Scribd
Upload
216 views29 pages

Week 06 - First Hop Redundancy Protocol (FHRP), VRRP, GLBP)

Uploaded by

Josh 14
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
216 views29 pages

Week 06 - First Hop Redundancy Protocol (FHRP), VRRP, GLBP)

Uploaded by

Josh 14
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 29

CIN 4113: Scalable Computer Network

Week 5: First Hop Redundancy Protocol (FHRP), VRRP,GLBP

12/9/22
2
Delivery Outline

• W1: CLO1 - Network Design


• W2: CLO1 - Scalable Networks
• W3: CLO2 – Advanced Spanning Tree
• W4: CLO2 – Multiple Spanning Tree Protocol
• W5: CLO2 – First Hop Redundancy Protocol (FHRP), VRRP,GLBP
• W6: CLO2 -FHRP Concepts
• W7: CLO3 – Multicast
• W8: CLO3 – Protocol Independent Multicast
• W9: CLO4 – Network Access Control (NAC)
• W10:CLO4 – VM Installation
• W11: CLO4 – Foundational Network Programmability Concepts
• W12: CLO4 – Data Models and Supporting Protocols
• W13: CLO5 – Cisco DevNet
• W14: CLO2 – Basic Python Components and Scripts
• W15: ALL - Solve Case Study
Week 5

CLO2
Implement Layer2/Layer3 redundancy and availability in a switched network.
Course Overview
5

Course Description

Manage a scalable and highly available enterprise network.


Configure switching, routing, and related topics along with
the technologies that support advanced network connectivity,
multicast operation and network automation. Describe the
methods of enabling network automation by using application
programming interfaces (API) and configuration management
tools. Implement and troubleshoot advanced network
technologies to support a scalable enterprise network
architecture
6
Course Learning Outcomes

• CLO1
Describe requirements for a highly scalable network architecture.
• CLO2
Implement Layer2/Layer3 redundancy and availability in a switched network.
• CLO3
Analyze the need for multicast operation in enterprise networks.
• CLO4
Evaluate various tools and methods used in enabling network automation.
7
Assessment Strategy

• Quiz-1: 10%
• Week 5 – Theory quiz, covering CLO’s: 1,2
• Quiz-2: 10%
• Week 9 – Theory quiz, covering CLO’s: 2, 3
• Practical Assessment: 25%
• Week 12 – Test on practical activities, covered in CLO’s: 2, 3
• Project: 25%
• Week 14 – Practical Group Project assessed through group report and
individual presentations, covering CLO’s: ALL
• Written Exam (FWA): 30%
• Week 16 – Individual Exam, covering CLO’s: ALL
8
Recommended Reading

• Textbook - Course is based on:


• ……………………………………………………………………………………………
………………………………………………………………………………….
• Course Notes
• Copies of lecture slides and labs along with other relevant information will be
available via Bb Learn
• Electronic resources
• A large number of resources exist on the Internet. These include book chapters,
academic papers, FAQs, online workshops, programs and other relevant
material from academic institutes around the world. The LRC also have
subscriptions to huge databases of online books and journals.
9

Objectives

• Upon completing this chapter the learner should be able to:

• Configuring HSRP, VRRP and GLBP using CiscoIOS commands.


First-Hop Redundancy
Protocol
• Network resiliency is a key component of network design.
• Network resiliency can be accomplished by adding redundant devices such as Layer 2
switches or Layer 3 routers into a topology.

© 2016 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
First-Hop Redundancy Protocol
Network Resiliency/First Hop Redundancy Protocols
The figure shows the concept of adding resiliency
to the network. In both scenarios:
• Two devices (172.16.1.2 and 172.16.1.3) can be
the PC’s gateway.
• There are two resilient Layer 2 links that connect
SW6 to a switch that can connect the PC to either
gateway.

First-hop redundancy protocols (FHRPs) solve the


problem of end devices configuring multiple
gateways. They do this by creating a virtual IP (VIP)
gateway that is shared between the Layer 3 devices.
The following are FHRPs:
• Hot Standby Router Protocol (HSRP)
• Virtual Router Redundancy Protocol (VRRP)
• Gateway Load Balancing Protocol (GLBP)
First-Hop Redundancy Protocol
Object Tracking
Object tracking offers a flexible and
customizable mechanism for linking with
FHRPs and other routing components.
Users can track specific objects in the
network and take necessary action when
any object’s state change affects the
network traffic.
To track routes in the routing table use
the command track object-number ip
route route/prefix-length reachability.
The status of object tracking can be
viewed with the command show track
[object-number].
First-Hop Redundancy Protocol
Tracking an Interface
To track an interface’s line protocol state
use the command track object-number
interface interface-id line-protocol.
The example shows R2 being configured
for tracking the Gi0/1 interface toward R3.
Shutting down R2’s Gi0/1 interface
changed the tracked object state on R1
and R2 to a down state.

