port channel numbers.
b. Verify trunking and EtherChannel configurations between all switches with the appropriate trunking and
EtherChannel verification commands.
Step 4: Configure VTP on all switches according to the VTP information on the diagram.
a. A sample configuration is provided for you.
DLS2(config)# vtp mode server
Setting device to VTP Server mode for VLANS
NOTE: Switches default to vtp mode server. However, remember the base configuration modifies this setting
to vtp mode transparent.
DLS1(config)# vlan 99
DLS1(config-vlan)# name Management
DLS1(config-vlan)# vlan 100
DLS1(config-vlan)# name Servers
DLS1(config-vlan)# vlan 110
DLS1(config-vlan)# name Guest
DLS1(config-vlan)# vlan 120
DLS1(config-vlan)# name office
DLS1(config-vlan)# vlan 200
DLS1(config-vlan)# name Voice
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 4 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
Step 6: Configure HSRPv6 interfaces and enable IPV6 routing with EIGRP.
HSRP provides redundancy in the network. Traffic can be load-balanced by using the standby group
priority priority command. The ipv6 unicast-routing command is used on DLS1 and DLS2 to
activate ipv6 routing capabilities on these Layer 3 switches.
Each route processor can route between the various SVIs configured on its switch. In addition to the real IP
address assigned to each distribution switch SVI, assign a third IP address in each subnet to be used as a
virtual gateway address. HSRP negotiates and determines which switch accepts information forwarded to the
virtual gateway IP address.
The standby command configures the IP address of the virtual gateway, sets the priority for each VLAN, and
configures the router for preemption. Preemption allows the router with the higher priority to become the
active router after a network failure has been resolved. HSRP version 2 must be implemented for support of
IPv6. This is accomplised by using the standby version 2 command on every interface required.
The standby x ipv6 autoconfig command, where x is the assigned HSRP group number, is used to
assign the group an automatically generated virtual ipv6 address.
DLS1 is configured to be the active router for VLANs 99, 110, and 120 with a configured priority of 110, and
the standby router for VLANs 100 and 200 with the default priority of 100.
DLS2 is configured to be the active router for VLANs 100 and 200 with a configured priority of 110, and the
standby router for VLANs 99, 110, and 120 with a default priority of 100.
Note: It is recommended that the HSRP group number be mapped to VLAN number.
DLS1(config)# ipv6 unicast-routing
DLS1(config)# ipv6 router eigrp 1
DLS1(config-router)# no shutdown
DLS1(config-router)# router-id 1.1.1.1
DLS1(config-router)# exit
DLS1(config)# interface FastEthernet0/5
DLS1(config-if)# no switchport
DLS1(config-if)# ipv6 address FE80::D1 link-local
DLS1(config-if)# ipv6 address 2001:DB8:CAFE:20::D1/64
DLS1(config-if)# ipv6 eigrp 1
DLS1(config-if)# no shutdown
DLS1(config-if)# exit
DLS1(config)# interface vlan 99
DLS1(config-if)# standby version 2
DLS1(config-if)# standby 99 ipv6 autoconfig
DLS1(config-if)# standby 99 priority 110
DLS1(config-if)# standby 99 preempt
DLS1(config-if)# ipv6 eigrp 1
DLS1(config-if)# no shutdown
DLS1(config-if)# exit
DLS1(config)# interface vlan 100
DLS1(config-if)# ipv6 address 2001:DB8:CAFE:100::D1/64
DLS1(config-if)# ipv6 address FE80::D1 link-local
DLS1(config-if)# standby version 2
DLS1(config-if)# standby 100 ipv6 autoconfig
DLS1(config-if)# standby 100 preempt
DLS1(config-if)# ipv6 eigrp 1
DLS1(config-if)# no shutdown
DLS1(config-if)# exit
DLS1(config)# interface vlan 110
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 5 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 6 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 7 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
b. Issue the show standby brief command on both DLS1 and DLS2.
DLS1# sh stand bri
P indicates configured to preempt.
|
Interface Grp Pri P State Active Standby Virtual IP
Vl99 99 110 P Active local FE80::D2 FE80::5:73FF:FEA0:63
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 8 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
Referencing the above output, notice that the virtual IPv6 address for each HSRP group was
automatically generated using EUI-64 format and that the address is a link-local address. This happened
as a result of the standby x ipv6 autoconfig command being entered on the interface.
R1 11.11.11.11
R2 12.12.12.12
R3 3.3.3.3
e. Verify connectivity throughout the network. If for some reason you do not have full connectivity, stop and
troubleshoot routing before continuing with the next step in the lab.
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 9 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
NOTE: Repeat on DLS2 to track interface F0/5 for SVIs 100 and 200. Use a decrement value of 30.
Output omitted
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 10 of 11
CCNPv7.1 SWITCH: Lab 6-2, Hot Standby Router Protocol for IPv6
Output to the console at DLS1 should reflect DLS2 becoming the active router for VLANs 99, 110 and 120.
Step 4: Verify that DLS2 is acting as the backup default gateway for VLANs 99, 110 and 120.
DLS2 is now the active HSRP router for all VLANs and the standby router is DLS1.
DLS1# sh stand bri
P indicates configured to preempt.
|
Interface Grp Pri P State Active Standby Virtual IP
Vl99 99 80 P Standby FE80::D2 local FE80::5:73FF:FEA0:63
Vl100 100 100 P Standby FE80::D2 local FE80::5:73FF:FEA0:64
Vl110 110 80 P Standby FE80::D2 local FE80::5:73FF:FEA0:6E
Vl120 100 110 P Active local FE80::D2 FE80::5:73FF:FEA0:64
Vl200 100 100 P Standby FE80::D2 local FE80::5:73FF:FEA0:64
Repeat this process by bringing up the DLS1 interface connecting to R1. Shut down the DLS2 interface
connecting to R3. Use the show standby brief command to see the results.
Note: Since DLS1 and DLS2 have links to the Internet, failure of either switch will cause HSRP to redirect
packets to the other switch. The functioning switch will take over as the default gateway to provide virtually
uninterrupted connectivity for hosts at the access layer.
CHALLENGE: Optimize HSRPv6 by adjusting the hello and hold timers used in HSRP communication
with the hello time adjusted to 50 milliseconds and hold time adjusted to 250 milliseconds on all HSRP
groups.
© 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 11 of 11