cấu hình hsrp

Tm hiu giao thc Hot Standby Router Protocol (HSRP)

Hot Standby Router Protocol(HSRP)l mt chun ca Cisco, HSRP ra i t nhng nm 1990 nhmcung cp tnh sn sng lm vic cao ca h thng mng bng cch a ra s d phng cho cc host trn mt mng LAN c cu hnh vi mt a ch IP default gateway.HSRP cho php nhiu router cng chia s mt a ch IP o v cc a ch MAC sao cho cc my ca ngi dng (user) s khng nhn ra khi no c s c mng xy ra i viActive router.

t im caHSRP

- a ch IP l o v a ch MAC cng o trn router actine.- Cc router d phng s lng nghe cc gi hello t router ang active, mc nh mi 3 giy v 10 giy cho khong thi gian dead.- u tin cao nht (mc nh l 100, trong tm t 1-255) s xc nh router, vi c ch pre-emption b tt.- H tr tnh nng tracking, trong u tin ca mt router s b gim khi mt interface ang b theo di b hng hc.- C th c ti a 255 nhmHSRPtrn mi interface, cho php mt hnh thc cn bng ti.- a ch MAC o c dng 0000.0C07.Acxx trong xx l ch s ca nhmHSRP.- a ch ca IP o phi trong cng gi tr subnet ca cng ca router trong LAN.- a ch ca IP o phi khc vi bt k mt a ch tht no ca cc cng tham gia voHSRP.

Cch thc hot ng ca HSRP

HSRPhot ng da trn vic to ra mt gateway o. Gateway o trn cng c th hiu nh l mt cng vic hay vai tr mHSRPc trch nhim m nhn cung cp cho cc my bn trong mng LAN. Trong mt nhm cc routers chyHSRP, s c mt router ng ra m trch vai tr lm gateway ni trn. Router c gi l ACTIVE router. IP ca gateway o c gi l IP ma (phantom IP). Cc routers khng active s b ri vo trng thi standby.Active Router s nh tuyn cc gi tin; cn Standby Router l router s c lm nhim v thay th Active Router khi m Active Rouer b li hoc do nhng iu kin m ngi qun tr mng cu hnh trc.HSRP s t ng c tm thy khi m Active Router b li, v mt Standby Router s c la chn iu khin a ch IP v a ch MAC ca nhm Hot Standby . Mt Standby Router mi cng s c chn li trong thi im ny.Nhng thit b ang chy HSRP s gi v nhn cc gi tin hello di dng a ch Multicast c kh nng xc nh c router b li v xc nh c Active Router v Standby Router. Khi HSRP c cu hnh trn mt interface, th thng ip ICMP redirect s b disable theo mc nh trn tt c cc interface.

Ti u HSRPVn :Nu ch cu hnh n thun th ta s gp tnh trng l nhiu PC cng i qua 1 router v nhng router cn li th khng lm vic g ,v nh th th cng rt ph bng thng.Gii quytCu hnh nhiu group HSRP trn cao router hay cn gi l Multiple HSRP (MHSRP).Multiple HSRP (MHSRP) :T Cisco IOS Release 12.2(18)SE tr ln u c kh nng h tr Multiple HSRP (MHSRP), mt s m rng ca HSRP s cho php cn bng ti gia hai hoc nhiu nhm HSRP. Bn c th cu hnh MHSRP c th thc hin c c ch cn bng ti v s dng hai hoc nhiu nhm standby t mt host n mt server trong mng.Vd :Ta c hai router chay HSRP. Ta s to ra 2 group v 2 ch IP o cho 2 group ny.Router 1 c Priority ln i vi Group th nht, v c Priority Nh hn i vi Group th hai.Router 1 s l active i group 1 v s l Standby cho group 2.i vi cc host th ta s cu hnh cho mt s host c default gateway l Virtual IP address ca group 1 v mt s host c default gateway l Virtual IP address ca group 2.Ti s cn bng 2 router. Mi router s m nhim mt lng ti nht nh (ty theo bng thng ca tng router m ta c s sp xp v cu hnh default gateway cho cc host ch n router thch hp).Hnh minh ha vd

====================

Cu hnh HSRP - Phn I

Trong cc bi vit v HSRP s m t v phng php s dng Hot Standby Router Protocol (HSRP) trn Catalyst switch 3560 cung cp nh tuyn d phng cho cc lu lng nh tuyn IP m khng ph thuc vo mt router no c hot ng tt hay khng.

- Bn cng c th s dng mt phin bn ca HSRP trong Layer 2 cu hnh tnh nng d phng cho switch tip tc c th qun l c cluster nu nh cluster switch b li.

- Cc bi vit v HSRP s bao gm nhng phn sau: + Phn I: Tm hiu v HSRP + Phn II: Cu hnh HSRP + Phn III: Hin th thng s cu hnh ca HSRP

Phn I: Tm hiu v HSRP.

1. Tm hiu HSRP

- HSRP l mt chun ca Cisco nhm cung cp tnh sn sng lm vic cao ca h thng mng bng cch a ra s d phng cho cc host trn mt mng LAN c cu hnh vi mt a ch IP default gateway. HSRP s nh tuyn cc lu lng IP m khng cn da vo tnh sn sng ca mt router n l no . HSRP cho php mt nhm cc interface ca router c th lm vic vi nhau biu din s xut hin ca mt virtual router hoc mt default gateway cho cc host trong mng LAN. Khi HSRP c cu hn trn mt network hoc mt segment, th n s c kh nng cung cp mt a ch Virtual MAC v mt a ch IP c chia s cho mt nhm cc router. HSRP cho php hai hoc nhiu router cu hnh tnh nng HSRP c th s dng a ch MAC v a ch IP ca mt Virtual Router.Virtual Router khng tn ti; n c biu din nh mt thnh phn chung cho cc router c cu hnh tnh nng HSRP cung cp c ch d phng cho mi router . Mt router c chn vi vai tr l Active Router v mt router khc s c chn vi vai tr l Standby Router, v Standby Router s lm nhim iu khin nhm a ch MAC v a ch IP nu Active Router b li.

- HSRP cung cp kh nng lm vic cao cho h thng mng bng cch a ra s d phng cho cc lu lng IP t nhng host nm trong mng . Trong nhm ca cc interface router, th Active Router l mt router c chn nh tuyn cc gi tin; cn Standby Router l router s c lm nhim v thay th Active Router khi m Active Rouer b li hoc do nhng iu kin m ngi qun tr mng cu hnh trc.

- HSRP thc s hu ch cho cc host khng c kh nng h tr giao thc khm ph ra mt router v khng th chuyn mch n mt router mi khi router c cc host chn nh tuyn khi ng li hoc mt ngun. Khi HSRP c cu hnh trn mt mng, th n s cung cp mt a ch Virtual MAC v mt a ch IP s c dng chung bi cc interface ca router trong mt nhm ang chy HSRP. Router c la chn bi giao thc m nhim vai tr l Active Router v s nh tuyn cc gi tin cho a ch MAC ca nhm . V d cho n router ang chy giao thc HSRP, th s c n+1 a ch IP v a ch MAC s c gn.