Object tracking works with protocols such as


Hot Standby Router Protocol (HSRP), Virtual
Router Redundancy Protocol (VRRP), and
Gateway Load Balancing Protocol (GLBP).
They take action when the state of an object
changes.
First-Hop Redundancy Protocol
Hot Standby Router Protocol
Hot Standby Routing Protocol (HSRP) is a Cisco proprietary protocol. It provides routing
redundancy for hosts configured with a default gateway IP address.
• A minimum of two devices are required to enable HSRP:
• One device acts as the active device and takes care of forwarding the packets.
• The other acts as a standby that is ready to take over the role of active device in the event of a
failure.
• A virtual IP address is configured on each HSRP-enabled interface that belongs to the
same HSRP group. A virtual MAC address is also assigned for the group.
• The active router receives and routes the packets destined for the virtual MAC address of
the group.
• HSRP-enabled interfaces send and receive multicast UDP-based hello messages to
detect any failure and designate active and standby routers.
• When the HSRP active router fails, the HSRP standby router assumes control of the
virtual IP address and virtual MAC address of the group.
First-Hop Redundancy Protocol
HSRP Elections & Versions

• A HSRP election selects the router with the highest priority (default is 100).
• In the event of a tie in priority, the router with the highest IP address for the network
segment is preferred.
• HSRP does not support preemption by default. If a router with a lower priority becomes
active, it stays active regardless if the superior router comes back online.
• The transition of the HSRP active to the standby is transparent to all hosts on the segment
because the MAC address moves with the virtual IP address.
• HSRP has two versions, HSRPv1 and HSRPv2.
First-Hop Redundancy Protocol
Configuring HSRP Virtual IP Address

The following steps show how to configure an HSRP virtual IP (VIP) gateway instance:
Step 1. Define the HSRP instance by using the command standby instance-id ip vip-
address.
Step 2. (Optional) Configure HSRP router preemption with the command standby instance-
id preempt.
Step 3. (Optional) Configure the HSRP priority by using the command standby instance-id
priority priority. The priority is a value between 0 and 255.
Step 4. (Optional) Configure the HSRP MAC address with the command standby instance-
id mac-address mac-address.
Step 5. (Optional) Define the HSRP timers by using the command standby instance-id
timers {seconds | msec milliseconds}. HSRP can poll in intervals of 1 to 254 seconds or 15
to 999 milliseconds
Step 6. (Optional) Establish HSRP authentication by using the command standby instance-
id authentication {text-password | text text-password | md5 {key-chain key-chain | key-
string key-string}}.
First-Hop Redundancy Protocol
HSRP Configuration and State

Example 15-9 shows a basic HSRP


configuration for VLAN 10 on SW1 and SW2,
using the HSRP instance 10 and the VIP
gateway instance 172.16.10.1.

Example 15 -10 shows the summarized HSRP


status using the command show standby
[interface-id] [brief].

The show standby command gives more


details into the HSRP state. It includes the
number of state changes, time since last state
change, VIP addresses, timers, preemption,
priority and group name.
First-Hop Redundancy Protocol
HSRP Tracked Objects

HSRP provides the capability to link object


tracking to priority.

Example 15-12 shows the configuration of


SW2 where a tracked object is created
against VLAN 1’s interface line protocol,
increasing the HSRP priority to 110, and
linking HSRP to the tracked object so that
the priority decrements by 20 if interface
VLAN 1 goes down.

Example 15-13 shows that the HSRP group


on VLAN 10 on SW2 correlates the status of
the tracked object for the VLAN 1 interface.
First-Hop Redundancy Protocol
Verifying HSRP State With Tracked Objects

Example 15-14 verifies the


anticipated behavior by shutting
down the VLAN 1 interface on
SW2. The syslog messages
indicate that the object track
state changed immediately
after the interface was shut
down, and shortly thereafter,
the HSRP role changed to a
standby state.
First-Hop Redundancy Protocol
Virtual Router Redundancy Protocol

Virtual Router Redundancy Protocol (VRRP) is an industry standard protocol that operates
similarly to HSRP. However, the differences are as follows:
• The preferred active router controlling the VIP gateway is called the master router. All
other VRRP routers are known as backup routers.
• VRRP enables preemption by default.
• The MAC address of the VIP gateway uses the structure 0000.5e00.01xx, where xx
reflects the group ID in hex.
• VRRP uses the multicast address 224.0.0.18 for communication.

