This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

VRRP preempt

VRRP preempt

Nitish_Gupta
New Contributor

‎09-28-2016 02:23 PM

We are having two extreme switches which are having a vrrp running,

I have a pair of firewall which is connected to these switches, and they are running in the master-back up scenario, these firewalls are tracking IP of the VRRP on the extreme switches.

I had rebooted one of the switch, and when it was rebooted Sw2 takes over the VRRP mastership, which is fine and Firewall2 becames master.

When Sw1 came back up vrrp switches back to the Sw1 from Sw2. I am using DONT Preempt keyword. Still that switchover on vrrp happens, because of which my Firewall1 again becames master.

Since i am using DONT PREEMPT keywork in the vrrp configuration Sw1 should not became master, below is config for vlan and vrrp.

Sw1 #

# Module vrrp configuration.
#
create vrrp vlan INT vrid 1
configure vrrp vlan INT vrid 1 priority 110
configure vrrp vlan INT vrid 1 version v2
configure vrrp vlan INT vrid 1 dont-preempt
configure vrrp vlan INT vrid 1 add 10.2.1.1
enable vrrp vlan INT vrid 1
Sw1 #

SW2 #

# Module vrrp configuration.
#
create vrrp vlan INT vrid 1
configure vrrp vlan INT vrid 1 version v2
configure vrrp vlan INT vrid 1 dont-preempt
configure vrrp vlan INT vrid 1 add 10.2.1.1
enable vrrp vlan INT vrid 1
SW2 #

Using extreme Switch version ExtremeXOS version 15.6.4.2

0 Kudos
8 REPLIES 8

Nitish_Gupta
New Contributor

‎09-28-2016 06:47 PM

Hi, Below is configuration.

Sw1.1 # sh configuration "vrrp"
#
# Module vrrp configuration.
#
create vrrp vlan INT vrid 1
configure vrrp vlan INT vrid 1 priority 110
configure vrrp vlan INT vrid 1 version v2
configure vrrp vlan INT vrid 1 dont-preempt
configure vrrp vlan INT vrid 1 add 10.2.1.188
enable vrrp vlan INT vrid 1
Sw1.2 #

Sw1.2 # sh vlan "INT"
VLAN Interface with name INT created by user
Admin State: Enabled Tagging: 802.1Q Tag 610
Description: None
Virtual router: VR-Default
IPv4 Forwarding: Enabled
IPv4 MC Forwarding: Disabled
Primary IP: 10.2.1.186/29
IPv6 Forwarding: Disabled
IPv6 MC Forwarding: Disabled
IPv6: None
STPD: None
Protocol: Match all unfiltered protocols
Loopback: Disabled
NetLogin: Disabled
OpenFlow: Disabled
TRILL: Disabled
QosProfile: None configured
Egress Rate Limit Designated Port: None configured
Flood Rate Limit QosProfile: None configured
Ports: 2. (Number of active ports=2)
Tag: *1:25g, *1:1g
Flags: (*) Active, (!) Disabled, (g) Load Sharing port
(b) Port blocked on the vlan, (m) Mac-Based port
(a) Egress traffic allowed for NetLogin
(u) Egress traffic unallowed for NetLogin
(t) Translate VLAN tag for Private-VLAN
(s) Private-VLAN System Port, (L) Loopback port
(x) VMAN Tag Translated port
(G) Multi-switch LAG Group port
(H) Dynamically added by MVRP
(D) TRILL Designated, (A) TRILL Appointed Forwarder
(I) Dynamically added by IDM
(U) Dynamically added uplink port
(V) Dynamically added by VM Tracking

Sw1.3 #

Sw1.3 # sh vrrp
Virtual Master
VLAN Name VRID Pri IP Address State MAC Address TP/TR/TV/P/T
INT(En) 0001 110 10.2.1.188 MSTR 00:00:5e:00:01:01 0 0 0 N 1

En-Enabled, Ds-Disabled, Pri-Priority, T-Advert Timer, P-Preempt
TP-Tracked Pings, TR-Tracked Routes, TV-Tracked VLANs
Sw1.4 #

##########################################################################################################

SW2.1 # sh vrrp
Virtual Master
VLAN Name VRID Pri IP Address State MAC Address TP/TR/TV/P/T
INT(En) 0001 100 10.2.1.188 BKUP 00:00:5e:00:01:01 0 0 0 N 1

En-Enabled, Ds-Disabled, Pri-Priority, T-Advert Timer, P-Preempt
TP-Tracked Pings, TR-Tracked Routes, TV-Tracked VLANs
SW2.2 # sh configuration "vrrp"
#
# Module vrrp configuration.
#
create vrrp vlan INT vrid 1
configure vrrp vlan INT vrid 1 version v2
configure vrrp vlan INT vrid 1 dont-preempt
configure vrrp vlan INT vrid 1 add 10.2.1.188
enable vrrp vlan INT vrid 1
SW2.3 # sh vlan "INT"
VLAN Interface with name INT created by user
Admin State: Enabled Tagging: 802.1Q Tag 610
Description: None
Virtual router: VR-Default
IPv4 Forwarding: Enabled
IPv4 MC Forwarding: Disabled
Primary IP: 10.2.1.187/29
IPv6 Forwarding: Disabled
IPv6 MC Forwarding: Disabled
IPv6: None
STPD: None
Protocol: Match all unfiltered protocols
Loopback: Disabled
NetLogin: Disabled
OpenFlow: Disabled
TRILL: Disabled
QosProfile: None configured
Egress Rate Limit Designated Port: None configured
Flood Rate Limit QosProfile: None configured
Ports: 2. (Number of active ports=2)
Tag: *1:1g, *1:25g
Flags: (*) Active, (!) Disabled, (g) Load Sharing port
(b) Port blocked on the vlan, (m) Mac-Based port
(a) Egress traffic allowed for NetLogin
(u) Egress traffic unallowed for NetLogin
(t) Translate VLAN tag for Private-VLAN
(s) Private-VLAN System Port, (L) Loopback port
(x) VMAN Tag Translated port
(G) Multi-switch LAG Group port
(H) Dynamically added by MVRP
(D) TRILL Designated, (A) TRILL Appointed Forwarder
(I) Dynamically added by IDM
(U) Dynamically added uplink port
(V) Dynamically added by VM Tracking

SW2.4 #

0 Kudos

Henrique
Extreme Employee

‎09-28-2016 06:35 PM

Could you please share the vrrp configuration and the "show vlan " related to this Vlan for both SW1 and SW2?

Also, please share the output for "show vrrp" for both switches.

Thanks.
0 Kudos

Nitish_Gupta
New Contributor

‎09-28-2016 04:30 PM

I just copied the wrong Ips, correct Ips are -

VRRP - 10.2.1.188

Sw1 Vlan IP - 10.2.1.186

Sw2 vlan IP - 10.2.1.187

Thanks for your revert.

0 Kudos

Henrique
Extreme Employee

‎09-28-2016 03:28 PM

Hello Nitish,

What's the vlan "INT" ip on both SW1 and SW2 switches? Are you using the VIP 10.2.1.1 also for the vlan ipaddress in SW1? If so, that's the reason.
0 Kudos
li.common.scroll-to.top
GTM-P2G8KFN