cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
794
Views
0
Helpful
2
Replies

Does CSS have any Redundancy Tracking?

bradley.wong
Level 1
Level 1

I have 2 CSS 11500 switches. Each CSS has an interface connecting to "outside" routers and another connecting to "inside" where the web servers resided. Both interfaces are running VRRP. CSS1 is the master of two VLANs. CSS2 is the backup. If the "inside" interface failed in CSS1, only the "inside" interface of CSS2 become the Master. The "outside" interface of CSS1 is still the Master. From what I understand, VRRP is similar to HSRP. How do I make the CSS1's "outside" interface failover? In other words, I want CSS2 to be the Master of both interfaces if either interfaces of CSS1 failed.

Does CSS have standby track like Cisco router?

Here is sample config of CSS1 and CSS2

CSS1:

circuit VLAN261

ip address 170.116.16.3 255.255.255.0 <- outside

ip virtual-router 61 priority 110 preempt

ip redundant-interface 61 170.116.16.1

ip redundant-vip 61 170.116.16.21

ip redundant-vip 61 170.116.16.22

circuit VLAN265

ip address 10.45.176.3 255.255.254.0 <- inside

ip virtual-router 65 priority 110 preempt

ip redundant-interface 65 10.45.176.1

CSS2:

circuit VLAN261

ip address 170.116.16.4 255.255.255.0 <- outside

ip virtual-router 61 priority 90 preempt

ip redundant-interface 61 170.116.16.1

ip redundant-vip 61 170.116.16.21

ip redundant-vip 61 170.116.16.22

circuit VLAN265

ip address 10.45.176.4 255.255.254.0 <- inside

ip virtual-router 65 priority 90 preempt

ip redundant-interface 65 10.45.176.1

Thanks.

Brad

bradleywong@yahoo.com

2 Replies 2

bradleywong
Level 1
Level 1

After digging through Cisco website, it can be done using ip critical service and type redundancy-up. Here is the link:

http://www.cisco.com/univercd/cc/td/doc/product/webscale/css/advcfggd/vipredun.htm#29885

kwon47
Level 1
Level 1

Since you set up redundant VIPs, the box should fail those VIPs to the other box if it loses communication to the services.

You should also track the upstream connections. Do this by specifying your upstream router or firewall as a service and using the "type redundancy-up" command. Then use the "ip critical service" command under your virtual router section to specify the upstream device.

Tony

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: