CSS Config Synchronization

Unanswered Question
Feb 20th, 2007

Hi,

I have a similar question joerg.micheel already asked about Configuration Synchronization of CSS boxes.

My first box CSS-1 is already setup with the config as shown at the bottom (excluding Services, Rules),

and i have already reserved IPs for CSS-2 VLAN40 (Outside) 10.10.40.4 ; VLAN70 (Inside) 172.16.70.4 for VIP/ViF Redundancy.

initially i can manually configure CSS-2 with right IPs (VLAN40 - 10.10.40.4 and VLAN70 - 172.16.70.4) but when i will use the command Commit_vip_redundancy "local 10.10.40.3 remote 10.10.40.4 -a" on CSS-1

Will it copy the entire configuration (due to -a switch) including overriding VLAN70 IP-172.16.70.3

Because in the Sync command there is no option to specify the remote side Ip address for inside interface.

if that happens, i will end up having 172.16.70.4 as duplicate IP address on the inside network ??

and also how about other parameters such as final Hostname of CSS-2, Management IP address of CSS-2,

these parameters are expected to be unique on both boxes

Thanks,

Sanjeev

CSS-1 configuration :

APP

APP session 10.10.40.4

interface 1/1

bridge vlan 70

interface 1/2

bridge vlan 40

circuit VLAN40

ip address 10.10.40.3 255.255.255.0

ip virtual-router 1 priority 101 preempt

ip redundant-interface 1 10.10.40.2

ip redundant-vip 1 10.10.40.254

ip critical-service 1 upstream_downstream

circuit VLAN70

ip address 172.16.70.3 255.255.255.0

ip virtual-router 1 priority 101 preempt

ip redundant-interface 1 172.16.70.2

ip critical-service 1 upstream_downstream

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
bwilmoth Wed, 02/28/2007 - 07:15

The number of received ARP packets with a detected duplicate IP address. The duplicate IP address can be the local IP address, VIP, or virtual interface which can be viewed in the ICMP statistics.

spabbi100 Mon, 03/05/2007 - 13:36

I've now resolved this issue after getting second CSS Unit in-hand.

The Synchronization script actually copied all the configuration such as DQL, Owners, Content Rules, Services etc from Active Unit to Standby Unit. But The Interface IP addresses were left as it is, so The Script probably has built-in intelligence to not to override interface IP addresses - Which will result in Duplicate IP addresses.

Following was the output from the Script for Config Synchronization :

Digi-CSS-1# script play commit_vip_redundancy "local 10.10.40.3 remote 10.10.40.

4 -a"

Digi-CSS-1#

Checking available disk space on systems ...

Verifying app and redundancy configs ... \

Checking local and remote switch versions ...

Checking vip redundancy state.... -

Checking compatibility of systems......

Working |

Checking for SSL configuration ...-

Working -

Waiting for completion signal from remote switch .../

Verifying running-config copy success ...-

Commit successful!

Digi-CSS-1#

Actions

This Discussion