SlideShare uma empresa Scribd logo

First Hop Redundancy Protocols in IPv6 HSRP + GLBP

Transferir como DOCX, PDF
IT Tech
IT Tech

First hop redundancy protocols in i pv6 hsrp + glbp

Tecnologia
1 de 10
HTTP://WWW.ROUTER-SWITCH.COM/ First Hop Redundancy Protocols in IPv6: HSRP + GLBP Currently Cisco has support for Hot Standby Router Protocol (HSRP) and Gateway Load Balancing (GLBP) in IPv6. There is an RFC5798 for Virtual Router Redundancy Protocol (VRRP), but checking the DocCD for this up to IOS 15.2M&T in the IPv6 configuration guide, I did not see it. This post will only be covering HSRP and GLBP operations, but we need to cover some basic operations of IPv6 Neighbor Discovery (ND) before we get into FHRPs. By default, IPv6 will use Router Advertisement (RA) to announce the presence of a router on a segment and use the Default Router Preference (DRP) options inside ND to determine the default gateway used. IPv6 has a built in redundancy mechanism inside ND called Neighbor Unreachability Detection (NUD) using the Neighbor Solicitation (NS) and Neighbor Advertisement (NA) to detect the failure. Reading RFC 5798, the most aggressive timers will only achieve failover within 5 seconds, which would significantly increase the overhead of ND traffic in a real world network of say 254 hosts in most common IPv4 VLAN designs with a /24 subnet. There is a good post on packetlife.net that shows this down to about 1 second by adjusting the Router Advertisement (RA) lifetime and Router Advertisement interval for more detailed information. So now that we know that IPv6 uses ND and has a mechanism for detecting default routers and failover, why do we need FHRPs? Well this post is not here to debate the why of this, but to look at the how with some packet captures. But I would think that FHRPs are there for the same reason we have so many protocols that sort of overlap: we are always looking for a better mouse trap. And in limited testing, relying on ND for default router and failover does not scale to provide the predictable and reliable configurations that the FHRPs do. For example, I found no preempt capabilities for the default router election. I will also make a nod to IPv6 security and mention that NUD has no authentication mechanism. Authentication can be accomplished using Secure Neighbor Discovery (SeND), but is out of the scope of this post. Now back to FHRPs, let’s do what we do and mock up a very basic FHRP network on a LAN segment, and take a look at a few configuration parameters. We’ll start with HSRP, then GLBP, as well as some packet captures with Wireshark and discuss some of the differences between the IPv4 and IPv6 versions of each. The very basic FHRP network will use HOST1, R1, and R2 on the LAN for the FHRP and a WAN router with serial interfaces for tracking and failover scenarios. BASIC FHRP NETWORK DIAGRAM
HTTP://WWW.ROUTER-SWITCH.COM/ Hot Standby Router Protocol (HSRP) First step to configure HSRP for IPv6 is to enable HSRP version 2 to support IPv6: ‘standby version 2’. After that, the ‘standby’ commands are pretty much the same as with IPv4 – creating groups and adding tracking and preemption capabilities. After configuration of HSRP and the Active -> Standby negotiation is complete, the Active HSRP router will send the RAs, and the IPv6 hosts will use the new link local address that is auto configured with the command ‘standby 1 ipv6 autoconfig’. This can be seen on HOST1 in the output of the ‘show ipv6 int f0/0’. HOST1#sh ipv6 int f0/0 FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::233:33FF:FE33:3333 No Virtual link-local address(es): Global unicast address(es): 2001:DB8:1212::3, subnet is 2001:DB8:1212::/64 Joined group address(es): FF02::1 FF02::1:FF00:3 FF02::1:FF33:3333 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent
HTTP://WWW.ROUTER-SWITCH.COM/ ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds Default router is FE80::5:73FF:FEA0:1 on FastEthernet0/0 The R1 and R2 HSRP groups will communicate over multicast address FF02::66. R1#sh ipv6 int f0/0 | b Joined Joined group address(es): FF02::1 FF02::2 FF02::66 FF02::1:FF00:1 FF02::1:FF11:1111 R2#sh ipv6 int f0/0 | b Joined Joined group address(es): FF02::1 FF02::2 FF02::66 FF02::1:FF00:2 FF02::1:FF22:2222 HSRP INTERFACE ROUTER CONFIGURATIONS and SHOW COMMANDS R1#sh run int f0/0 interface FastEthernet0/0 mac-address 0011.1111.1111 ipv6 address 2001:DB8:1212::1/64 standby version 2 standby 1 ipv6 autoconfig standby 1 priority 200 standby 1 preempt standby 1 track Serial0/0 R2#sh run int f0/0 interface FastEthernet0/0 mac-address 0022.2222.2222 ipv6 address 2001:DB8:1212::2/64 standby version 2 standby 1 ipv6 autoconfig standby 1 preempt standby 1 track Serial0/1 R1#sh standby FastEthernet0/0 – Group 1 (version 2) State is Active 7 state changes, last state change 00:02:15 Virtual IP address is FE80::5:73FF:FEA0:1 Active virtual MAC address is 0005.73a0.0001
HTTP://WWW.ROUTER-SWITCH.COM/ Local virtual MAC address is 0005.73a0.0001 (v2 IPv6 default) Hello time 3 sec, hold time 10 sec Next hello sent in 2.432 secs Preemption enabled Active router is local Standby router is FE80::222:22FF:FE22:2222, priority 100 (expires in 7.388 sec) Priority 200 (configured 200) Track interface Serial0/0 state Up decrement 10 Group name is “hsrp-Fa0/0-1″ (default) R2#sh standby FastEthernet0/0 – Group 1 (version 2) State is Standby 7 state changes, last state change 00:02:27 Virtual IP address is FE80::5:73FF:FEA0:1 Active virtual MAC address is 0005.73a0.0001 Local virtual MAC address is 0005.73a0.0001 (v2 IPv6 default) Hello time 3 sec, hold time 10 sec Next hello sent in 2.008 secs Preemption enabled Active router is FE80::211:11FF:FE11:1111, priority 200 (expires in 8.060 sec) MAC address is 0011.1111.1111 Standby router is local Priority 100 (default 100) Track interface Serial0/1 state Up decrement 10 Group name is “hsrp-Fa0/0-1″ (default) HSRP SUMMARY IPv4  HSRPv1  UDP port 1985 224.0.0.2  MAC address 0000.0C07.ACxy, where xy is the HSRP group number in hexadecimal  HSRPv2  UDP port 1985 224.0.0.102  MAC address range 0000.0C9F.F000 to 0000.0C9F.FFFF IPv6  HSRPv2  UDP port 2029 FF02::66  MAC 0005.73A0.000 – 0005.73A0.0FFF (4096 addresses)  RAs sent from active HSRP router Wireshark screen captures and/or view online with CloudShark R1 HSRP Active