- HSRP s t ng c tm thy khi m Active Router b li, v mt Standby Router s c la chn iu khin a ch IP v a ch MAC ca nhm Hot Standby . Mt Standby Router mi cng s c chn li trong thi im ny. Nhng thit b ang chy HSRP s gi v nhn cc gi tin hello di dng a ch Multicast c kh nng xc nh c router b li v xc nh c Active Router v Standby Router. Khi HSRP c cu hnh trn mt interface, th thng ip ICMP redirect s b disable theo mc nh trn tt c cc interface. (V giao thc ICMP mi cc bn tm c cc bi vit trc trn web site ca vnexperts.).

- Bn c th cu hnh nhiu nhm Hot Standby trn cc Catalyst switch 3560 hot ng Layer 3 to ra nhiu router d phng. lm c iu ny, cn phi ch r mt nhm cho mi mt Hot Standby m bn cu hnh cho mt interface. Cho v d, bn phi cu hnh mt interface trn Switch 1 nh mt Active Router v mt interface trn Switch 2 nh mt Standby Router v cng phi cu hnh mt interface khc trn Switch 2 ng vai tr l Active Router v mt interface khc trn Switch 1 ng vai tr nh mt Standby Router.

-Hnh 1.1hin th mt segment ca mt network c cu hnh HSRP. Mi router c cu hnh vi mt a ch MAC v mt a ch IP ca Virtual Router. Thay v phi cu hnh cc host trong mng vi a ch IP ca Router A, bn c th cu hnh chng vi a ch IP ca Virtual Router nh mt a ch default gateway. Khi host C gi gi tin n host B, n s gi chng n a ch MAC ca Virtual Router. Nu v mt vi l do no , Router A tm dng qu trnh truyn cc gi tin, th Router B s tr li vi a ch IP v a ch MAC ca Virtual Router v tr thnh Active Router, v coi nh Active Router b li. Host C s tip tc s dng a ch IP ca Virtual Router gi d liu n cho host B, v Router B by gi s nhn v gi n host B. Cho n khi Router A hot ng tr li, th HSRP cho php Router B vn tip tc ng vai tr chuyn d liu t host C n host B.

hnh 1.1

2. Multiple HSRP.

- T Cisco IOS Release 12.2(18)SE tr ln u c kh nng h tr Multiple HSRP (MHSRP), mt s m rng ca HSRP s cho php cn bng ti gia hai hoc nhiu nhm HSRP. Bn c th cu hnh MHSRP c th thc hin c c ch cn bng ti v s dng hai hoc nhiu nhm standby t mt host n mt server trong mng. Hnh 1.2, c mt na cu hnh cho Router A, v na cn li cu hnh cho Router B. C hai, cu hnh cho Router A v Router B thit lp hai nhm HSRP. Nhm 1, th Router A mc nh l Active Router bi v n c gi tr priority cao nht, v Router B l Standby Router. Trong nhm 2, Router B mc nh l Active Router bi v n c gi tr priority cao nht, v Router A l Standby Router. Trong sut qu trnh hot ng bnh thng, th hai router A v B s thc hin chia ti cc lung lu lng. Khi c hai router tr ln khng hot ng, th Router khc s tr thnh Active v coi nh chc nng truyn d liu ca cc router cng tr ln khng hot ng.

hnh 1.2

Vi hai ch Tm hiu v HSRP v MHSRP cc bn nm c nhng khi nim v chc nng ca giao thc HSRP. c th trin khai c giao thc ny hot ng trong h thng ca cc bn, xin mi cc bn c tip phn II ca bi vit v HSRP: Phn II - Cu hnh HSRP.

[email protected] - Dng Vn Ton

Tin mi hn: 21/07/2008 09:03-SPAN v RSPAN - Phn II 19/07/2008 08:48-SPAN v RSPAN - Phn I 18/07/2008 10:01-Cisco Discovery Protocol (CDP) 18/07/2008 06:21-Cu hnh UDLD 17/07/2008 09:28-Cu hnh HSRP - Phn II & IIITin c hn: 16/07/2008 03:08-Cu hnh LLDP v LLDP-MED 15/07/2008 03:26-Mutiple Spanning Tree (giao thc MSTP) - Phn III & IV 14/07/2008 06:11-Multicast VLAN Registration (MVR) 12/07/2008 04:44-IGMP Snooping Phn II - III 11/07/2008 06:31-IGMP Snooping v MVR - Phn ICu hnh HSRP - Phn II & III

Trong phn I ca bi vit v Cu hnh HSRP cc bn c lm quen v tm hiu v nhng khi nim c lin quan n giao thc HSRP. Bi vit tip theo v HSRP s m t v cc phng php trin khai giao thc ny trn h thng mng cng vi nhng tham s km theo.

Phn II: Cu hnh HSRP

Trong phn cu hnh v HSRP ny s bao gm nhng ch sau:- Cu hnh HSRP mc nh- Cu hnh HSRP theo hng dn- Enable HSRP- Cu hnh HSRP Priority- Cu hnh MHSRP- Cu hnh HSRP Authentication v Timer- Enable HSRP h tr ICMP Redirect Message.- Cu hnh HSRP Groups v Clustering

1. Cu hnh HSRP mc nh- Bng 1.3 hin th cc tham s cu hnh mc nh ca HSRP.hnh 1.3

2. Cu hnh HSRP theo hng dn.

* Khi bn thc hin cu hnh HSRP th bn c th lm theo nhng hng dn di y:

- HSRP c th c cu hnh ti a trn 32 VLAN hoc Interface Routing

- Trong nhng th tc di y, nhng interface c ch ra phi l nhng interface hot ng Layer 3:

+ Routed Port: mt port vt l c cu hnh nh mt Layer 3 port bng cch thc thi cu lnh: no switchport ch interface configuration.

+ SVI: l mt interface VLAN c to bng cch s dng cu lnh: interface vlan vlan-id ch global configuration v khi interface vlan l mt interface hot ng layer 3.

+ Etherchannel port channel in Layer 3 mode: mt port-channel l mt interface logical c to bng cch s dng cu lnh: interface port-channel port-channel-number ch global configuration v gn mt Ethernet interface vo trong mt nhm channel. (Cu hnh Etherchannel mi cc bn tm c trn website ca Vnexperts.)

- Tt c cc interface Layer 3 s phi c mt a ch IP c gn.

3. Thit lp HSRP.

- Cu lnh standby ip c dng trong ch interface configuration enable HSRP hot ng trn mt interface. Nu mt a ch IP c ch ra, th a ch ny c s dng nh mt a ch cho nhm Hot Standby. Nu khng c mt a ch IP no c ch ra, th a ch s c hc thng qua chc nng Standby. Bn s phi cu hnh t nht mt port nh tuyn trn cp vi a ch c ch nh. Cu hnh mt a ch IP s lun c thay th a ch c ch nh ang s dng.

- Khi cu lnh standby ip c enable trn mt interface v Proxy ARP c enable, Nu trng thi ca Interface Hot Standby l Active, th Proxy ARP request c tr li s dng a ch MAC ca nhm Hot Standby. Nu interface ny trng thi khc, th Proxy ARP response s ngng hot ng.

- Bt u ch Privileged EXEC, nhng bc sau s c thc thi to hoc enable HSRP trn mt interface layer 3:

example:Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# interface gigabitethernet 0/1Switch_3560_VNE(config-if)# no switchportSwitch_3560_VNE(config-if)# standby 1 ip 10.1.1.1Switch_3560_VNE(config-if)# endSwitch_3560_VNE# show standbySwitch_3560_VNE# copy run start

- S dng cu lnh: no standby [group-number] ip [ip-address] ch interface configuration disable HSRP.

