cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
345
Views
0
Helpful
3
Replies

HSRP problem

rregalia
Level 1
Level 1

Just recently we had implemented the HSRP to our routers to support link redundancy to our production network. The diagram below explicates our network schema. We found out when HSRP was enabled on the CISCO 3640 router, we noticed that any outside HTTPS traffic is not accessible through the WebDirectors serverirons (Load balancers). The HSRP works. It routes all traffic to the 3640. We can ping each system and we can also connect via HTTPS to all systems managed (behind) by the WebDirectors. As soon as we delete the HSRP on that router, things went back to normal.

I was wondering if there is a compatibility issue with HSRP between the CISCO 3640 router and the WebDirectors? Is there any special configuration parameters that we need to implement to the WebDirectors so that HSRP to work on our CISCO routers? Is there a possibilty that the Webdirectors might be seeing the wrong ARP cache for the HSRP VIP?

Network Scema:

Cloud------<3020>------<Webdirector (LB)>-------<Production systems>

I-----------<3640>------------------I

Here are the before/after HSRP router confs:

Before#

(3620 router)

interface Ethernet1/1

description Prod Network

ip address 10.117.192.1 255.255.255.192

ip policy route-map AHGATE

(3640 router)

interface Ethernet1/0

description Prod Network

ip address 10.117.192.3 255.255.255.192

no ip redirects

ip policy route-map AHGATE

shutdown

standby 192 ip 10.117.192.1

standby 192 priority 100

After#

3620: (Primary)

interface Ethernet1/1

description Prod Network

ip address 10.117.192.2 255.255.255.192

standby 192 priority 110

standby 192 preempt

standby 192 ip 10.117.192.1

3640: (Secondary)

interface Ethernet1/0

description Prod Network

ip address 10.117.192.3 255.255.255.192

standby 192 priority 100

standby 192 ip 10.117.192.1

Any help is greatly appreciated....

3 Replies 3

rguerra
Level 1
Level 1

If you think it is a MAC issue, you can use the STANDBY USE-BIA on both HSRP routers to use the real MAC of the interface instead of the virtual MAC which floats between the HSRP routers. Also, be careful of the priority of standby router. If you use a track command, the priority drops by 10 so the standby will never become active as both priority of the Active and Standby will be equal. Also, remember your default gateway is now the HSRP IP address so make sure there are no changes to be made on your serverirons

efrahim
Level 4
Level 4

What types of LB are you using and if there is a switch thru which all the devices are connected and if yes what type of switch.

The reason I was asking if u have the switch or Local director, you have to increase the hello failover timer to more than 30 sec, or you have to use the standby use-bia command.

Here is the URl for your ref.

http://www.cisco.com/warp/customer/473/62.shtml#stateflapping

hope this helps

The LB is a Webdirector Serveriron. This device is connected to a 2924XL along with the 3620 and 3640 routers

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco