Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1660
Views
0
Helpful
7
Replies

HSRP not working in Cisco 3650

Go to solution
pritamjitbiswas
Level 1
Level 1

‎08-26-2020 02:04 AM

Hi everyone.

i have a existing cisco 3650. all the vlan is configure there and this switch is connected to firewall for internet access.

i parches a new 3650 and configure HSRP for redundancy. the old switch is working fine but after configuring the HSRP in new switch my network goes down. the old switch keep electing as active to speak to standby in a never ending loop. all though i have set higher priority to old switch but as soon as i connect the new switch in the network it keep electing as active to speak to standby in a never ending loop can any one help me with this issue. and also in stand alone mode the switch is unable connect the inter net all thou i have created a default route to my firewall. i have attach the running configuration and standby result for reference.

 

thnx for you help

Labels:
Preview file
22 KB
Preview file
15 KB
Preview file
17 KB
Preview file
15 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to pritamjitbiswas

‎08-27-2020 08:31 AM - edited ‎08-27-2020 08:36 AM

Hello @pritamjitbiswas ,

seeing your network diagram the two C3650 do not have a direct L2 trunk between them .

So in order to verify what is happening you need to verify the three C2960 in the middle.

 

if you are using VTP you can have the two C3650 as VTP servers and the other as VTP client.

If all devices are in VTP transparent mode  you need to configure manually all the Vlans on each of the switches.

 

All the switches must agree on the set of defined VLANs to have a working solution.

 

use

show vlan

to compare the vlan database on each switch

use

show vtp status

to check the VTP status of each switch.  if using VTP all switch must agree on the same revision number and on the identity of the last updater (an IP address)

 

Hope to help

Giuseppe

View solution in original post

0 Helpful
7 Replies 7

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-26-2020 02:09 AM

Do you have any high level diagram how these switches connected each other - and FW connected too.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
pritamjitbiswas
Level 1
Level 1
In response to balaji.bandi

‎08-27-2020 06:26 AM

sib.JPG

 

this is the physical diagram

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-26-2020 02:24 AM - edited ‎08-26-2020 02:25 AM

Hello @pritamjitbiswas ,

you need a L2 trunk between the two switches carrying all the Vlans where you want activate HSRP.

The best way to implement this is using a L2 port channel using LACP to have redundancy and increased bandwidth.

 

I have seen in the configuration files  that there are  no inbound ACLs applied to SVI interfaces, so there is no ACL that can drop HSRP hello messages. This is good.

 

Hope to help

Giuseppe

 

0 Helpful

Go to solution
paul driver
VIP
VIP

‎08-26-2020 02:50 AM

Hello

Is it due to the physcial location of those two switches as to why you just havent stacked them into one logical device instead of using them individually and running HSRP between them?


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
Vick28719
Level 1
Level 1

‎08-26-2020 04:59 AM

I hope these are your lab routers, otherwise suggest changing your password and encrypting them for future. 

 

Next i dont see trunks between the 2 switches to pass all the vlan. Remove preempt on the secondary switch. 

 

When you activate HSRP on both side, they need to see the multicast hello packets on both ends, else they will fail to establish HSRP relationship and will keep bouncing between active/listener state. 

 

For the internet to be down when you enable HSRP, what is the return route from FW pointing to ? 

0 Helpful

Go to solution
pritamjitbiswas
Level 1
Level 1

‎08-27-2020 06:24 AM

HI every one. thanx for your reply . i have one question if there is any problem in the configuration how only vlan 5,30,160,170,180 working fine as it should be but other vlan not working .

0 Helpful

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame
In response to pritamjitbiswas

‎08-27-2020 08:31 AM - edited ‎08-27-2020 08:36 AM

Hello @pritamjitbiswas ,

seeing your network diagram the two C3650 do not have a direct L2 trunk between them .

So in order to verify what is happening you need to verify the three C2960 in the middle.

 

if you are using VTP you can have the two C3650 as VTP servers and the other as VTP client.

If all devices are in VTP transparent mode  you need to configure manually all the Vlans on each of the switches.

 

All the switches must agree on the set of defined VLANs to have a working solution.

 

use

show vlan

to compare the vlan database on each switch

use

show vtp status

to check the VTP status of each switch.  if using VTP all switch must agree on the same revision number and on the identity of the last updater (an IP address)

 

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card