Solved

configuring hsrp primay and backup hub

Posted on 2010-11-22
11
650 Views
Last Modified: 2012-05-10
Hello expert,

I have two  3900 series routers configured  as hubs (dmvpn ) to do HSRP.

I also configure three 2900 as spokes (dmvpn)

I configure route A as primary router and router B  as backup.



Let me outline the configuration of Router A.


I configure the two onboard gigabit ports for IP dsl and wireless connections

A switch card was insert on router a given a address for lan connections.

I use dmvpn for the ip dsl tunnel and for the wireless I use site to site vpn with gre

to connect to my  Spokes to the primary hub ( router A)

On router B I am using the exact configuration use on router A


For the two routers

Router A



Ip dsl interface      ppp.ppp.ppp.100

Wireless interface      ddd.ddd.ddd.117

Lan interface       xxx.xxx.xxx.3

Virtual interface     xxx.xxx.xxx.1 (for HSRP)



Router B

Ip dsl interface              ppp.ppp.ppp.100

Wireless Interface         ddd.ddd.ddd.117

Lan interface                 xxx.xxx.xxx.4

Virture interface          xxx.xxx.xxx.1

When I fire both router and do fail over testing simulating a primary router failure the

Backup is taken over seamless and continuing routing.



Problem
----------
 
I am using hyperterm to do any minor adjustment but very often a message would break

On either router saying that there is duplicated address on the ip dsl and wireless

 interface.

I know that this true because a use the same configuration on both router the only unique addresses used is on  the lan interfaces.

Can I use the exact configuration on rouer A and router B?

If  I have to modify the address of the backup router to have unique addresses how would

this affect my dmvpn  and site to site vpn configuration.
0
Comment
Question by:jomfra
  • 4
  • 4
11 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 34197134
DUPLICATE
0
 
LVL 16

Expert Comment

by:SteveJ
ID: 34197372
Use different addresses . . . configure the tunnels as different tunnels. Your HSRP config presumably is so your internal clients have a reliable address to point to . . . that has nothing to do with the source address of the GRE tunnel.

ghiest . . . duplicate?

Good luck,
SteveJ
0
 

Author Comment

by:jomfra
ID: 34198033
Hello SteveJ,

I decided to use dmvpn for my ipdsl connection from spokes to hub.

For the wireless I built separate tunnels from each spoke to my hub.

this was done on Router A.

Your are saying for Router A and Router B (primary and backup) i should

use unique addresses. And do not copy Router A config to Router B.

Let see if a get the picture .

For each spoke i should have two tunnels each :-

(1) to router A
(2) to router B

Regards










0
 
LVL 16

Expert Comment

by:SteveJ
ID: 34198920
Well . . . router A - DSL tunnel and Wireless tunnel and router B - DSL tunnel and wireless tunnel. All tunnels should have unique addresses. The shared address would be the "gateway" address your clients would use on their workstations. Usually this is the LAN address.

Good luck,
SteveJ
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:jomfra
ID: 34199224
hello Stevej

Is any workaround to allow the two primay an backup router with same

config to exist in hsrp setup.

>> The shared address would be the "gateway" address your clients would use on their workstations. Usually this is the LAN address.

I have done the above and my failure over is working okay it is just that i wanted
the two routers to be exact but if this will cause a problem i will have to created the addition tunnels

Regards
0
 
LVL 16

Expert Comment

by:SteveJ
ID: 34201419
thermoduric . . .I didn't post the attachment the asker did.

SteveJ

jomfra,

I am pretty sure you will have trouble if you try and duplicate the addresses. I've worked with HSRP for a long time and have never been in a situation where duping the address was necessary. Perhaps you are "blazing a new trail" but I don't think so.

Good luck,
SteveJ
0
 

Author Comment

by:jomfra
ID: 34205043
hello stevej,

Thanks for the advice i just need a bit of clarification.

>> Well . . . router A - DSL tunnel and Wireless tunnel and router B - DSL tunnel and wireless tunnel.

From the above extraction from your post this will mean i have to do four tunnels
for each spoke two to connect spoke to router A and two more to connect router B

Regards
0
 
LVL 16

Accepted Solution

by:
SteveJ earned 500 total points
ID: 34206271
Yes, that's how my failover in a similar topology is configured. Each spoke has two tunnels: a primary using the primary transport and a secondary over the backup transport.

Good luck,
SteveJ
0
 

Author Comment

by:jomfra
ID: 34206703
hello  thermoduric ,

I am the person that post the question and if it is not a problem i would be grateful if you can delete the attachment.

Regards.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now