Solved: HSRP over L3 Po

Emmaljunga · ‎09-19-2025

Dear People:)

I am about to finish my education and regarding that we are preparing a little setup.

This consists of 2 FW with a VIP and an internal network of 2 OSPF zones and 1 in DMZ, connected to 2 pcs of L3 switch.

We have to use OSPFv2 down to the hypervisors.

We have tried to:

1.Bundle 2 physical ports to one etherchannel than turn that into a Layer 2 PO with assigning IP to it (a small /30- just for point to point). Apart from this these 2 physicial ports we haven don anything, the EtherChannel come up.

But how on earth do we run HSRP (LACP through this link? I have created the SVIs on both switches with the command (eg to vlan 80)

Of course all vlans are created and named

"interface Vlan99

ip address 10.3.99.2 255.255.255.0

standby 99 ip 10.3.99.1

standby 99 preempt

standby 99 authentication cisco"

than the opposite on the other switch just with the ip 10.3.99.1 but standby still .1

We have done this to all Vlans but the HSRP doesnt seem the other and considered itself as active.

What am i missing? The point is that each server would have 1 link to each L3 switch for HA and redundancy, thats why HSRP was important.

The physical ports towards the router would be switchports in access to the INT VLAN it needs to access on the server.

I am sure i am missing something obvious and would appreciate your help, have almost gona crazy today. Thank you in advance, B

balaji.bandi · ‎09-19-2025

Please clarity you want to run over Layer3 PO ?

For HSRP to form - you need to Layer 2 Visibility to both. make sure the VLAN required allowed in the trunk have STP working

can you post show spanning brief or summary from both the switches, make sure VLAN are created on switch.

standby 99 priority 110  (one of the side) default to is 100, higher priority become active role.

example Switch 1:

interface Vlan99

ip address 10.3.99.2 255.255.255.0

standby 99 ip 10.3.99.1

standby 99 priority 110

example Switch 2:

interface Vlan99

ip address 10.3.99.3 255.255.255.0

standby 99 ip 10.3.99.1

example :

https://www.balajibandi.com/?p=195

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

balaji.bandi · ‎09-19-2025

Please clarity you want to run over Layer3 PO ?

For HSRP to form - you need to Layer 2 Visibility to both. make sure the VLAN required allowed in the trunk have STP working

can you post show spanning brief or summary from both the switches, make sure VLAN are created on switch.

standby 99 priority 110  (one of the side) default to is 100, higher priority become active role.

example Switch 1:

interface Vlan99

ip address 10.3.99.2 255.255.255.0

standby 99 ip 10.3.99.1

standby 99 priority 110

example Switch 2:

interface Vlan99

ip address 10.3.99.3 255.255.255.0

standby 99 ip 10.3.99.1

example :

https://www.balajibandi.com/?p=195

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Emmaljunga · ‎09-19-2025

Hej BB,

Thank you, I have made a little test in PT.
I made and extra cabel but only with switchport mode trunk and allowed vlan 99, suddenly the hsrp formed.

So in our setup I have to connect another cable between the 2 L3 switches where i purely allow l2 connectivty with trunk? Thank you for your help i feel like a %¤on

balaji.bandi · ‎09-21-2025

Glad all working as expected.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help