Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1392
Views
0
Helpful
3
Replies

HSRP TTL values

l.byford
Level 1
Level 1

‎03-14-2002 02:34 AM - last edited on ‎03-25-2019 02:38 PM by Community Manager

I am trying to verify the TTL info and understand why a 224.0.0.2 - "All Routers on local subnet" multicast ( the HSRP packets ) have a TTL of 2, seems weird to me as they shouldn't be capable of being 'routed' off the local subnet, please correct me. I have created a HSRP pair using 2 of our 2620's in our test rig and also see a TTL of 2, so expect that thats how it works.

Is this correct ?

The issue is currently in the hands of Netscreen as their 208 firewall (new model that problem seem particular to) appears to be taking in the hsrp packet, changing the source MAC to its own and dest MAC to that of the cisco virtual MAC and then pushing the packet back out of the same interface, again seems very wrong to me... The result of which is that the cisco 7200's cry foul and log a duplicate IP message as the packet source IP is still the same as when the cisco originally sent the packet out.

Anyone ever come across anything similar?

Labels:
0 Helpful
3 Replies 3

nuno.morais
Level 1
Level 1

‎03-14-2002 04:11 AM

Hi.

I've never looked at HSRP packets TTL values, but I think routers set TTL to 2 in order to avoid that upon receiving they have to send a ICMP TTL exceeded message, which might happen if TTL was set to 1. If a router receives an IP packet with TTL=1, it will decrement the TTL field which result TTL=0, which normally causes the router to send an ICMP TTL exceeded message to the source of the packet.

I'm not sure about this, but anyway...

Rgds.

Nuno Morais

0 Helpful

l.byford
Level 1
Level 1
In response to nuno.morais

‎03-14-2002 04:52 AM

Yes,youre not the only one. I see what you mean about TTL=1, but the RFC (2281) seems to state that HSRP will use a TTL of 1.

All very strange. I suspect this is an issue for Netscreen, but we will see.

lee.

0 Helpful

Gilles Dufour
Cisco Employee
Cisco Employee

‎03-15-2002 10:31 AM

I checked the code and we are effectively using a TTL = 2.

The reason is that we use our internal default TTL.

In other words, this value is also used for Rip update. And the reason it's 2 and not 1 is for compatibility reason with some old (other vendor) devices (talking about rip).

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents