0000119023-vrrp_mstp_guide
DESCRIPTION
VRRP VLANTRANSCRIPT
8/21/2014
1
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
VRRP & MSTPImplementation Guide
8/21/2014
2
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.2
802.1w Rapid Spanning Tree
IEEE Std. 802.1wReplaces legacy STP from 802.1D but interoperable
Determination of the Active Topology for an arbitrary networkAutomatically eliminates loopsChooses optimum links with lowest Path Cost
Can disable Spanning Tree on a per port basisOperates in a backward compatible mode
Automatically inter-operates with legacy STPAllows staged deployment in existing networks
Allows the use of redundant linksAutomatic use of a backup link after failure
Very fast convergence time (less than 5 sec)
8/21/2014
3
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.3
Multiple Spanning Tree Protocol• VLANs are grouped into multiple spanning tree instances• Each spanning-tree instance (MSTI) has it’s own spanning-tree
topology with it’s own Root bridge• Load balance VLANs across multiple data forwarding paths
makes better use of bandwidthe.g. from A, VLAN’s 11-20 carried across link to B;
VLAN’s 21-30 are blocked across this same link
• 48 MSTI supported
VLAN’s 11-20 VLAN’s 21-30
VLAN’s 11-20VLAN’s 21-30
A
CB
X X
Different load balancing schemes canbe supported through the use of regions
8/21/2014
4
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.4
Resiliency with VRRP
• Virtual Router Redundancy Protocol based on RFC2338
• Eliminates router single point of failure• Fast fail-over to virtual redundant router• Transparent to attached devices• VRRP is a common router redundancy
implementation offered by a variety of vendors
Considerations• Create multiple VRRP instances with
the master router configured on separate physical switches for extra redundancy
VLAN C
VLAN C
VLAN B
Master Router Backup Router
VRRP
8/21/2014
5
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.5
Manual load distribution
Manual load distribution
–Link Failure across any path is recoverable using RSTP
–Users in each VLAN are served by a different Layer 3 switch for load distribution
–VRRP failover ensures default gateway protection within 10 seconds
802.1Q (VID=1,2)MSTP
A
CB
VRRP Master
VRRP Backup
VRRP Backup
VRRP Master
VID = 1
VID = 2
8/21/2014
6
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Topology
8/21/2014
7
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.7
Physical Topology
8/21/2014
8
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.8
VRRP Topology
Core #1
VLAN 1 : 192.168.1.1/24
VLAN 2 : 192.168.2.1/24
VLAN 3 : 192.168.3.1/24
VLAN 4 : 192.168.4.2/24
VLAN 5 : 192.168.5.2/24
Core #2
VLAN 1 : 192.168.1.2/24
VLAN 2 : 192.168.2.2/24
VLAN 3 : 192.168.3.2/24
VLAN 4 : 192.168.4.1/24
VLAN 5 : 192.168.5.1/24
VRRP OWNER
VRRP OWNERVRRP BACKUP
VRRP BACKUP
8/21/2014
9
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.9
MSTP Topology Instance 1
Core #1
VLAN 1 : 192.168.1.1/24
VLAN 2 : 192.168.2.1/24
VLAN 3 : 192.168.3.1/24
VLAN 4 : 192.168.4.2/24
VLAN 5 : 192.168.5.2/24
Core #2
VLAN 1 : 192.168.1.2/24
VLAN 2 : 192.168.2.2/24
VLAN 3 : 192.168.3.2/24
VLAN 4 : 192.168.4.1/24
VLAN 5 : 192.168.5.1/24
MSTP Instance 1
MSTP Instance 2 MSTP Instance 2
MSTP Instance 1
8/21/2014
10
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.10
MSTP Topology Instance 2
Core #1
VLAN 1 : 192.168.1.1/24
VLAN 2 : 192.168.2.1/24
VLAN 3 : 192.168.3.1/24
VLAN 4 : 192.168.4.2/24
VLAN 5 : 192.168.5.2/24
Core #2
VLAN 1 : 192.168.1.2/24
VLAN 2 : 192.168.2.2/24
VLAN 3 : 192.168.3.2/24
VLAN 4 : 192.168.4.1/24
VLAN 5 : 192.168.5.1/24
MSTP Instance 1
MSTP Instance 2 MSTP Instance 2
MSTP Instance 1
8/21/2014
11
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.11
VRRP Configuration VLAN 1
vlan 1
ip address 192.168.1.1/24
Tagged a1-a6
vrrp vrid 1
owner
virtual-ip-address 192.168.1.1 255.255.255.0
priority 255
enable
exit
exit
vlan 1
ip address 192.168.1.2/24
Tagged a1-a6
vrrp vrid 1
backup
virtual-ip-address 192.168.1.1 255.255.255.0
priority 240
enable
exit
exit
Notes: Command ‘router vrrp’ must be enabled first
8/21/2014
12
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.12
VRRP Configuration VLAN 2
vlan 2
ip address 192.168.2.1/24
Tagged a1-a6
vrrp vrid 2
owner
virtual-ip-address 192.168.2.1 255.255.255.0
priority 255
enable
exit
exit
vlan 2
ip address 192.168.2.2/24
Tagged a1-a6
vrrp vrid 2
backup
virtual-ip-address 192.168.2.1 255.255.255.0
priority 240
enable
exit
exit
8/21/2014
13
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.13
VRRP Configuration VLAN 3
vlan 3
ip address 192.168.3.1/24
Tagged a1-a6
vrrp vrid 3
owner
virtual-ip-address 192.168.3.1 255.255.255.0
priority 255
enable
exit
exit
vlan 3
ip address 192.168.3.2/24
Tagged a1-a6
vrrp vrid 3
backup
virtual-ip-address 192.168.3.1 255.255.255.0
priority 240
enable
exit
exit
8/21/2014
14
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.14
VRRP Configuration VLAN 4
vlan 4
ip address 192.168.4.2/24
Tagged a1-a6
vrrp vrid 4
backup
virtual-ip-address 192.168.4.1 255.255.255.0
priority 240
enable
exit
exit
vlan 4
ip address 192.168.4.1/24
Tagged a1-a6
vrrp vrid 4
owner
virtual-ip-address 192.168.4.1 255.255.255.0
priority 255
enable
exit
exit
8/21/2014
15
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.15
VRRP Configuration VLAN 5
vlan 5
ip address 192.168.5.2/24
Tagged a1-a6
vrrp vrid 5
backup
virtual-ip-address 192.168.5.1 255.255.255.0
priority 240
enable
exit
exit
vlan 5
ip address 192.168.5.1/24
Tagged a1-a6
vrrp vrid 5
backup
virtual-ip-address 192.168.5.1 255.255.255.0
priority 255
enable
exit
exit
8/21/2014
16
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.16
MSTP Configuration Core #1!All switches in an MSTP “Domain” must have the same configuration parameters.
! Same MSTP Config name. Name is case sensitive.
Core-1(config)# spanning-tree config-name “HPN"
! Same MSTP Revision number.
Core-1(config)# spanning-tree config-revision 1
! Same MSTP Instances definition
Core-1(config)# spanning-tree instance 1 vlan 1 2 3
Core-1(config)# spanning-tree instance 2 vlan 4 5
! Enables Spanning Tree
Core-1(config)# spanning-tree
!Core-switch specific configuration:
!Core-1 is Root in Instance 1
Core-1(config)# spanning-tree instance 1 priority 0
!Core-1 is Secondary Root in Instance 2
Core-1(config)# spanning-tree instance 2 priority 1
!Core-1 is Root in Instance IST (0)
Core-1(config)# spanning-tree priority 0
8/21/2014
17
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.17
MSTP Configuration Core #2!All switches in an MSTP “Domain” must have the same configuration parameters.
! Same MSTP Config name. Name is case sensitive.
Core-1(config)# spanning-tree config-name “HPN"
! Same MSTP Revision number.
Core-1(config)# spanning-tree config-revision 1
! Same MSTP Instances definition
Core-1(config)# spanning-tree instance 1 vlan 1 2 3
Core-1(config)# spanning-tree instance 2 vlan 4 5
! Enables Spanning Tree
Core-1(config)# spanning-tree
!Core-switch specific configuration:
!Core-1 is Root in Instance 1
Core-1(config)# spanning-tree instance 1 priority 1
!Core-1 is Secondary Root in Instance 2
Core-1(config)# spanning-tree instance 2 priority 0
!Core-1 is Root in Instance IST (0)
Core-1(config)# spanning-tree priority 1
8/21/2014
18
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.18
MSTP Configuration Access Switch
Configuration of MSTP on Access switches
Acc-1(config)# spanning-tree config-name “HPN"
Acc-1(config)# spanning-tree config-revision 1
Acc-1(config)# spanning-tree instance 1 vlan 1 2 3
Acc-1(config)# spanning-tree instance 2 vlan 4 5
Acc-1(config)# spanning-tree
Acc-1(config)# vlan 1
Acc-1(config)# tagged 23-24
8/21/2014
19
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.19
Verification
Do VRRP & MSTP Configuration with these commands :
Show vrrp
Show spanning-tree
Show spanning-tree instance 1
Show spanning-tree instance 2
8/21/2014
20
© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Thank you