4. Cu hnh HSRP Priority

- Cc cu lnh: standby priority, standby preempt, v standby track thc thi ch interface configuration, c s dng cu hnh cc tham s cho qu trnh tm ra Active Router v Standb Router.- Khi cu hnh HSRP priority, th cc bn c th cu hnh theo nhng hng dn bn di:

+ Gn mt gi tr priority gip cho qu trnh chn Active v Standby router. Nu preemption c enable, th router c gi tr priority cao nht s c la chn lm Active Router. Nu priority m bng nhau gia cc router, th a ch IP s c s dng so snh, v router no c a ch IP cao nht c la chn lm Active Router.

+ Priority c gi tr t 1 n 255: nu router no c gi tr cao nht thng c chn lm Active Router.

+ Khi cu hnh Priority, Preempt hoc c hai, th bn s phi ch mt t kha (priority, preempt, hoc c hai).

+ Priority ca mt thit b c th thay i mt cch t ng nu mt interface c cu hnh vi cu lnh: standby track v interface khc trn router s gim xung.

+ Cu lnh: standby track thc thi ch interface configuration lm cho gi tr Priority trn router c tnh sn sng s dng cho interface v cu lnh cng c s dng kim tra cc interface khng c cu hnh HSRP. Khi mt interface c kim tra b li, th Hot Standby Priority trn thit b ang kim tra s gim i 10. Nu mt interface m khng c kim tra, th trng thi ca n thay i s khng nh hng n gi tr Hot Standby Priority ca thit b . Mi mt interface c cu hnh cho mt Hot Standby, bn c th cu hnh mt danh sch ring bit ca nhng interface c thc hin kim tra.

+ Cu lnh: standby track interface-priority thc thi ch interface configuration s ch ra phng php gi tr Hot Standby Priority gim khi mt interface c kim tra b down. Khi interface up tr li, th priority s c tng ln cng vi lng m n b gim i.

+ Khi nhiu interface c kim tra b down v gi tr interface-priority c cu hnh, th gi tr priority c cu hnh s gim dn i. Nu nhng interface c kim tra m khng c cu hnh vi gi tr priority b li, th mc nh gi tr priority s b gim i 10.

+ Khi mt giao thc nh tuyn c enable cho mt interface ca router, th router s khng hon thnh vic tnh ton c bng nh tuyn. Nu n c cu hnh preempt, th router tr thnh Active Router, khi router s khng c kh nng cung cp dch v nh tuyn. gii quyt vn ny, cu hnh mt thi gian tr cho php router c kh nng cp nht bng nh tuyn ca n.- Bt u t ch cu hnh Privileged EXEC ca switch, s dng mt hoc cc bc sau thc hin vic cu hnh HSRP priority cho mt interface ca router.

example:Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# interface gigabitethernet 0/1Switch_3560_VNE(config-if)# no switchportSwitch_3560_VNE(config-if)# standby 1 ip 172.20.128.3Switch_3560_VNE(config-if)# standby priority 120 preempt delay 300Switch_3560_VNE(config-if)# endSwitch_3560_VNE# show standbySwitch_3560_VNE# copy run start

- S dng cu lnh no standby [group-number] priority priority [preempt [ delay delay ]] v no standby [group-number] [priority priority] preempt [delay delay] ch interface configuration ly li cc gi tr: priority, preempt, v delay mc nh cho interface.

- S dng cu lnh: no standby [group-number] track type number [interface-priority] ch interface configuration hy tin trnh thc hin kim tra.

5. Cu hnh MHSRP.

- enable MHSRP v c ch cn bng ti, bn c th cu hnh hai router ng vai tr l Active Router trong cc nhm, v Virtual Router ng vai tr l Standby Router. Bn cn phi thc thi cu lnh standby preempt ch interface configuration trn mi mt interface nu mt router b li v up tr li, th preempt s hot ng v khi phc li c c ch cn bng ti (load balacing).

- Router A c cu hnh nh mt Active Router cho nhm 1, v Router B c cu hnh nh mt Active Router cho nhm 2. HSRP interface ca Router A c mt a ch IP l: 10.0.0.1 vi nhm 1, v standby priority l 110 (mc nh l 100). HSRP interface ca Router B c a ch IP l: 10.0.0.2 vi nhm 2, v standby priority l 110.

- Nhm 1 s dng mt a ch Virtual IP: 10.0.0.3 v nhm 2 s dng mt a ch Virtual IP: 10.0.0.4

Cu hnh Router A

Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# interface gigabitethernet0/1Switch_3560_VNE(config-if)# no switchportSwitch_3560_VNE(config-if)# ip address 10.0.0.1 255.255.255.0Switch_3560_VNE(config-if)# standby 1 ip 10.0.0.3Switch_3560_VNE(config-if)# standby 1 priority 110Switch_3560_VNE(config-if)# standby 1 preemptSwitch_3560_VNE(config-if)# standby 2 ip 10.0.0.4Switch_3560_VNE(config-if)# standby 2 preemptSwitch_3560_VNE(config-if)# endSwitch_3560_VNE# copy run start

Cu hnh Router B

Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# interface gigabitethernet0/1Switch_3560_VNE(config-if)# no switchportSwitch_3560_VNE(config-if)# ip address 10.0.0.2 255.255.255.0Switch_3560_VNE(config-if)# standby 1 ip 10.0.0.3Switch_3560_VNE(config-if)# standby 1 preemptSwitch_3560_VNE(config-if)# standby 2 ip 10.0.0.4Switch_3560_VNE(config-if)# standby 2 priority 110Switch_3560_VNE(config-if)# standby 2 preemptSwitch_3560_VNE(config-if)# endSwitch_3560_VNE# copy run start

6. Cu hnh HSRP authentication v timer.- Bn c th cu hnh mt chui HSRP authentication hoc thay i hello-time interval v holditme.

- Khi cu hnh nhng thuc tnh ny, th cc bn c th tham kho nhng hng dn bn di y:

+ Chui xc thc c gi di dng khng c m ha trong tt c cc thng ip ca HSRP. Bn s phi cu hnh cng mi chi xc thc trn tt c cc router v access server trn mng ca bn. Nu xc thc khng thnh cng th s ngn cn mt thit b hc mt a ch IP Hot Standby c ch nh v gi tr thi gian c cu hnh trn nhng router khc.

+ Cc router hoc access server trong nhm standby th cc gi tr thi gian khng cn thit phi cu hnh, chng c th c hc gi tr thi gian ny t Acitve Router hoc Standby Router. Thi gian c cu hnh trn Active Router s lun c thay th mi cu hnh thi gian khc.

+ Tt c cc router trong nhm Hot Standby s s dng cng mt gi tr thi gian. Thng thng, gi tr holdtime s ln hn hoc bng 3 ln gi tr hellotime.