HTTP://WWW.ROUTER-SWITCH.COM/ R2 HSRP Standby (Passive)
HTTP://WWW.ROUTER-SWITCH.COM/ R1 HSRP RA to set Default Router on HOST1 Gateway Load Balancing (GLBP) GLBP only takes one command on the interface to put it into action: ‘glbp 1 ipv6 FE80::100′ . We will just stick with this basic configuration and use the defaults, as we are only intrested in seeing the protocol work – not tweak it for max performance. GLBP SHOW COMMAND R1#sh glbp FastEthernet0/0 – Group 1 State is Active 2 state changes, last state change 00:22:41 Virtual IP address is FE80::100 Hello time 3 sec, hold time 10 sec Next hello sent in 0.736 secs Redirect time 600 sec, forwarder timeout 14400 sec Preemption disabled Active is local Standby is FE80::222:22FF:FE22:2222, priority 100 (expires in 8.692 sec) Priority 100 (default) Weighting 100 (default 100), thresholds: lower 1, upper 100
HTTP://WWW.ROUTER-SWITCH.COM/ Load balancing: round-robin Group members: 0011.1111.1111 (FE80::211:11FF:FE11:1111) local 0022.2222.2222 (FE80::222:22FF:FE22:2222) There are 2 forwarders (1 active) Forwarder 1 State is Active 1 state change, last state change 00:22:31 MAC address is 0007.b400.0101 (default) Owner ID is 0011.1111.1111 Redirection enabled Preemption enabled, min delay 30 sec Active is local, weighting 100 Client selection count: 2 Forwarder 2 State is Listen MAC address is 0007.b400.0102 (learnt) Owner ID is 0022.2222.2222 Redirection enabled, 597.516 sec remaining (maximum 600 sec) Time to live: 14397.516 sec (maximum 14400 sec) Preemption enabled, min delay 30 sec Active is FE80::222:22FF:FE22:2222 (primary), weighting 100 (expires in 7.512 sec) Client selection count: 2 R2#sh glbp FastEthernet0/0 – Group 1 State is Standby 1 state change, last state change 00:23:17 Virtual IP address is FE80::100 Hello time 3 sec, hold time 10 sec Next hello sent in 0.652 secs Redirect time 600 sec, forwarder timeout 14400 sec Preemption disabled Active is FE80::211:11FF:FE11:1111, priority 100 (expires in 9.696 sec) Standby is local Priority 100 (default) Weighting 100 (default 100), thresholds: lower 1, upper 100 Load balancing: round-robin Group members: 0011.1111.1111 (FE80::211:11FF:FE11:1111) 0022.2222.2222 (FE80::222:22FF:FE22:2222) local There are 2 forwarders (1 active) Forwarder 1 State is Listen MAC address is 0007.b400.0101 (learnt)
HTTP://WWW.ROUTER-SWITCH.COM/ Owner ID is 0011.1111.1111 Time to live: 14399.688 sec (maximum 14400 sec) Preemption enabled, min delay 30 sec Active is FE80::211:11FF:FE11:1111 (primary), weighting 100 (expires in 8.960 sec) Forwarder 2 State is Active 1 state change, last state change 00:23:15 MAC address is 0007.b400.0102 (default) Owner ID is 0022.2222.2222 Preemption enabled, min delay 30 sec Active is local, weighting 100 Let’s take a look at GLBP in action, using the default load balancing of round-robin. Host1 will send 1 ping packet, at that point ND will occur for the default router of FE80::100 which was set as the GLBP virutal ipv6 address on the interface ‘glbp 1 ipv6 FE80::100′ . First packet will be sent with MAC of Forwarder 1 on R1 and the second packet, after we clear ipv6 neighbors’, will be sent with the MAC of Forwarder 2 on R2 because of the default load balancing configuration of round-robin. HOST1#sh ipv6 int f0/0 | i router Default router is FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors HOST1#ping 4444::4 r 1 Type escape sequence to abort. Sending 1, 100-byte ICMP Echos to 4444::4, timeout is 2 seconds: ! Success rate is 100 percent (1/1), round-trip min/avg/max = 92/92/92 ms HOST1# ICMPv6-ND: DELETE -> INCMP: FE80::100 ICMPv6-ND: Sending NS for FE80::100 on FastEthernet0/0 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Neighbour FE80::100 on FastEthernet0/0 : LLA 0007.b400.0101 ICMPv6-ND: INCMP -> REACH: FE80::100 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Received RA from FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors fe80::100 IPv6 Address Age Link-layer Addr State Interface FE80::100 1 0007.b400.0101 STALE Fa0/0
HTTP://WWW.ROUTER-SWITCH.COM/ HOST1#clear ipv6 neighbors ICMPv6-ND: STALE -> DELETE: FE80::222:22FF:FE22:2222 ICMPv6-ND: STALE -> DELETE: FE80::211:11FF:FE11:1111 ICMPv6-ND: STALE -> DELETE: FE80::100 HOST1#sh ipv6 neighbors fe80::100 HOST1#ping 4444::4 r 1 Type escape sequence to abort. Sending 1, 100-byte ICMP Echos to 4444::4, timeout is 2 seconds: ! Success rate is 100 percent (1/1), round-trip min/avg/max = 88/88/88 ms HOST1# ICMPv6-ND: DELETE -> INCMP: FE80::100 ICMPv6-ND: Sending NS for FE80::100 on FastEthernet0/0 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: NA has no link-layer option ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Neighbour FE80::100 on FastEthernet0/0 : LLA 0007.b400.0102 ICMPv6-ND: INCMP -> REACH: FE80::100 HOST1#sh ipv6 int f0/0 | i router Default router is FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors fe80::100 HOST1#sh ipv6 neighbors fe80::100 IPv6 Address Age Link-layer Addr State Interface
HTTP://WWW.ROUTER-SWITCH.COM/ FE80::100 0 0007.b400.0102 STALE Fa0/0 GLBP SUMMARY IPv4  multicast address 224.0.0.102, UDP port 3222  multiple virtual MAC addresses starting with 0007.b400.0101 IPv6  multicast address FF02::66, UDP port 3222  multiple virtual MAC addresses starting with 0007.b400.0101 Wireshark captures view online with CloudShark WRAP UP Quick conculsion seems they changed more in HSRP than GLBP to get it ready and working with IPv6. The devil is in the details of IPv6 ICMPv6 Neighbor Discovery as you will see the more you dig into IPv6. More Related Readings: Cisco First Hop Redundancy Protocols: HSRP, VRRP, GLBP How to Configure GLBP in Cisco IOS Routers? How to Configure GLBP? GLBP Overview and Features GLBP & GLBP Basic Configuration

