Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1143
Views
0
Helpful
3
Replies

HSRP both routers active

vetled
Level 1
Level 1

‎12-20-2019 06:54 AM

Hi,

 

I have a problem with my HSRP setup.

I have 2 computers that will communicate with each other through two (Layer 3) switches Cisco Catalyst 3560-CX as shown below (sorry for the bad drawing):

act_lan.PNG

I have made a HSRP group for vlan 2 (group 10) on one side of the switch, and another HSRP group for the GE 0/1 interfaces (group 20) on the other side of the switch. 

The active and standby routers on vlan 2 work 100% when I disconnect the cables etc.

 

However, HSRP doesn't work for group 20. It seems like the hello messages are not passing through the trunk.

By running show standby, I see that both routers are in active state for group 20, and the standby router is just "unknown". It seems like they are running independently.

 

From PC2, I can ping both 192.168.148.181 and 192.168.148.182.

From PC1, I can only ping either 192.169.148.181 or 192.169.148.182, not both.

 

Am I missing an ip route on the switch or something? I have set these routes on the PCs so that they can ping each other:

         Destination         Gateway               Destination netmask

Route on PC2: 192.169.148.0  192.168.148.180  255.255.255.0

Route on PC1: 192.168.148.0  192.169.148.180  255.255.255.0

 

Labels:
Preview file
3 KB
Preview file
5 KB
0 Helpful
3 Replies 3

Seb Rupik
VIP Alumni
VIP Alumni

‎12-20-2019 07:10 AM - edited ‎12-20-2019 07:14 AM

Hi there,
You design relies on PC1 forwarding the HSRP messages between the two switches.

 

To make it work, take the IP configuration from the Ge0/1 interface and appy it to the VLAN 1 SVI...do this on both switches. You will notice that the HSRP group will correctly form.

 

Then simply change Gi0/1 to an access switchport for VLAN1 on both switches.

 

Normally you would place a layer2 switch in the positions of the PCs and have the PCs connected to that. I am surprised this topology is working as the PCs have two interface in the same subnet...but if PC2 is working, OK. :)

 

Cheers,
Seb.

0 Helpful

paul driver
VIP
VIP

‎12-20-2019 07:14 AM - edited ‎12-20-2019 07:36 AM

Hello

Not sure why you have hsrp on the physical interfaces of the switch also the ace entrys for ACT_OUT is the wrong way around, it should read.
permit udp any host 224.0.0.2 eq 1985
permit udp any host 239.201.31.31 eq 55001
permit udp  host 224.0.0.2  any eq 1985
permit udp  host 239.201.31.31  any eq 55001


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎12-20-2019 07:17 AM - edited ‎12-20-2019 07:26 AM

the design does not make any sense to have 2 HSRP config since they both terminating on same switch.(not sure what is the use case here)

 

you can have 1 SVI and you should have port belong to that VLAN both the side to simplyfy the config.

 

Another note, PC can not work in dual ethernet, since it takes only 1 default route, (unless this a different server) ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card