- Bt u ch cu hnh Privileged EXEC ca switch, s dng mt hoc tt c nhng bc sau cu hnh HSRP authentication v timers cho mt interface.

example:Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# interface gigabitethernet 0/1Switch_3560_VNE(config-if)# no switchportSwitch_3560_VNE(config-if)# standby 1 authentication VNESwitch_3560_VNE(config-if)# standby 1 ip 172.20.1.2Switch_3560_VNE(config-if)# standby 1 timers 5 15Switch_3560_VNE(config-if)# endSwitch_3560_VNE# copy run start

- S dng cu lnh: no standby [group-number] authentication string ch interface configuration xa mt chui xc thc. S dng cu lnh: no standby [group-number] timers hellotime holdtime ch interface configuration khi phc li gi tr thi gian mc nh.

7. Enable HSRP h tr ICMP Redirect Messages.

- Trong cc phin bn Cisco IOS Release 12.2(18)SE tr v trc, th ICMP (Internet Control Message Protocol) redirect mesages s t ng b disable trn nhng interface c cu hnh HSRP. ICMP l mt giao thc hot ng Layer Interface trong m hnh TCP/IP, cung cp nhng thng ip ghi li cc li v nhng thng tin c lin quan n tin trnh x l ca gi tin IP. ICMP cung cp kh nng chun on, nh gi v chuyn nhng gi tin li n cc host.

- Khi switch ang chy HSRP, th nhng host trong mng khng c kh nng tm ra c cc a ch MAC ca cc interface ca router trong nhm HSRP. Nu mt host gi li mt ln na gi tin ICMP n a ch MAC thc ca mt router no v router b li ri, th gi tin ca host s b mt.

- Trong cc phin bn ca Cisco IOS 12.2(18)SE tr v sau, th ICMP redirect message s t ng c enable trn tt c cc interface cu hnh HSRP. Tnh nng s cho php lc nhng ICMP redirect messages i ra thng qua HSRP, trong a ch IP tip theo s phi c thay i thnh mt a ch HSRP Virtual IP.

8. Cu hnh HSRP Groups v Clustering.

- Khi mt thit b l mt thnh phn trong mt nhm HSRP Standby Routing v Clustering c enable, bn c th s dng cng nhng cu lnh cho standby group hoc HSRP redundancy. S dng: cluster standby-group HSRP-group-name [routing-redundancy] ch global configuration enable cng mt nhm HSRP Standby s dng cho switch v routing redundancy. Nu bn to mt cluster cng tn vi mt nhm HSRP Standby m khng nhp cu lnh routing-redundancy, th HSRP Standby Rouing ca nhm s b disable.

- V d di y s to ra mt nhm standby l VNE_HSRP cho Cluster v cng enable mt nhm HSRP s dng nhng cu lnh cho switch redudancy v router redudancy. Cu lnh ny c th c thc thi trn switch cluster. Nu tn ca nhm standby hoc s ca n khng tn ti, hoc nu switch ny l mt switch cluster thnh vin, th s c mt li xut hin.

example:Switch_3560_VNE# configure terminalSwitch_3560_VNE(config)# cluster standby-group VNE_HSRP routing-redundancySwitch_3560_VNE(config)# endSwitch_3560_VNE# copy run start

Phn III - Hin th cc thng s cu hnh ca HSRP

- T ch Privileged EXEC, s dng cu lnh sau hin th thng s cu hnh ca HSRP:

Switch_3560_VNE# show standby gi0/2 1 detail

- Bn c th hin th thng tin ca HSRP cho mt switch no , hoc cho mt interface no , hoc cho mt nhm HSRP hoc cho mt nhm HSRP trn mt interface.

example:

Switch_3560_VNE# show standbyVLAN1 - Group 1Local state is Standby, priority 105, may preemptHellotime 3 holdtime 10Next hello sent in 00:00:02.182Hot standby IP address is 172.20.128.3 configuredActive router is 172.20.128.1 expires in 00:00:09Standby router is localStandby virtual mac address is 0000.0c07.ac01Name is VNE1_HSRPVLAN1 - Group 100Local state is Active, priority 105, may preemptHellotime 3 holdtime 10Next hello sent in 00:00:02.262Hot standby IP address is 172.20.138.51 configuredActive router is localStandby router is unknown expiredStandby virtual mac address is 0000.0c07.ac64Name is VNE2_HSRP

Mong rng, vi nhng kin thc ca ba phn vit v giao thc HSRP s c th gip cc bn trin khai c giao thc ny hot ng trn h thng mng ca cc bn cng vi nhng ty chn km theo. lm c chc nng d phng ny th ngoi giao thc HSRP cn c mt s cc giao thc khc na: GLBP, VRRP... Mi cc bn n c phng php trin khai nhng giao thc ny trong nhng bi vit tip theo.

====================View Full Version :Loadbalacing trong HSRP

lamvantu23-08-2011, 08:35 AMBi ny cng nm trong : Chuyn v thit k xy dng h tng mng chuyn mch (http://vnpro.org/forum/forumdisplay.php/29-SWITCH-BCMSN)4.9. D phng vi HSRP4.9.1. Gii thiuMt mng c cung cp tnh nng High Availability ngha l cc c s h tng mng hay cc server quan trng trong mng lun lun trong trng thi c th c truy cp n vo bt k thi im no. Hot Standby Routing Prototocol (HSRP) l mt trong nhng s tnh nng cung cp kh nng d phng layer 3 cho cc host trong mng. HSRP s ti u ha vic cung cp cc ng kt ni khi pht hin mt ng link b fail v nhng c ch phc hi sau khi ta gp s c trong mng.HSRP l mt giao thc c pht trin c quyn ca Cisco. HSRP cho php cc router ring bit (hoc cc multilayer switch) s dng mt a ch default gateway o. RFC2281 s miu t giao thc ny mt cch chi tit hn. V c bn, mi router cung cp mt a ch default gateway dng tng kh nng d phng, thng c giao cho mt nhm HSRP. Mt router c bu lm primary hoc l mt active HSRP router; mt router khc s c bu lm standby HSRP router; v nhng con router cn li s mang trng thi listen HSRP. Cc router s gi cc gi tin HSRP hello theo thi gian nh k nhn bit c giao thc HSRP vn cn tn ti v router vn ang hot ng.Note:HSRP gi gi tin hello bng a ch multicast 224.0.0.2 cho tt c router v s dng port UDP l 1985. Mt nhm HSRP s c gn vi mt s ty , t 0 ti 255. Nu bn cu hnh mt nhm HSRP trn cc interface ca cc VLAN, th mt nhm HSRP s c gn cho mt s s tin li hn, tng t nh s ca cc VLAN.

