Just want to check if you can use the burned-in MAC option on HSRP on VLAN interfaces in the current NX-OS version 6.x. testing shows that nothing seems to break during failover if this option is configured .
Thanks and Regards.
Solved! Go to Solution.
This issue can only happns if you are using IPv6.
In a vPC, packets that are forwarded through an HSRP virtual IP address (VIP) or virtual MAC address (VMAC) might fail. This situation can occur if a VLAN that is in a vPC has a HSRP V6 group and has the use-bia option enabled on an interface. Layer 3 traffic will be disrupted and packets might not reach the VIP. Removing the use-bia option from the interface in the vPC should correct this issue.
With traditional, there is no need to configure any mac address at all. It is all done for you when you create your HSRP group. Make sure to use HSRP version 2, as it provides the benefit of having the same vlan id matching your HSRP group because ver 2 supports up to 4094 groups. I think, ver 1 is only up to 255.
So, it is nice and convenient to have for example vlan 425 and HSRP group 425. You couldn't do this with ver 1 since the max number of HSRP group is 255. You also want to make sure what ever device is your primary vPC to be the active HSRP and the secondary vPC to be the backup HSRP.
To configure HSRP to use the burned-in MAC address of the interface for the virtual MAC address, use the following command in interface configuration mode:
hsrp use-bia[scope interface]
switch(config-if)# hsrp use-bia
*Plz rate all usefull posts.