Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1815
Views
10
Helpful
1
Replies

HSRP Isolation on ASR with OTV

cbreger15
Level 1
Level 1

‎09-30-2015 05:10 PM - edited ‎03-05-2019 02:25 AM

I am setting up a pair of ASR 1004s with OTV over dark fiber.  OTV is working fine, and I was going to add the ACLs for HSRP isolation.  Before I did I wanted to see if HSRP would work across the OTV link and then add the ACL to confirm it is blocking.  I can't get the the SVIs acorss the OTV link to sync via HSRP.  I read on a few blogs that HSRP isolation is inherit now in new versions of code when running OTV.  I can't seem to find anything offical.  Can any confime this is the case?  We are runnning IOS-XE 03.13.03.S.  

 

Thanks is advance.  

Labels:
0 Helpful
1 Reply 1

Vasilii Mikhailovskii
Level 7
Level 7

‎10-05-2015 12:25 PM

Hello.

The filter is on by default for L3 only (since IOS XE 3.5). You may disable it by "no otv filter-fhrp" command. More details - http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/wan/command/wan-cr-book/wan-m1.html#wp3953249580

At the same time if you want to isolate your FHRP between datacenters you must configure L2 ACL (to drop FHRP MACs) and apply it inbound on LAN-facing service instances.

Customers Also Viewed These Support Documents