Recomendados

HSRP (hot standby router protocol)
HSRP (hot standby router protocol)HSRP (hot standby router protocol)
HSRP (hot standby router protocol)Netwax Lab
 
Cisco hsrp configuration
Cisco hsrp configurationCisco hsrp configuration
Cisco hsrp configurationWahyu Nasution
 
VRRP (virtual router redundancy protocol)
VRRP (virtual router redundancy protocol)VRRP (virtual router redundancy protocol)
VRRP (virtual router redundancy protocol)Netwax Lab
 
First hop redundancy
First hop redundancyFirst hop redundancy
First hop redundancyMohamed Gamel
 
GLBP (gateway load balancing protocol)
GLBP (gateway load balancing protocol)GLBP (gateway load balancing protocol)
GLBP (gateway load balancing protocol)Netwax Lab
 
Layer 3 redundancy hsrp
Layer 3 redundancy hsrpLayer 3 redundancy hsrp
Layer 3 redundancy hsrpEdgardo Scrimaglia
 
Hsrp
HsrpHsrp
HsrpAnuj Kumar
 
Fhrp notes
Fhrp notesFhrp notes
Fhrp notesKrunal Shah
 

Recomendados

HSRP (hot standby router protocol)
HSRP (hot standby router protocol)HSRP (hot standby router protocol)
HSRP (hot standby router protocol)Netwax Lab
 
Cisco hsrp configuration
Cisco hsrp configurationCisco hsrp configuration
Cisco hsrp configurationWahyu Nasution
 
VRRP (virtual router redundancy protocol)
VRRP (virtual router redundancy protocol)VRRP (virtual router redundancy protocol)
VRRP (virtual router redundancy protocol)Netwax Lab
 
First hop redundancy
First hop redundancyFirst hop redundancy
First hop redundancyMohamed Gamel
 
GLBP (gateway load balancing protocol)
GLBP (gateway load balancing protocol)GLBP (gateway load balancing protocol)
GLBP (gateway load balancing protocol)Netwax Lab
 
Layer 3 redundancy hsrp
Layer 3 redundancy hsrpLayer 3 redundancy hsrp
Layer 3 redundancy hsrpEdgardo Scrimaglia
 
Hsrp
HsrpHsrp
HsrpAnuj Kumar
 
Fhrp notes
Fhrp notesFhrp notes
Fhrp notesKrunal Shah
 
Packet Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRPPacket Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRPRafat Khandaker
 
HSRP ccna
HSRP ccna HSRP ccna
HSRP ccna MohamedJafar5
 
Vrrp
VrrpVrrp
VrrpAnuj Kumar
 
Vrrp Alp
Vrrp AlpVrrp Alp
Vrrp AlpAlp isik
 
EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)Netwax Lab
 
Ccnpswitch
CcnpswitchCcnpswitch
CcnpswitchSiddhartha Rajbhatt
 
Ospf
OspfOspf
Ospfamit khunte
 
QoS marking on cisco IOS Router
QoS marking on cisco IOS RouterQoS marking on cisco IOS Router
QoS marking on cisco IOS RouterNetProtocol Xpert
 
