When the Hot Standby Router Protocol (HSRP) runs, an instability in HSRP during a network disruption or an active router transition may occur. The transition can be caused by a new router added with a higher HSRP priority and configured for preemption. This results in flapping of the HSRP state between active and standby on the existing active router.
The existing active router notices a change in its HSRP state from current active to the new standby state. This triggers a change in the physical link state and causes a Spanning Tree Protocol (STP) transition on the switch.
Since the STP takes more time to move a port to a forwarding state that is greater than the HSRP holdtime, the router does not receive HSRP hellos from the higher priority router within the holdtime. The router moves to an active state.
After the STP timers expire, the switch port enters a forwarding state. The router receives HSRP hellos from the higher priority router and moves to a standby state. This behavior repeats and causes the router to switch between active and standby states.
For a workaround to this problem, upgrade to Cisco IOS Software Release 12.1(3) or later or perform one of these options:
Configure the STP PortFast on the switch port to reduce the time to move the port to a forwarding state.
Configure the HSRP holdtime to a value higher than the time it takes the STP to move a port to the forwarding state.
When the HSRP state changes, configure the router to use the Burned-In Address (BIA) for the HSRP MAC address (instead of the standard address used) to prevent the router from triggering a change in the physical link status.
Hello; Is there a way to implement Password Strength and Management for Common Criteria while retaining the secret password? If not, how can a minimum password length be enforced in IOS XE 17.3.3? Thanks for your support.Regards,
Hello,My manager wants me to find an answer to this topic. We have a class C public subnet that is ours, and we have two data centers with ISR routers with full BGP neighborship to two different ISP at each data center. Those BGP routers are also neighbor...
Cisco recently announced availability of the latest release on the IOS-XE train IOS-XE 17.6.1. This release is the newest Extended Maintenance release on the Catalyst 9000 platforms, which will be supported for lifetime of 36 months. The EMR release would...
c3kx-nm-1g compatibility with 3850I want to replace a WS-C3750X-24S with a WS-C3850-24S-E, I would like to know if the same C3KX-NM-1G card can be used.NAME: "Switch 1 - FRULink Slot 1 - FRULink Module", DESCR: "FRULink 1G Module"PID: C3KX-NM-1G , VID: V0...
Hello everyone,I have a question about the configuration of RADIUS on a Cisco 1941 router.I am using Microsoft Policy Server as a RADIUS server for my router and I got it working but only when using the unencrypted protocol PAP. I wish to use the more sec...