4.9.2. Bu chn HSRP trong Router, Switch Layer 3Bu chn HSRP da trn gi tr u tin(priority)(0 n 255) c cu hnh cho mi router trong nhm. Mc nh, u tin l 100. Cc router c gi tr u tin cao nht( u tin cao nht l 255) s tr thnh active router cho nhm. Nu u tin ca cc router bng nhau, hoc l ang thit lp gi tr mc nh, th router no c a ch Ip trn cng HSRP cao nht th s c bu chn l active router. thit lp u tin, ta s dng cu lnh cu hnh nh sau:Router(config-if)#standby group priority priorityThng thng khi mt router l active trong HSRP th cho d router mi c u tin cao hn cng khng c chn l active, tuy nhin ta cng c th cho router c u tin cao hn lm active bng cch chuyn sang ch bu chn li:Router(config-if)# standby group preemptDo cc router chy HSRP khng t ng nhn bit c khi no cc gi ca ngi s dng khng cn i ra bn ngoi thng qua n na do m ta phi cu hnh nhn bit c, khi no th mt giao tip ca HSRP router b t do khng cn kh nng chuyn lu lng cho ngi dng na th n s t ng gim u tin ca n xung:Router(config-if)#stanby group track type mod/num decrement vlaueDecrement olm cho gi tr ca u tin phi gim xung khi thy mt cng no b t kt ni. Mi cng giao tip ca HSRP ca router s c mt a ch IP ring. Khi HSRP c cu hnh trn mt interface, router tri qua hng hot cc trng thi trc khi tr thnh active router. Mt router trong nhm HSRP cmt s trng thi hot ng nh sau: Disabled, initial, learn, listen, speak, standby, activehttp://img824.imageshack.us/img824/1829/image083n.jpg (http://img824.imageshack.us/i/image083n.jpg/)Khi mt router ang trong mt s nhng trng thi trn th n s thc hin mt s hnh ng nht nh. Khng phi tt c HSRP router trong group s chuyn i sang tt c cc trng thi. V d nh ta c 3 router trong nhm, mt trong ba router thuc nhm khng ng vai tr l standby hay active th con router ny vn duy tr trng thi Listen.Tt c cc router u bt u trng thi Initial, iu ny hin th rng HSRP khng hot ng. Sau n s chuyn sang trng thi learn, trng thi ny router s c c HSRP packet v t nhng packet ny n quyt nh xem virtual IP l g ? v xc nh active router trong nhm HSRP. Khi mt interface thy HSRP packet v quyt nh xem virtual IP l g th n tip tc chuyn sang trng thi listen. Mc ch ca trng thi listen l xc nh xem c Active hay Standby router cho HSRP group. Nu nh c active hay standby router ri th n vn gi nguyn trng thi. Tuy nhin nu gi tin hello khng c thy t bt k router no, interface chuyn sang trng thi Speak.Trng trng thi Speak, cc router ch ng tham d vo qu trnh chn la ra active router, standby router bng cch nhn vo gi tin hello xc nh vai tr ca chng C 3 dng timer c s dng trong giao thc HSRP l active, standby, hello. Nu nh khng c mt gi tin hello no c nhn t Active HSRP router trong khong thi gian active, th router chuyn sang trng thi HSRP mi.

Active timer: dng monitor Active Router. Timer s reset li vo bt k thi im no khi mt router trong group HSRP nhn c gi tin hello c gi ra t Active Router. Gi tr Timer expire ph hp vi gi tr hold time ang c set tng ng vi field trong HSRPhello message.Standby timer: dng monitor standby router. Timer s reset li vo bt k thi im no khi mt router trong group HSRP nhn c gi tin hello c gi ra t Standby Router. Gi tr Timer expire ph hp vi gi tr hold time ang c set tng ng vi field trong HSRP hello message.Hello timer: thi gian ca hello packet. Tt c HSRP router trong bt k trng thi no ca HSRP u to ra hello packetkhi m hello timer expire.

http://img694.imageshack.us/img694/2665/image084qb.jpg (http://img694.imageshack.us/i/image084qb.jpg/) trong trng thi Standby, bi v router lc ny nh l mt ng vin tr thnh Active Router k tip. N nh k gi ra cc gi tin hello. N cng listen cc hello message t active router. Trong mt mng HSRP th ch c duy nht mt standby router.

http://img571.imageshack.us/img571/8367/image085f.jpg (http://img571.imageshack.us/i/image085f.jpg/)Trong Active State, router c nhim v forward packet. N gi a ch Mac o ca group. N cng c nhim v hi p cc gi tin ARP request hng n IP o. Active Router cng nh k gi ra cc hello message. Trong mt HSRP group ch c duy nht mt Active Router.

http://img694.imageshack.us/img694/7664/image086p.jpg (http://img694.imageshack.us/i/image086p.jpg/)

4.9.3. a ch default-gateway ca HSRPMi router trong nhm HSRP u c mt a ch IP ca ring mnh v c gn trn mt interface. a ch ny c s dng cho tt c giao thc nh tuyn v dng qun l cc traffic n hoc c gi i ti mt router.Ngoi ra, cc router cn c mt a ch Ip gateway, y l a ch o c to ra sau khi cu hnh HSRp c thit lp. Client s ch default gateway v a ch o ny. Lu rng a ch trn router v a ch o ny phi cng subnet:Switch(config-if)#standby group ip ip-address [secondary]Khi HSRP c s dng trn mt interface m c a ch IP ph, bn phi thm t kha secondary HSRP c th cung cp thm mt gateway d phng.Mi interface trn router u c duy nht mt a ch MAC. a ch MAC ny lun gn lin vi mt a ch IP duy nht c cu hnh trn interface. i vi a ch IP o, HSRP nh ngha mt a ch MAC c bit l 0000.0c07.acxx vi xx l s i din cho nhm HSRP(c biu din di dng s HEX).

http://img42.imageshack.us/img42/7324/image087f.jpg (http://img42.imageshack.us/i/image087f.jpg/)Bn c th cu hnh trn switch nh sau(CatalystB cu hnh tng t ch i u tin l 100):CatalystA(config)#interface vlan 50CatalystA(config-if)#ip address 192.168.1.10 255.255.255.0CatalystA(config-if)#standby 1 priority 200CatalystA(config-if)#standby 1 preemptCatalystA(config-if)#standby 1 ip 192.168.1.1

4.9.4. Load Balancing trong HSRPHy xem xt mt mng trong c s sng HSRP trn hai con switch distribution cung cp mt gateway d phng cho ngi dng truy cp t lp access. Ch c mt trong hai con tr thnh active router con cn li ch standby. Tt c ngi dng gi cc traffic ca h n active router qua cc ng uplink. Cc standby router ch yu l ngi ch cho n khi mt rotuer xy ra li.Cn bng ti traffic trn hai ng uplink ti hai router vi mt nhm HSRP l khng th. Sau , lm sao cn bng ti vi HSRP? n gin l s dng hai nhm HSRP:Mt nhm c gn cho mt active router kt ni n mt switch. Cc nhm khc th gn vo mt active router khc kt ni n mt switch khc. Bng cch ny s to ra hai gateway o c th s dng ng thi. Phn cn li ca vic ny l lm cho chc nng ca switch ging nh cc standby router cho mt nhm HSRP. Ni cch khc mi router s l active ca nhm ny v l standby ca nhm khc. Cc client s c cu hnh a ch default gateway l mt trong hai i ch o ca nhm HSRP.