IP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless AccessIP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless AccessDhiman Chowdhury
 
Chapter7ccna
Chapter7ccnaChapter7ccna
Chapter7ccnarobertoxe
 
Eigrp
EigrpEigrp
EigrpJuan Zambrano Burgos
 
Ospf
OspfOspf
OspfAlp isik
 
RIP (routing information protocol)
RIP (routing information protocol)RIP (routing information protocol)
RIP (routing information protocol)Netwax Lab
 
Igrp
IgrpIgrp
IgrpCYBERINTELLIGENTS
 
CCIE Lab - IGP Routing
CCIE Lab - IGP Routing CCIE Lab - IGP Routing
CCIE Lab - IGP Routing Kristof De Brouwer
 
Ccna command
Ccna commandCcna command
Ccna commandSiddhartha Rajbhatt
 
Routing Protocol EIGRP
Routing Protocol EIGRPRouting Protocol EIGRP
Routing Protocol EIGRPDmitry Figol
 
Open Shortest Path First
Open Shortest Path FirstOpen Shortest Path First
Open Shortest Path FirstKashif Latif
 
Packet Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPFPacket Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPFRafat Khandaker
 
OSPF Fundamental
OSPF FundamentalOSPF Fundamental
OSPF FundamentalReza Farahani
 
Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configurationIT Tech
 
IPV6 IPv6 Routing Lab By Rob Hamm
IPV6 IPv6 Routing Lab By Rob HammIPV6 IPv6 Routing Lab By Rob Hamm
IPV6 IPv6 Routing Lab By Rob HammInformation and Communications Technology Council
 

Mais conteúdo relacionado

Mais procurados

Packet Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRPPacket Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRPRafat Khandaker
 
EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)Netwax Lab
 
QoS marking on cisco IOS Router
QoS marking on cisco IOS RouterQoS marking on cisco IOS Router
QoS marking on cisco IOS RouterNetProtocol Xpert
 
IP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless AccessIP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless AccessDhiman Chowdhury
 
Chapter7ccna
Chapter7ccnaChapter7ccna
Chapter7ccnarobertoxe
 
RIP (routing information protocol)
RIP (routing information protocol)RIP (routing information protocol)
RIP (routing information protocol)Netwax Lab
 
Routing Protocol EIGRP
Routing Protocol EIGRPRouting Protocol EIGRP
Routing Protocol EIGRPDmitry Figol
 
Open Shortest Path First
Open Shortest Path FirstOpen Shortest Path First
Open Shortest Path FirstKashif Latif
 
Packet Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPFPacket Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPFRafat Khandaker
 

Mais procurados (20)

Packet Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRPPacket Tracer: Load Balancing with GLBP and FHRP
Packet Tracer: Load Balancing with GLBP and FHRP
 
HSRP ccna
HSRP ccna HSRP ccna
HSRP ccna
 
Vrrp
VrrpVrrp
Vrrp
 
Vrrp Alp
Vrrp AlpVrrp Alp
Vrrp Alp
 
EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)EIGRP (enhanced interior gateway routing protocol)
EIGRP (enhanced interior gateway routing protocol)
 
Ccnpswitch
CcnpswitchCcnpswitch
Ccnpswitch
 
Ospf
OspfOspf
Ospf
 
QoS marking on cisco IOS Router
QoS marking on cisco IOS RouterQoS marking on cisco IOS Router
QoS marking on cisco IOS Router
 
IP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless AccessIP Infusion Application Note for 4G LTE Fixed Wireless Access
IP Infusion Application Note for 4G LTE Fixed Wireless Access
 
Chapter7ccna
Chapter7ccnaChapter7ccna
Chapter7ccna
 
Eigrp
EigrpEigrp
Eigrp
 
Ospf
OspfOspf
Ospf
 
RIP (routing information protocol)
RIP (routing information protocol)RIP (routing information protocol)
RIP (routing information protocol)
 
Igrp
IgrpIgrp
Igrp
 
CCIE Lab - IGP Routing
CCIE Lab - IGP Routing CCIE Lab - IGP Routing
CCIE Lab - IGP Routing
 
Ccna command
Ccna commandCcna command
Ccna command
 
Routing Protocol EIGRP
Routing Protocol EIGRPRouting Protocol EIGRP
Routing Protocol EIGRP
 
Open Shortest Path First
Open Shortest Path FirstOpen Shortest Path First
Open Shortest Path First
 
Packet Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPFPacket Tracer: Routing protocols EIGRP and OSPF
Packet Tracer: Routing protocols EIGRP and OSPF
 
OSPF Fundamental
OSPF FundamentalOSPF Fundamental
OSPF Fundamental
 

Semelhante a First Hop Redundancy Protocols in IPv6 HSRP + GLBP

Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configurationIT Tech
 
Hot standby router protocol (hsrp) using
Hot standby router protocol (hsrp) usingHot standby router protocol (hsrp) using
Hot standby router protocol (hsrp) usingShubhiGupta94
 
Class notes fhrp,hsrp
Class notes fhrp,hsrpClass notes fhrp,hsrp
Class notes fhrp,hsrpSagarR24
 
Class notes fhrp,hsrp,vrrp
Class notes fhrp,hsrp,vrrpClass notes fhrp,hsrp,vrrp
Class notes fhrp,hsrp,vrrpSagarR24
 
