VRRP
public protocol (Layer Protocol)
Reference: https://blog.csdn.net/zhongzh86/article/details/81537644
Virtual Router Redundancy Protocol (virtual router redundance protocol)
router function:
to ensure that different segments communicate;
the network: different internal departments
outside the network: the corporate network boundary
fault:
a single router failure, leading to network all the disruption
Solution:
deploying multiple routers in the network;
group members:
the main router (master)
backup route (backup)
virtual routing
function:
in among a plurality of routers, or a plurality may be a virtual gateway IP address (virtual router) in order to achieve interworking between network segments nowhere
VRRP working process:
- Between a plurality of routers running VR vrrp level by exchanging the packets, thus among a plurality of routers VR vrrp level by exchanging the packets, thereby selecting a router cattle, as the master, then went with this router to forward packets
- Master router has only one; other routers called backup routers
- Meanwhile, Master and the backup, will generate a virtual router, which is a virtual IP address (corresponding to a virtual mac address)
state Vrrp the
Initialize (initial)
Backup (backup)
Master (primary state)
authentication: No authentication; simple (plaintext) authentication; MD5 (encryption) authentication
configuration:
the Cisco configuration commands - Port Address Configuration
- Add port switch vlan
- :( port view the same network port)
A) 1 ip192.168.10.250 VRRP (vrrp group to create virtual gateway IP address)
b) verify that show vrrp
virtual mac addresses: 00.01 behalf vrrp; 01 represents the group number; 0000.5e are common
advertisement: Announcements, interval: interval; preemption: preemption (this feature is not enabled, to modify the priority, does not change the master)
the greater the priority number, that is, master routing
c) adjusting the priority: vrrp 1 priority {value} - Debug ip icmp resolve ICMP (only in learning environments) to open;
- Undebug all close
- Master election: priority; IP address than the size of a large master
问题:
当内网和外网通过两台路由器连接时,当active路由器外网链路断开时,而内部网络又感知不到,造成无法正常与外网通信,为了解决这个问题,
解决:
外部链路跟踪技术(跟踪端口状态,当端口断开,降低active路由器的优先级,从而变更路由器的角色)实现数据包的正常转发。
端口模式:vrrp 1 track f0/1(接外网端口) decrement(减少){value}
华为配置:
vrrp vrid(虚拟路由器标识符)1 virtual-ip 192.168.10.250(创建虚拟ip网关)
vrrp vrid 1 priority 150 (设置优先级)
vrrp vrid 1 track interface GigabitEthernet0/0/0 reduced 100(链路跟踪)
验证:dis vrrp
开启debug命令:用户视图(真实设备不开启)
Terminal moniter
Terminal debugging(华为上面解析)
Debugging ip icmp
系统视图
Info-center console channel monitor
Tips:Cisco配置模式下default interface f0/0(思科端口初始化,命令配置全部没了)
华为交换机:clear configuration interface g0/0/1
HSRP(思科私有):hot standby(备份) route protocol双机热备份协议
功能相同
配置命令:把vrrp全部换成standby
Hsrp:active/standby(只有两台路由器参与;preemption功能默认关闭)
Vrrp:master/backup(可多台路尤其参与)
HSRP:成员
活跃路由器(active)
备份路由器(standby)
虚拟路由(vr)
Vrrp load balancing:
Set on the gateway two three switches (provided on the two routers, no way to achieve different vlan of simultaneous communication, or waste a lot of routing port, single-arm routing ???)
operation