Solved

Cisco HSRP Question

Posted on 2016-09-06
13
52 Views
Last Modified: 2016-09-07
Hello Experts,

I have configured HSRP as shown in the attached topology. Can someone please take a look at the configs and let me know why ALSW-9 (ip address 100.1.1.3) cannot ping ALSW-10 (200.1.1.3) and vice-versa. Neither can it ping 200.1.1.2 on DLSW-5

Any thoughts will be greatly appreciated.

Cheers
CCNP-Lab-006-Topology.png
ee-alsw-9.txt
ee-alsw-10.txt
ee-dlsw-4.txt
ee-dlsw-5.txt
0
Comment
Question by:Member_2_7966113
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 9
  • 4
13 Comments
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786739
Experts,

Can I get some help with this please.

Attached is the actual lab that my lab was built on.

You will see they were able to ping between switches, in their case ALS1 and ALS2
CCNP-Lab-006-Solution_-HSRP-and-Swit.pdf
0
 
LVL 29

Expert Comment

by:Predrag Jovic
ID: 41786835
The same problem as previous lab?

issue
#show ip route
on switches ALSW-9 and ALSW-10
if you have routing table then you need to configure at least default route on switches ALSW-9 and ALSW-10 or disable routing on switches by issuing
#no ip routing.
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786870
Predrag,

Thanks for responding.

I need to be clear on this.

One step at a time.

If I issue the command #no ip routing on on ALSW-0 & ALSW-10 will I be able to ping?
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786876
If I issue the command no ip routing on ALSW-9 & 10 what commands should I need to enable me to ping?
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786882
if you have routing table

I do not have a routing table.
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786887
You have been very helpful, but to TBH you're being a little cryptic..
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41786891
I'm assuming you've seen the configs and you will have seen there isn't any routing.. so I don't know why you're asking me if there is any routing ??
0
 
LVL 29

Accepted Solution

by:
Predrag Jovic earned 500 total points
ID: 41787179
The thing is, you should have routing on switches DSLW-4 & DSLW-5. Since there is no # ip routing command in running configurations of any device you should not be able to ping other VLANs. However, from your previous lab I remember that your switches did not show command # ip routing in configuration even if routing was working (typically command is not issued or default commands are not visible in running configuration). So, since there is no ip routing command present in any of your configurations - routing is present on every device or there is no routing on any device. To be able to ping other VLANs you must have routing on you DSLW devices. For ASLW devices you have two choices - turn off routing or add needed routes (either should work). Default gateway is not in use if routing is present on device.
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41787367
Predrag

Thanks for responding - that is an excellent answer - I totally get it now.  

I will do as you suggested.

I will let you know how I get on

Thanks man
0
 
LVL 1

Author Comment

by:Member_2_7966113
ID: 41787551
Predrag,

Thanks for sticking with me on this.

One more thing in relation to this. I have shut down DLSW-4.

I have removed ip routing from switch ALSW-9 and DLSW-5.

I have also removed default route and default gateway from ALSW.

But I can now ping 200.1.1.2 on DLSW-5. , see logs

Can you explain why?

Regards
11-03-55--ALSW-9-64.187.124.3-.txt
11-03-12--DLSW-5-64.187.124.3-.txt
0
 
LVL 29

Expert Comment

by:Predrag Jovic
ID: 41787908
Typically that is the case of proxy ARP.
Proxy ARP can be used as replacement for routing. on many devices proxy ARP is enabled by default and it is considered security risk.
0
 
LVL 1

Author Closing Comment

by:Member_2_7966113
ID: 41788087
Excellent answer. Thanks Predrag
0
 
LVL 29

Expert Comment

by:Predrag Jovic
ID: 41788136
You're welcome.
0

Featured Post

Is Your DevOps Pipeline Leaking?

Is your CI/CD pipeline a hodge-podge of randomly connected tools? You’ve likely got a tool to fix one problem & then a different tool to fix another, resulting in a cluster of tools with overlapping functionality. Learn how to optimize your pipeline with Gartner's recommendations

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Have you experienced traffic destined through a Cisco ASA firewall disappears and you do not know if the traffic stops in the firewall or somewhere else? The solution is the capture feature. This feature was released in 6.2(1) and works in all firew…
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question