Networking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP ConfigurationNetworking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP Configuration3Anetwork com
 
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)Netwax Lab
 
IPV6 Hands on Lab
IPV6 Hands on Lab IPV6 Hands on Lab
IPV6 Hands on Lab Cisco Canada
 
Hands on Experience with IPv6 Routing and Switching Services
Hands on Experience with IPv6 Routing and Switching ServicesHands on Experience with IPv6 Routing and Switching Services
Hands on Experience with IPv6 Routing and Switching ServicesCisco Canada
 
Fedv6tf-IPv6-new-friends
Fedv6tf-IPv6-new-friendsFedv6tf-IPv6-new-friends
Fedv6tf-IPv6-new-friendsTim Martin
 
Practice exam #2
Practice exam #2Practice exam #2
Practice exam #2Kris Mofu
 
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...Louis Göhl
 
Neighbor Discovery Deep Dive – IPv6-Networking-Referat
Neighbor Discovery Deep Dive – IPv6-Networking-ReferatNeighbor Discovery Deep Dive – IPv6-Networking-Referat
Neighbor Discovery Deep Dive – IPv6-Networking-ReferatDigicomp Academy AG
 

Semelhante a First Hop Redundancy Protocols in IPv6 HSRP + GLBP (20)

Cisco asa active,active failover configuration
Cisco asa active,active failover configurationCisco asa active,active failover configuration
Cisco asa active,active failover configuration
 
IPV6 IPv6 Routing Lab By Rob Hamm
IPV6 IPv6 Routing Lab By Rob HammIPV6 IPv6 Routing Lab By Rob Hamm
IPV6 IPv6 Routing Lab By Rob Hamm
 
Hot standby router protocol (hsrp) using
Hot standby router protocol (hsrp) usingHot standby router protocol (hsrp) using
Hot standby router protocol (hsrp) using
 
OSPF_Exercises.pdf
OSPF_Exercises.pdfOSPF_Exercises.pdf
OSPF_Exercises.pdf
 
Class notes fhrp,hsrp
Class notes fhrp,hsrpClass notes fhrp,hsrp
Class notes fhrp,hsrp
 
Class notes fhrp,hsrp,vrrp
Class notes fhrp,hsrp,vrrpClass notes fhrp,hsrp,vrrp
Class notes fhrp,hsrp,vrrp
 
OSPF Authentication
OSPF Authentication OSPF Authentication
OSPF Authentication
 
mpls-04
mpls-04mpls-04
mpls-04
 
Chapter7ccna
Chapter7ccnaChapter7ccna
Chapter7ccna
 
Networking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP ConfigurationNetworking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP Configuration
 
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)
Eincop Netwax Lab: HSRP (Hot Standby Router Protocol)
 
Chapter7ccna
Chapter7ccnaChapter7ccna
Chapter7ccna
 
IPV6 Hands on Lab
IPV6 Hands on Lab IPV6 Hands on Lab
IPV6 Hands on Lab
 
Hands on Experience with IPv6 Routing and Switching Services
Hands on Experience with IPv6 Routing and Switching ServicesHands on Experience with IPv6 Routing and Switching Services
Hands on Experience with IPv6 Routing and Switching Services
 
Fedv6tf-IPv6-new-friends
Fedv6tf-IPv6-new-friendsFedv6tf-IPv6-new-friends
Fedv6tf-IPv6-new-friends
 
OSPF by Abdullah Mukhtar
OSPF by Abdullah MukhtarOSPF by Abdullah Mukhtar
OSPF by Abdullah Mukhtar
 
Practice exam #2
Practice exam #2Practice exam #2
Practice exam #2
 
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
SVR401: DirectAccess Technical Drilldown, Part 1 of 2: IPv6 and transition te...
 
Neighbor Discovery Deep Dive – IPv6-Networking-Referat
Neighbor Discovery Deep Dive – IPv6-Networking-ReferatNeighbor Discovery Deep Dive – IPv6-Networking-Referat
Neighbor Discovery Deep Dive – IPv6-Networking-Referat
 
MPLS LAB Practice Vol.1.pdf
MPLS LAB Practice Vol.1.pdfMPLS LAB Practice Vol.1.pdf
MPLS LAB Practice Vol.1.pdf
 

Mais de IT Tech

Cisco ip phone key expansion module setup
Cisco ip phone key expansion module setupCisco ip phone key expansion module setup
Cisco ip phone key expansion module setupIT Tech
 
Cisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideCisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideIT Tech
 
Cisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideCisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideIT Tech
 
Hpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideHpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideIT Tech
 
The new cisco isr 4461 faq
The new cisco isr 4461 faqThe new cisco isr 4461 faq
The new cisco isr 4461 faqIT Tech
 
New nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesNew nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesIT Tech
 
Tested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresTested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresIT Tech
 
Aruba campus and branch switching solution
Aruba campus and branch switching solutionAruba campus and branch switching solution
Aruba campus and branch switching solutionIT Tech
 
Cisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesCisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesIT Tech
 
Cisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesCisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesIT Tech
 
Cisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesCisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesIT Tech
 
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellCompetitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellIT Tech
 
Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000IT Tech
 
The difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexThe difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexIT Tech
 
Cisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesCisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesIT Tech
 
Guide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesGuide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesIT Tech
 
892 f sfp configuration example
892 f sfp configuration example892 f sfp configuration example
892 f sfp configuration exampleIT Tech
 
Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700IT Tech
 
Cisco firepower ngips series migration options
Cisco firepower ngips series migration optionsCisco firepower ngips series migration options
Cisco firepower ngips series migration optionsIT Tech
 
Eol transceiver to replacement model
Eol transceiver to replacement modelEol transceiver to replacement model
Eol transceiver to replacement modelIT Tech
 

Mais de IT Tech (20)

Cisco ip phone key expansion module setup
Cisco ip phone key expansion module setupCisco ip phone key expansion module setup
Cisco ip phone key expansion module setup
 
Cisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideCisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guide
 
Cisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideCisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guide
 
Hpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideHpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guide
 
The new cisco isr 4461 faq
The new cisco isr 4461 faqThe new cisco isr 4461 faq
The new cisco isr 4461 faq
 
New nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesNew nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switches
 
Tested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresTested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi features
 
Aruba campus and branch switching solution
Aruba campus and branch switching solutionAruba campus and branch switching solution
Aruba campus and branch switching solution
 
Cisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesCisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switches
 
Cisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesCisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switches
 
Cisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesCisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modes
 
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellCompetitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
 
Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000
 
The difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexThe difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fex
 
Cisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesCisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches series
 
Guide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesGuide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 series
 
892 f sfp configuration example
892 f sfp configuration example892 f sfp configuration example
892 f sfp configuration example
 
Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700
 
Cisco firepower ngips series migration options
Cisco firepower ngips series migration optionsCisco firepower ngips series migration options
Cisco firepower ngips series migration options
 
Eol transceiver to replacement model
Eol transceiver to replacement modelEol transceiver to replacement model
Eol transceiver to replacement model
 

Último

From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI AgeCprime
 
Potential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsPotential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsRavi Sanghani
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditSkynet Technologies
 
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...panagenda
 
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...Wes McKinney
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Scott Andery
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteDianaGray10
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesThousandEyes
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfNeo4j
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch TuesdayIvanti
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfpanagenda
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 

Último (20)

From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
A Framework for Development in the AI Age
A Framework for Development in the AI AgeA Framework for Development in the AI Age
A Framework for Development in the AI Age
 
Potential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsPotential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and Insights
 
Manual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance AuditManual 508 Accessibility Compliance Audit
Manual 508 Accessibility Compliance Audit
 
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
Why device, WIFI, and ISP insights are crucial to supporting remote Microsoft...
 
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...
The Future Roadmap for the Composable Data Stack - Wes McKinney - Data Counci...
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Take control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test SuiteTake control of your SAP testing with UiPath Test Suite
Take control of your SAP testing with UiPath Test Suite
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyesAssure Ecommerce and Retail Operations Uptime with ThousandEyes
Assure Ecommerce and Retail Operations Uptime with ThousandEyes
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdf
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
2024 April Patch Tuesday
2024 April Patch Tuesday2024 April Patch Tuesday
2024 April Patch Tuesday
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 