There are currently two versions of VRRP:


• VRRPv2: Supports IPv4
• VRRPv3: Supports IPv4 and IPv6
First-Hop Redundancy Protocol
Legacy VRRP Configuration

Early VRRP configurations supported only VRRPv2 and


was non-hierarchical in its configuration. The following are
steps used to configure older software versions with
VRRP:
Step 1. Define the VRRP instance by using the command
vrrp instance-id ip vip-address.
Step 2. (Optional) Define the VRRP priority by using the
command vrrp instance-id priority priority. The priority is
a value between 0 and 255.
Step 3. (Optional) Enable object tracking so that the
priority is decremented when the object is false by using
the command vrrp instance-id track object-id decrement
decrement-value.
Step 4. (Optional) Establish VRRP authentication by
using the command vrrp instance-id authentication {text-
password | text text-password | md5 {key-chain key-
chain | key-string key-string}}
First-Hop Redundancy Protocol
VRRP State
The command show vrrp [brief] provides an update on the VRRP group, along with
other relevant information for troubleshooting. Example 15-16 shows the brief iteration of
the command and 15-17 shows the detailed state of VRRP.
First-Hop Redundancy Protocol
Hierarchical VRRP Configuration
The newer version of IOS XE software provides configuration of VRRP in a multi-address format that
is hierarchical. The following are steps to configure hierarchical VRRP:
Step 1. Enable VRRPv3 on the router by using the command
fhrp version vrrp v3.
Step 2. Define the VRRP instance by using the command
vrrp instance-id address-family {ipv4 | ipv6}.
Step 3. (Optional) Change VRRP to Version 2 by using the
command vrrpv2. VRRPv2 and VRRPv3 are not compatible.
Step 4. Define the gateway VIP by using the command
address ip-address.
Step 5. (Optional) Define the VRRP priority by using the
command priority priority.
Step 6. (Optional) Enable object tracking so that the priority is
decremented when the object is false using the command
track object-id decrement decrement-value.
The status of the VRRP routers can be viewed with the command show vrrp [brief]. The output is identical to that
of the legacy VRRP configuration.
First-Hop Redundancy Protocol
Global Load Balancing Protocol
Global Load Balancing Protocol (GLBP) provides gateway redundancy and load-balancing
capability to a network segment. It does this with an active/standby gateway and ensures that
each member of the GLBP group forwards traffic to the appropriate gateway.
The GLBP has two roles:
• Active virtual gateway (AVG): The participating routers elect one AVG per GLBP group to
respond to initial ARP requests for the VIP.
• Active virtual forwarder (AVF): The AVF routes traffic received from assigned hosts. A unique
virtual MAC address is created and assigned by the AVG to the AVFs. The AVF is assigned to a
host when the AVG replies to the ARP request with the assigned AVF’s virtual MAC address.
The AVFs are also recognized as Fwd instances on the routers.
GLBP supports four active AVFs and one AVG per GLBP group. A router can be an AVG and an
AVF at the same time. In the event of a failure of the AVG, the AVG role is transferred to a standby
AVG device. In the event of a failure of an AVF, another router takes over the forwarding
responsibilities for that AVF, which includes the virtual MAC address for that instance.
First-Hop Redundancy Protocol
GLBP Configuration
The following steps detail how to configure a GLBP:
Step 1. Define the GLBP instance by using the
command glbp instance-id ip vip-address.
Step 2. (Optional) Configure GLBP preemption with
the command glbp instance-id preempt.
Step 3. (Optional) Define the GLBP priority by using
the command glbp instance-id priority priority. The
priority is a value between 0 and 255.
Step 4. (Optional) Define the GLBP timers by using
the command glbp instance-id timers {hello-seconds |
msec hello-milliseconds} {hold-seconds | msec hold-
milliseconds}.
Step 5. (Optional) Establish GLBP authentication by
using the command glbp instance-id authentication
{text text-password | md5 {key-chain key-chain | key-
string key-string}}.
First-Hop Redundancy Protocol
GLBP Status
The command show glbp brief shows high-level
details of the GLBP group, including the interface,
group, active AVG, standby AVG, and statuses of the
AVFs.
The command show glbp displays additional
information, including the timers, preemption settings,
and statuses for the AVG and AVFs for the GLBP
group.
First-Hop Redundancy Protocol
GLBP Load Balancing
GLBP supports three methods of load balancing traffic:
• Round robin - Uses each virtual forwarder MAC address to sequentially reply for the
virtual IP address. GLBP uses round robin as the default load-balancing method.
• Weighted - Defines weights to each device in the GLBP group to define the ratio of load
balancing between the devices. This allows for a larger weight to be assigned to bigger
routers that can handle more traffic.
• Host dependent - Uses the host MAC address to decide to which virtual forwarder MAC to
redirect the packet. This method ensures that the host uses the same virtual MAC address
as long as the number of virtual forwarders does not change within the group.
The load-balancing method can be changed with the command glbp instance-id load-
balancing {host-dependent | round-robin | weighted}. The weighted load-balancing
method has the AVG direct traffic to the AVFs based on the percentage of weight a router has
over the total weight of all GLBP routers. The weight can be set for a router with the command
glbp instance-id weighting weight.
First-Hop Redundancy Protocol
Verifying GLBP Weighted Load Balancing

The example shows that the load-


balancing method has been changed to
weighted and that the appropriate weight
has been set for each AVF.
Thank You

800 MyHCT (800 69428) www.hct.ac.ae

You might also like