Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2904
Views
10
Helpful
2
Replies

HSRP and ACLs on a nexus 7k

Go to solution
ncowger
Level 1
Level 1

‎04-01-2013 11:24 AM - edited ‎03-03-2019 07:01 AM

I understand that HSRP sends a notification to 224.0.0.2  So why doesn't HSRP work between 2 routers given the following config:

ACL on both:

IP access list VoiceACL

        10 permit ip any 172.20.0.40/32

        20 permit ip any 172.20.0.65/32

        28 permit ip 224.0.0.2/32 any log

        29 permit ip any 224.0.0.2/32 log

Nexus 1:

interface Vlan1105

  ip access-group VoiceACL in

  no ip redirects

  ip address 172.20.105.3/24

  no ipv6 redirects

  ip pim sparse-mode

  ip pim dr-priority 100

  hsrp version 2

  hsrp 1105

    authentication md5 key-chain hsrp-key

    preempt

    priority 110

    ip 172.20.105.1

  ip dhcp relay address 172.20.0.40

  description ~~~~~ Wireless VoIP ~~~~~

  no shutdown

Nexus 2:

interface Vlan1105

  ip access-group VoiceACL in

  no ip redirects

  ip address 172.20.105.4/24

  no ipv6 redirects

  ip pim sparse-mode

  hsrp version 2

  hsrp 1105

    authentication md5 key-chain hsrp-key

    preempt

    ip 172.20.105.1

  ip dhcp relay address 172.20.0.40

  description ~~~~~ Wireless VoIP ~~~~~

  no shutdown

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Steve Fuller
Level 9
Level 9

‎04-02-2013 01:07 AM

Hi,

You have HSRP version 2 configured here which uses the destination IP multicast address of 224.0.0.102 rather than 224.0.0.2 as used by HSRP v1.

I'd suggest you update the ACL to include the 224.0.0.102 address.

Regards

View solution in original post

2 Replies 2

Go to solution
Steve Fuller
Level 9
Level 9

‎04-02-2013 01:07 AM

Hi,

You have HSRP version 2 configured here which uses the destination IP multicast address of 224.0.0.102 rather than 224.0.0.2 as used by HSRP v1.

I'd suggest you update the ACL to include the 224.0.0.102 address.

Regards

Go to solution
ncowger
Level 1
Level 1
In response to Steve Fuller

‎04-02-2013 07:46 AM

You are correct.  Thanks!

0 Helpful
Customers Also Viewed These Support Documents