http://img855.imageshack.us/img855/500/image088.jpg (http://img855.imageshack.us/i/image088.jpg/)Sau y l cc lnh m bn phi cu hnh c th s dng load balancing trong HSRP :CatalystA(config)#interface vlan 50CatalystA(config-if)#ip address 192.168.1.10 255.255.255.0CatalystA(config-if)#standby 1 priority 200CatalystA(config-if)#standby 1 preemptCatalystA(config-if)#standby 1 ip 192.168.1.1CatalystA(config-if)#standby 1 authentication mykeyCatalystA(config-if)#standby 2 priority 100CatalystA(config-if)#standby 2 ip 192.168.1.2CatalystA(config-if)#standby 2 authentication mykeyCatalystB(config)#interface vlan 50CatalystB(config-if)#ip address 192.168.1.11 255.255.255.0CatalystB(config-if)#standby 1 priority 100CatalystB(config-if)#standby 1 ip 192.168.1.1CatalystB(config-if)#standby 1 authentication mykeyCatalystB(config-if)#standby 2 priority 200CatalystB(config-if)#standby 2 preemptCatalystB(config-if)#standby 2 ip 192.168.1.2CatalystB(config-if)#standby 2 authentication mykey======================Cc giao thc HSRP/VRRP/GLBP v NTPHSRP, VRRP, v GLBPCc IP host c th c vi cch thc khc nhau quyt nh mt router no l router mc nh hoc l default gateway. V d DHCP, BootP, ICMP Router Discovery protocol IRDP, cu hnh bng tay hoc ngay c bng cch dng mt giao thc nh tuyn ng. Hai cch thc ph bin nht l dng DHCP v thng qua cu hnh bng tay s gip cho host c a ch IP ca gateway ca n. Giao thc HSRP, VRRP v GLBP tng trng cho mt s cng c tt nht khc phc cc vn lin quan n vic mt host ch bit mt a ch nh l ng i duy nht ca n ra khi subnet.HSRP cho php nhiu router cng chia s mt a ch IP o v cc a ch MAC sao cho cc my ca ngi dng cui s khng nhn ra khi no c s c mng xy ra. Mt vi c im ch cht ca HSRP l:a ch IP l o v a ch MAC cng o trn router master.Cc router d phng s lng nghe cc gi hello t router ang active, mc nh mi 3 giy v 10 giy cho khong thi gian dead. u tin cao nht (mc nh l 100, trong tm t 1-255) s xc nh router, vi c ch pre-emption b tt.H tr tnh nng tracking, trong u tin ca mt router s b gim khi mt interface ang b theo di b hng hc.C th c ti a 255 nhm HSRP trn mi interface, cho php mt hnh thc cn bng ti.a ch MAC o c dng 0000.0C07.Acxx trong xx l ch s ca nhm HSRP.a ch ca IP o phi trong cng gi tr subnet ca cng ca router trong LAN.a ch ca IP o phi khc vi bt k mt a ch tht no ca cc cng tham gia vo HSRP.HSRP l mt giao thc c quyn ca Cisco. VRRP l mt giao thc thc hn cng mt chc nng. VRRP c vi s khc bit sau so vi HSRP:=============VRRP dng a ch multicast l 0000.5E00.01xx trong xx l dng hex ca ch s nhm ca VRRP.VRRP khng h tr tnh nng theo di cng.Trong Cisco IOS 12.2T/12.3, mc nh VRRP dng c ch pre-emption nhng HSRP th mc nh dng non pre-empt.Thut ng master trong VRRP c cng ngha vi thut ng Active ca HSRP.GLBP l mt giao thc mi hn ca Cisco cho php c tnh cn bng ti bn cnh tnh nng d phng cho gateway. Cc host vn c th ch n mt a ch gateway mc nh, nhng GLBP cho php cc host gi traffic n mt trong bn router trong mt nhm GLBP. thc hin vic ny, router AVG s gn tng router trong mt nhm mt a ch MAC duy nht c dng 0007.B400.xxyy trong xx l a ch nhm v yy l cc s khc nhau cho tng router (01,02,03 hay 04). Khi mt my client hi a ch MAC ca a ch o ca n, AVG s tr li bng mt trong bn a ch MAC o c th. Do c tr li vi cc a ch MAC khc nhau, cc host trong subnet s cn bng traffic gia cc router ch khng ch gi traffic v mt router duy nht.Network Time ProtocolGiao thc NTP phin bn 3 (RFC 1305) cho php cc IP host ng b thi gian ca h thng t mt ngun ng h thi gian. V d, router v switch c th ng b ng h thi gian ca n cc s kin din ra trong h thng y ngha hn do c cc nhn thi gian chnh xc. Theo thit k, phn ln router v switch dng ch NTP client, iu chnh ng h ca n da trn thi gian c cung cp bi mt NTP server. NTP nh ngha cc thng ip ny gia client v server v thut ton mt my client dng iu chnh ng h ca n. Cc routers v switch c th c cu hnh nh NTP server hoc trong ch NTP symmetric active mode l ch trong router hoc switch s ng b ha vi nhau.Cc NTP server c th tham kho cc NTP server khc c mt ngun ng h chnh xc hn. Mc chnh xc uc ch ra bi mc stratum. V d ng h nguyn t v cc h thng nh v ton cu GPS c mc stratum 1 (thp nht/ tt nht c th). i vi mt mng doanh nghip, cc router v cc switch c th tm n cc ngun NTP trn Internet hoc dng cc NTP server phn cng, c tch hp GPS.===============Cu hnh Load balancing vi HSRP v VRRPCc IP host c th c vi cch thc khc nhau quyt nh mt router no l router mc nh hoc l default gateway. V d DHCP, BootP, ICMP Router Discovery protocol IRDP, cu hnh bng tay hoc ngay c bng cch dng mt giao thc nh tuyn ng. Hai cch thc ph bin nht l dng DHCP v thng qua cu hnh bng tay s gip cho host c a ch IP ca gateway ca n. Giao thc HSRP, VRRP v GLBP tng trng cho mt s cng c tt nht khc phc cc vn lin quan n vic mt host ch bit mt a ch nh l ng i duy nht ca n ra khi subnet. Cc giao thc ny gip gii quyt vn d phng cho defaultgateway trong mt mng IP.HSRP cho php nhiu router cng chia s mt a ch IP o v cc a ch MAC sao cho cc my ca ngi dng cui s khng nhn ra khi no c s c mng xy ra. Mt vi c im ch cht ca HSRP l: a ch IP l o v a ch MAC cng o trn router master. Cc router d phng s lng nghe cc gi hello t router ang active, mc nh mi 3 giy v 10 giy cho khong thi gian dead. u tin cao nht (mc nh l 100, trong tm t 1-255) s xc nh router, vi c ch pre-emption b tt. H tr tnh nng tracking, trong u tin ca mt router s b gim khi mt interface ang b theo di b hng hc. C th c ti a 255 nhm HSRP trn mi interface, cho php mt hnh thc cn bng ti. a ch MAC o c dng 0000.0C07.Acxx trong xx l ch s ca nhm HSRP. a ch ca IP o phi trong cng gi tr subnet ca cng ca router trong LAN. a ch ca IP o phi khc vi bt k mt a ch tht no ca cc cng tham gia vo HSRP. HSRP l mt giao thc c quyn ca Cisco. VRRP l mt giao thc thc hn cng mt chc nng.VRRP c vi s khc bit sau so vi HSRP: VRRP dng a ch multicast l 0000.5E00.01xx trong xx l dng hex ca ch s nhm ca VRRP. VRRP khng h tr tnh nng theo di cng. Trong Cisco IOS 12.2T/12.3, mc nh VRRP dng c ch pre-emption nhng HSRP th mc nh dng non pre-empt. Thut ng master trong VRRP c cng ngha vi thut ng Active ca HSRP. Cu hnh c bn HSRPHSRP bu chn da vo Priority(0 n 225), Router c priority s c chn lm active, nu priority bng nhau th router no c i ch IP trn interface HSRP cao hn s c chn lm active. t u tin bng cu lnh:Router(config-if)#standby group priority priority Thng thng th khi mt Router l active trong HSRP ri th cho d Router mi c Priority cao hn cng khng c chn lm active, tuy nhin ta c th cho php router c priority cao lm active vi bt k lc no bng cch chuyn sang ch preempt:Router(config-if)#standby group preemptDo cc router chy HSRP khng t ng nhn bit c khi no th cc gi ca user khng cn i ra bn ngoi c thng qua n na do m ta phi cu hnh nhn bit c, khi no th mt giao tip ca HSRP router b down khng cn kh nng chuyn lu lng cho user na th n s t ng gim priority ca n xung.Router(config-if)#standby group track type mod/num decrementvalueDecrementvalue l gi tr ca Priority phi gim xung khi track thy mt interface no b down. Mi cng giao tip ca HSRP ca router s c mt a ch IP ring. Tuy nhin cc Host s thy router qua mt da ch o khc l Virtual router address.Router(config-if)#standby group ip ip-address Cu hnh Load balancing vi HSRPVi cu hnh loi ny, gi s ta c hai router chay HSRP. Ta to ra hai group v hai ch IP o cho hai group ny. Router1 c Priority ln i vi group th nht v c Priority nh hn i vi Group th hai. Do Router 1 s l active cho group 1 v s l Standby cho group 2. i vi cc host th ta s cu hnh cho mt s host c default gateway l Virtual IP address ca group 1 v mt s host c default gateway l Virtual IP address ca group 2. Do m ti s cn bng 2 router. Mi router s m nhim mt lng ti nht nh===============Redundant Load Balancers Using VRRPPen offers fault tolerance by automatically rerouting traffic from servers that are offline. But what if the load balancer goes down?Using VRRP, it is possible to run two load balancers in an active-passive failover configuration. This requires a special vrrp daemon which can be foundhere. See the instructions that come with vrrpd how to install it.

Install pen and vrrpd on the two load balancer hosts. Start pen on both load balancers and check that both work by surfing to http://10.1.1.2/ and http://10.1.1.3/.Now start vrrpd like this on both load balancers:vrrpd -i eth0 -v 1 10.1.1.4Now try surfing to http://10.1.1.4/. One of the load balancers will be active and respond at that address. Disconnect that load balancer from the network to simulate a failure. Now the other load balancer will take over the address, restoring functionality.In the example network, the firewall uses NAT, although that is in no way necessary. A Cisco PIX would be configured something like this:static (inside,outside) 193.12.6.25 10.1.1.4 netmask 255.255.255.255 0 0conduit permit tcp host 193.12.6.25 eq 80 any==============VRRP (vitual router redundancyprotocol)02.07.2013hoang092837 Cisco cu lnh vrrp,cu hnh vrrp,hoat dong cua vrrp,hot ng vrrp,m hnh c bn vrrp,vitual router redundancy protocol,vrrp,VRRP (vitual router redundancy protocol),vrrp config,vrrp l g ?,t im vrrp li bnh lunVRRP vitual router redundancy protocolHSRPVRRP

Chun ca cisco ,1994IETF,RFC 3768

16 grousp Max255 groups Max

1 active,1 standby,several candidates1 master, tt c con Router cn several backups

To ra 1 IP o,1 MAC oTo ra 1 IP o,1 MAC o

224.0.0.2224.0.0.18

Can track interface or objectCan track only objects

Default times: hello 3s ,hold 10sHello : 1s hold time 3s

1.Hot ng vrrp:Cch bu chn Router Master :+ Da vo priority cao nht : range 1-254+ Nu ch s priority bng nhau th xt n a ch IP cao nht m cng ang tham gia vrrp+ Tt c router cn li th lm backupNhim v ca Master :+ Tr li arp request+ Forward d liu+ Gi gi hello+ Tr li Ip gatewayNhim v ca backup:+ lng nghe gi tin hello ca Master.+ Da vo master down con backkup no ln thay con master khi con master chtM hnh :

2.Cu hnh HSRP:R2######################interface f0/1vrrp 10 ip 193.1.1.1vrrp 10 priority 250vrrp 10 preemptexitendtrack 10 interface f0/0 ip routinginterface f0/1vrrp 10 track 10 decrement 200exitR3######################interface f0/0vrrp 10 ip 193.1.1.1vrrp 10 priority 150vrrp 10 preemptexittrack 10 interface s0/0 ip routinginterface f0/0vrrp 10 track 10 decrement 200exitCc cu lnh thm :Show vrrp : kim tra trng thi vrrpShow vrrp bri : kim tra tng qutNote :+ im t bit l khi to ra router o ! c th cu hnh Ip router trng vi Ip router vt l ,lc priority =255+ c th loadbancing trn group bng cch to nhiu group ,mi con s lm active cho mt groupRouter redundancy with HSRP (Hot Standby Router Protocol)28.06.2013hoang092837 Cisco cu hnh hsrp,config hsrp,hot sandby routing protocol,how does hsrp work ?,hsrp,HSRP (Hot Standby Routing Protocol),hsrp la gi,hsrp of cisco,what is hsrp mean ? li bnh lunRouter redundancy with HSRP(Hot Standby Router Protocol )1. tng hnh thnh.- Gi s bn c mt h thng ang chy n nh,ng mt pht internet router ca bn down ,v ton mng khng th ra internet- Truy cp c internet! lc bn s b sa thi (khng sm hay mun).chnh v u Cisco gip bn suport vn ny.- Chnh l Redundancy router s c mt Con router m nhn vai tr chnh (active) v mt con lm backup (standby). chnh l trng hp d phng khi mt con Router down.2.HSRP l g ?- HSRP l mt giao thc chy d phng redundancy cho router. HSRP ny gn nh t 100% tnh d phng.v n l giao thc ca cisco- Ngoi HSRP ta cn c VRRP(virtual router redundancy protocol) v GLBP (gateway load balancing protocol)3. v d m hnh n gin

