Solved

HSRP and STP

Posted on 2011-09-19
9
972 Views
Last Modified: 2012-05-12
I'm testing a HSRP configuration between two layer 3 switches and two layer 2 access switches.

The HSRP functionality between the two layer 3 switches appears to failover as expected but I appear to have a stp convergence issue.

I have one hsrp switch configured as the root primary and the other as the root secondary for all vlans.  When I failed over from the root primary to the root secondary, I lose about 70 packets during a ping test from an access switch to a device connected to the other access switch.  When I perform the same test during a failover from the root secondary to the root primary, I only lost 1 packet.

I'm currently using rapid pvst.  I'm assuming the additional packet loss is due to convergence?  Any ideas?

Thanks


Update:  One thing I didn't mention was how the switches are connected.  I have a trunk between the two layer 3 switches.  Then each access switch as a trunk to each layer 3 switch.
0
Comment
Question by:VSUTech
  • 3
  • 3
  • 2
  • +1
9 Comments
 
LVL 17

Expert Comment

by:rochey2009
ID: 36563667
Hi,

What is the topology and where are the redundant links?
0
 

Author Comment

by:VSUTech
ID: 36563708
The red links are active links.  The connections between the switches are port channel links.
hsrp.jpg
0
 
LVL 17

Expert Comment

by:rochey2009
ID: 36563756
How are you testing this? Are you powering off HSRP A?

can you post

show spanning-tree for one of the VLANs
0
 
LVL 6

Expert Comment

by:Sanjeevloke
ID: 36566019
check with RSTP and tweaking timers for HSRP.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:VSUTech
ID: 36575649
I was able to figure out the issue pinging from the access switch.  I hadn't configured the native vlan in an hsrp group so the pings would fail because the default gateway was down.

One thing I did notice was a trunk to a router attached to one of the access switches goes into a learning state when the root primary goes down or comes back up.  I am testing this by reloading the root primary switch.  

Any ideas why this would happen?  I am running rapid pvst.
hsrp.jpg
0
 
LVL 17

Accepted Solution

by:
rochey2009 earned 167 total points
ID: 36577154
Hi,

Does the router understand rapid spanning tree or is it using traditional spanning tree?

You could use spanning-tree portfast trunk on the trunk link to the router.
0
 
LVL 6

Assisted Solution

by:Sanjeevloke
Sanjeevloke earned 166 total points
ID: 36596728
no i dont think so router understand RSTP.
0
 
LVL 50

Assisted Solution

by:Don Johnston
Don Johnston earned 167 total points
ID: 36596760
Please post the following output:

HSRP A:
show span
show standby brief
show int status
show ip int brief

HSRP B:
show span
show standby brief
show int status
show ip int brief

Layer 2 switch under HSRP A
show span
show int status

Layer 2 switch under HSRP B
show span
show int status
0
 

Author Comment

by:VSUTech
ID: 37078267
This issue ended up being an incorrect configuation.  I was performing all the testing remotely and one of the end devices was plugged into the HSRP router.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Squid Connection Pools 3 46
Cisco Switch Port Security 2 37
Trunk Port 7 33
VLANs and isolation / private networks 3 23
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now