First Hop Redundancy Protocols in IPv6 HSRP + GLBP

  • 1. HTTP://WWW.ROUTER-SWITCH.COM/ First Hop Redundancy Protocols in IPv6: HSRP + GLBP Currently Cisco has support for Hot Standby Router Protocol (HSRP) and Gateway Load Balancing (GLBP) in IPv6. There is an RFC5798 for Virtual Router Redundancy Protocol (VRRP), but checking the DocCD for this up to IOS 15.2M&T in the IPv6 configuration guide, I did not see it. This post will only be covering HSRP and GLBP operations, but we need to cover some basic operations of IPv6 Neighbor Discovery (ND) before we get into FHRPs. By default, IPv6 will use Router Advertisement (RA) to announce the presence of a router on a segment and use the Default Router Preference (DRP) options inside ND to determine the default gateway used. IPv6 has a built in redundancy mechanism inside ND called Neighbor Unreachability Detection (NUD) using the Neighbor Solicitation (NS) and Neighbor Advertisement (NA) to detect the failure. Reading RFC 5798, the most aggressive timers will only achieve failover within 5 seconds, which would significantly increase the overhead of ND traffic in a real world network of say 254 hosts in most common IPv4 VLAN designs with a /24 subnet. There is a good post on packetlife.net that shows this down to about 1 second by adjusting the Router Advertisement (RA) lifetime and Router Advertisement interval for more detailed information. So now that we know that IPv6 uses ND and has a mechanism for detecting default routers and failover, why do we need FHRPs? Well this post is not here to debate the why of this, but to look at the how with some packet captures. But I would think that FHRPs are there for the same reason we have so many protocols that sort of overlap: we are always looking for a better mouse trap. And in limited testing, relying on ND for default router and failover does not scale to provide the predictable and reliable configurations that the FHRPs do. For example, I found no preempt capabilities for the default router election. I will also make a nod to IPv6 security and mention that NUD has no authentication mechanism. Authentication can be accomplished using Secure Neighbor Discovery (SeND), but is out of the scope of this post. Now back to FHRPs, let’s do what we do and mock up a very basic FHRP network on a LAN segment, and take a look at a few configuration parameters. We’ll start with HSRP, then GLBP, as well as some packet captures with Wireshark and discuss some of the differences between the IPv4 and IPv6 versions of each. The very basic FHRP network will use HOST1, R1, and R2 on the LAN for the FHRP and a WAN router with serial interfaces for tracking and failover scenarios. BASIC FHRP NETWORK DIAGRAM
  • 2. HTTP://WWW.ROUTER-SWITCH.COM/ Hot Standby Router Protocol (HSRP) First step to configure HSRP for IPv6 is to enable HSRP version 2 to support IPv6: ‘standby version 2’. After that, the ‘standby’ commands are pretty much the same as with IPv4 – creating groups and adding tracking and preemption capabilities. After configuration of HSRP and the Active -> Standby negotiation is complete, the Active HSRP router will send the RAs, and the IPv6 hosts will use the new link local address that is auto configured with the command ‘standby 1 ipv6 autoconfig’. This can be seen on HOST1 in the output of the ‘show ipv6 int f0/0’. HOST1#sh ipv6 int f0/0 FastEthernet0/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::233:33FF:FE33:3333 No Virtual link-local address(es): Global unicast address(es): 2001:DB8:1212::3, subnet is 2001:DB8:1212::/64 Joined group address(es): FF02::1 FF02::1:FF00:3 FF02::1:FF33:3333 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ICMP unreachables are sent
  • 3. HTTP://WWW.ROUTER-SWITCH.COM/ ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds Default router is FE80::5:73FF:FEA0:1 on FastEthernet0/0 The R1 and R2 HSRP groups will communicate over multicast address FF02::66. R1#sh ipv6 int f0/0 | b Joined Joined group address(es): FF02::1 FF02::2 FF02::66 FF02::1:FF00:1 FF02::1:FF11:1111 R2#sh ipv6 int f0/0 | b Joined Joined group address(es): FF02::1 FF02::2 FF02::66 FF02::1:FF00:2 FF02::1:FF22:2222 HSRP INTERFACE ROUTER CONFIGURATIONS and SHOW COMMANDS R1#sh run int f0/0 interface FastEthernet0/0 mac-address 0011.1111.1111 ipv6 address 2001:DB8:1212::1/64 standby version 2 standby 1 ipv6 autoconfig standby 1 priority 200 standby 1 preempt standby 1 track Serial0/0 R2#sh run int f0/0 interface FastEthernet0/0 mac-address 0022.2222.2222 ipv6 address 2001:DB8:1212::2/64 standby version 2 standby 1 ipv6 autoconfig standby 1 preempt standby 1 track Serial0/1 R1#sh standby FastEthernet0/0 – Group 1 (version 2) State is Active 7 state changes, last state change 00:02:15 Virtual IP address is FE80::5:73FF:FEA0:1 Active virtual MAC address is 0005.73a0.0001
  • 4. HTTP://WWW.ROUTER-SWITCH.COM/ Local virtual MAC address is 0005.73a0.0001 (v2 IPv6 default) Hello time 3 sec, hold time 10 sec Next hello sent in 2.432 secs Preemption enabled Active router is local Standby router is FE80::222:22FF:FE22:2222, priority 100 (expires in 7.388 sec) Priority 200 (configured 200) Track interface Serial0/0 state Up decrement 10 Group name is “hsrp-Fa0/0-1″ (default) R2#sh standby FastEthernet0/0 – Group 1 (version 2) State is Standby 7 state changes, last state change 00:02:27 Virtual IP address is FE80::5:73FF:FEA0:1 Active virtual MAC address is 0005.73a0.0001 Local virtual MAC address is 0005.73a0.0001 (v2 IPv6 default) Hello time 3 sec, hold time 10 sec Next hello sent in 2.008 secs Preemption enabled Active router is FE80::211:11FF:FE11:1111, priority 200 (expires in 8.060 sec) MAC address is 0011.1111.1111 Standby router is local Priority 100 (default 100) Track interface Serial0/1 state Up decrement 10 Group name is “hsrp-Fa0/0-1″ (default) HSRP SUMMARY IPv4  HSRPv1  UDP port 1985 224.0.0.2  MAC address 0000.0C07.ACxy, where xy is the HSRP group number in hexadecimal  HSRPv2  UDP port 1985 224.0.0.102  MAC address range 0000.0C9F.F000 to 0000.0C9F.FFFF IPv6  HSRPv2  UDP port 2029 FF02::66  MAC 0005.73A0.000 – 0005.73A0.0FFF (4096 addresses)  RAs sent from active HSRP router Wireshark screen captures and/or view online with CloudShark R1 HSRP Active