4. HSRP hot ng nh th no ?Hiu mt cch n gin ! trong h thng mng nh hnh trn .S c mt con m nhn vai tr chnh v con cn li lm d phng.+ 2 con router u cu hnh to ra mt router o , v Router o c mt a ch IP o v mt Mac o.+ 2 con Router lin lc vi nhau bng gi tin hello.+ Gi tin hello dng multicast 224.0.0.2 UDP port 1985+ Vy bit con no l con chnh ? ta da vo priority number carouter.Ch s priority number cao nht trong 1 group th s l con chnh.default priority number l 100. V tt c Router cn li lm router d phng.5. cu hnh HSRP- d hiu bn c lm nh m hnh trn.lm i lm li t t hiu.- cu hnh chnh :R 2 $$$$$$$$$$$$$$$$$$$$$$$$$interface f0/1standby 1 ip 193.1.1.1 # t ip cho router ostandby 1 priority 200 # t ch s proritystandby 1 preempt # chim quyn ,khi mt router no khc c priority nh hnstandby 1 name HSRP # t tn thistandby 1 track f0/0 100 # gim stexitR 3 $$$$$$$$$$$$$$$$$$$$$$$$$interface f0/0standby 1 ip 193.1.1.1standby 1 priority 150standby 1 preemptstandby 1 name HSRPexit(EkingNguyenHoang)HSRP (Hot Standby Routing Protocol) , VRRP (Virtual Router RedundancyProtocol)11.06.2013hoang092837 Cisco cisco d phng hsrp,hsrp,HSRP (Hot Standby Routing Protocol),overview hsrp vrrp,vrrp,VRRP (Virtual Router Redundancy Protocol),t im ca hsrp vvrp li bnh lunHSRP, VRRP Cc IP host c th c vi cch thc khc nhau quyt nh mt router no l router mc nh hoc l default gateway. V d DHCP, BootP, ICMP Router Discovery protocol IRDP, cu hnh bng tay hoc ngay c bng cch dng mt giao thc nh tuyn ng. Hai cch thc ph bin nht l dng DHCP v thng qua cu hnh bng tay s gip cho host c a ch IP ca gateway ca n. Giao thc HSRP, VRRP v GLBP tng trng cho mt s cng c tt nht khc phc cc vn lin quan n vic mt host ch bit mt a ch nh l ng i duy nht ca n ra khi subnet. HSRP cho php nhiu router cng chia s mt a ch IP o v cc a ch MAC sao cho cc my ca ngi dng cui s khng nhn ra khi no c s c mng xy ra.Mt vi c im ch cht ca HSRP l:- a ch IP l o v a ch MAC cng o trn router master.- Cc router d phng s lng nghe cc gi hello t router ang active, mc nh mi 3 giy v 10 giy cho khong thi gian dead.- u tin cao nht (mc nh l 100, trong tm t 1-255) s xc nh router, vi c ch pre-emption b tt.- H tr tnh nng tracking, trong u tin ca mt router s b gim khi mt interface ang b theo di b hng hc.- C th c ti a 255 nhm HSRP trn mi interface, cho php mt hnh thc cn bng ti.- a ch MAC o c dng 0000.0C07.Acxx trong xx l ch s ca nhm HSRP. a ch ca IP o phi trong cng gi tr subnet ca cng ca router trong LAN.- a ch ca IP o phi khc vi bt k mt a ch tht no ca cc cng tham gia vo HSRP. HSRP l mt giao thc c quyn ca Cisco.VRRP l mt giao thc thc hn cng mt chc nng. VRRP c vi s khc bit sau so vi HSRP:VRRP dng a ch multicast l 0000.5E00.01xx trong xx l dng hex ca ch s nhm ca VRRP.VRRP khng h tr tnh nng theo di cng. (tracking interface) Trong Cisco IOS 12.2T/12.3, mc nh VRRP dng c ch pre-emption nhng HSRP th mc nh dng non pre-empt.Thut ng master trong VRRP c cng ngha vi thut ng Active ca HSRP.HSRP (Hot Standby Routing Protocol) , VRRP (Virtual Router RedundancyProtocol)11.06.2013hoang092837 Cisco cisco d phng hsrp,hsrp,HSRP (Hot Standby Routing Protocol),overview hsrp vrrp,vrrp,VRRP (Virtual Router Redundancy Protocol),t im ca hsrp vvrp li bnh lunHSRP, VRRP Cc IP host c th c vi cch thc khc nhau quyt nh mt router no l router mc nh hoc l default gateway. V d DHCP, BootP, ICMP Router Discovery protocol IRDP, cu hnh bng tay hoc ngay c bng cch dng mt giao thc nh tuyn ng. Hai cch thc ph bin nht l dng DHCP v thng qua cu hnh bng tay s gip cho host c a ch IP ca gateway ca n. Giao thc HSRP, VRRP v GLBP tng trng cho mt s cng c tt nht khc phc cc vn lin quan n vic mt host ch bit mt a ch nh l ng i duy nht ca n ra khi subnet. HSRP cho php nhiu router cng chia s mt a ch IP o v cc a ch MAC sao cho cc my ca ngi dng cui s khng nhn ra khi no c s c mng xy ra.Mt vi c im ch cht ca HSRP l:- a ch IP l o v a ch MAC cng o trn router master.- Cc router d phng s lng nghe cc gi hello t router ang active, mc nh mi 3 giy v 10 giy cho khong thi gian dead.- u tin cao nht (mc nh l 100, trong tm t 1-255) s xc nh router, vi c ch pre-emption b tt.- H tr tnh nng tracking, trong u tin ca mt router s b gim khi mt interface ang b theo di b hng hc.- C th c ti a 255 nhm HSRP trn mi interface, cho php mt hnh thc cn bng ti.- a ch MAC o c dng 0000.0C07.Acxx trong xx l ch s ca nhm HSRP. a ch ca IP o phi trong cng gi tr subnet ca cng ca router trong LAN.- a ch ca IP o phi khc vi bt k mt a ch tht no ca cc cng tham gia vo HSRP. HSRP l mt giao thc c quyn ca Cisco.VRRP l mt giao thc thc hn cng mt chc nng. VRRP c vi s khc bit sau so vi HSRP:VRRP dng a ch multicast l 0000.5E00.01xx trong xx l dng hex ca ch s nhm ca VRRP.VRRP khng h tr tnh nng theo di cng. (tracking interface) Trong Cisco IOS 12.2T/12.3, mc nh VRRP dng c ch pre-emption nhng HSRP th mc nh dng non pre-empt.Thut ng master trong VRRP c cng ngha vi thut ng Active ca HSRP.Glbp(gateway load balancingprotocol)02.07.2013hoang092837 Cisco cu hnh glbp,config glbp,gateway load balancing protocol,glbp dng lm g,glbp l g,Glbp(gateway load balancing protocol),hot ng glbp,the nao la glbp li bnh lunGlbp(gateway load balancing protocol)Loadbancing trong cng mt groupHSRPGLBP

Cisco 1994Cisco 2005

16 group1024 group

1 active,1 standby ,several vandidates1 AVG ,serveral AVF

1 Ip o,1 Mac o1 Ip o ,N MAC o

224.0.0.2224.0.0.102

C th track interface v objectCh c th track object

Hello 3s,hold timer : 10sHello 3s,hold timer : 10s

1.Hot ng GLBP: Nhim v AVG:+ c nhim v request ARP+ gn MAC+ forward d liu Nhim v ca AVF :+ forward d liuCch bu chn con AVG:+ Da vo priority v IP cao nht trn interface tham gia GLBP Cch bu chn con AVF:+ tt c cc con khng phi AVG th u l AVF: u c kh nng forward d liuNote:+ trong mt group ch c ti a 4 router tham gia glbp trong 1 Group+ nu c nhiu Router tham gia mt group th da vo ch s WEI cao nht s c tham gia vo 1 group.+ tracking ch s WEI m thi , bit c port down or ip routing.+ khi AVF=0 th router khng c quyn forward d liu2.M hnh

3.Cu hnh GLBP:R2:################ interface f0/1 glbp 10 ip 193.1.1.1 glbp 10 priority 250 glbp 10 weighting 70 glbp 10 preempt exit track 10 interface f0/0 ip routing int f0/1 glbp 10 weighting track 10 decrement 70R3: ################ interface f0/0 glbp 10 ip 193.1.1.1 glbp 10 priority 200 glbp 10 weighting 140 glbp 10 preempt exit

cấu hình hsrp

Documents