  • 6. HTTP://WWW.ROUTER-SWITCH.COM/ R1 HSRP RA to set Default Router on HOST1 Gateway Load Balancing (GLBP) GLBP only takes one command on the interface to put it into action: ‘glbp 1 ipv6 FE80::100′ . We will just stick with this basic configuration and use the defaults, as we are only intrested in seeing the protocol work – not tweak it for max performance. GLBP SHOW COMMAND R1#sh glbp FastEthernet0/0 – Group 1 State is Active 2 state changes, last state change 00:22:41 Virtual IP address is FE80::100 Hello time 3 sec, hold time 10 sec Next hello sent in 0.736 secs Redirect time 600 sec, forwarder timeout 14400 sec Preemption disabled Active is local Standby is FE80::222:22FF:FE22:2222, priority 100 (expires in 8.692 sec) Priority 100 (default) Weighting 100 (default 100), thresholds: lower 1, upper 100
  • 7. HTTP://WWW.ROUTER-SWITCH.COM/ Load balancing: round-robin Group members: 0011.1111.1111 (FE80::211:11FF:FE11:1111) local 0022.2222.2222 (FE80::222:22FF:FE22:2222) There are 2 forwarders (1 active) Forwarder 1 State is Active 1 state change, last state change 00:22:31 MAC address is 0007.b400.0101 (default) Owner ID is 0011.1111.1111 Redirection enabled Preemption enabled, min delay 30 sec Active is local, weighting 100 Client selection count: 2 Forwarder 2 State is Listen MAC address is 0007.b400.0102 (learnt) Owner ID is 0022.2222.2222 Redirection enabled, 597.516 sec remaining (maximum 600 sec) Time to live: 14397.516 sec (maximum 14400 sec) Preemption enabled, min delay 30 sec Active is FE80::222:22FF:FE22:2222 (primary), weighting 100 (expires in 7.512 sec) Client selection count: 2 R2#sh glbp FastEthernet0/0 – Group 1 State is Standby 1 state change, last state change 00:23:17 Virtual IP address is FE80::100 Hello time 3 sec, hold time 10 sec Next hello sent in 0.652 secs Redirect time 600 sec, forwarder timeout 14400 sec Preemption disabled Active is FE80::211:11FF:FE11:1111, priority 100 (expires in 9.696 sec) Standby is local Priority 100 (default) Weighting 100 (default 100), thresholds: lower 1, upper 100 Load balancing: round-robin Group members: 0011.1111.1111 (FE80::211:11FF:FE11:1111) 0022.2222.2222 (FE80::222:22FF:FE22:2222) local There are 2 forwarders (1 active) Forwarder 1 State is Listen MAC address is 0007.b400.0101 (learnt)
  • 8. HTTP://WWW.ROUTER-SWITCH.COM/ Owner ID is 0011.1111.1111 Time to live: 14399.688 sec (maximum 14400 sec) Preemption enabled, min delay 30 sec Active is FE80::211:11FF:FE11:1111 (primary), weighting 100 (expires in 8.960 sec) Forwarder 2 State is Active 1 state change, last state change 00:23:15 MAC address is 0007.b400.0102 (default) Owner ID is 0022.2222.2222 Preemption enabled, min delay 30 sec Active is local, weighting 100 Let’s take a look at GLBP in action, using the default load balancing of round-robin. Host1 will send 1 ping packet, at that point ND will occur for the default router of FE80::100 which was set as the GLBP virutal ipv6 address on the interface ‘glbp 1 ipv6 FE80::100′ . First packet will be sent with MAC of Forwarder 1 on R1 and the second packet, after we clear ipv6 neighbors’, will be sent with the MAC of Forwarder 2 on R2 because of the default load balancing configuration of round-robin. HOST1#sh ipv6 int f0/0 | i router Default router is FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors HOST1#ping 4444::4 r 1 Type escape sequence to abort. Sending 1, 100-byte ICMP Echos to 4444::4, timeout is 2 seconds: ! Success rate is 100 percent (1/1), round-trip min/avg/max = 92/92/92 ms HOST1# ICMPv6-ND: DELETE -> INCMP: FE80::100 ICMPv6-ND: Sending NS for FE80::100 on FastEthernet0/0 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Neighbour FE80::100 on FastEthernet0/0 : LLA 0007.b400.0101 ICMPv6-ND: INCMP -> REACH: FE80::100 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Received RA from FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors fe80::100 IPv6 Address Age Link-layer Addr State Interface FE80::100 1 0007.b400.0101 STALE Fa0/0
  • 9. HTTP://WWW.ROUTER-SWITCH.COM/ HOST1#clear ipv6 neighbors ICMPv6-ND: STALE -> DELETE: FE80::222:22FF:FE22:2222 ICMPv6-ND: STALE -> DELETE: FE80::211:11FF:FE11:1111 ICMPv6-ND: STALE -> DELETE: FE80::100 HOST1#sh ipv6 neighbors fe80::100 HOST1#ping 4444::4 r 1 Type escape sequence to abort. Sending 1, 100-byte ICMP Echos to 4444::4, timeout is 2 seconds: ! Success rate is 100 percent (1/1), round-trip min/avg/max = 88/88/88 ms HOST1# ICMPv6-ND: DELETE -> INCMP: FE80::100 ICMPv6-ND: Sending NS for FE80::100 on FastEthernet0/0 ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: NA has no link-layer option ICMPv6-ND: Received NA for FE80::100 on FastEthernet0/0 from FE80::100 ICMPv6-ND: Neighbour FE80::100 on FastEthernet0/0 : LLA 0007.b400.0102 ICMPv6-ND: INCMP -> REACH: FE80::100 HOST1#sh ipv6 int f0/0 | i router Default router is FE80::100 on FastEthernet0/0 HOST1#sh ipv6 neighbors fe80::100 HOST1#sh ipv6 neighbors fe80::100 IPv6 Address Age Link-layer Addr State Interface
  • 10. HTTP://WWW.ROUTER-SWITCH.COM/ FE80::100 0 0007.b400.0102 STALE Fa0/0 GLBP SUMMARY IPv4  multicast address 224.0.0.102, UDP port 3222  multiple virtual MAC addresses starting with 0007.b400.0101 IPv6  multicast address FF02::66, UDP port 3222  multiple virtual MAC addresses starting with 0007.b400.0101 Wireshark captures view online with CloudShark WRAP UP Quick conculsion seems they changed more in HSRP than GLBP to get it ready and working with IPv6. The devil is in the details of IPv6 ICMPv6 Neighbor Discovery as you will see the more you dig into IPv6. More Related Readings: Cisco First Hop Redundancy Protocols: HSRP, VRRP, GLBP How to Configure GLBP in Cisco IOS Routers? How to Configure GLBP? GLBP Overview and Features GLBP & GLBP Basic Configuration