HSRP

kevinivek888 · ‎06-22-2021

Everything workings fine with current HSRP setting.

However, I am having a problem on the HSRP virtual gateway.

Actually, the PC 192.168.1.13 & 192.168.1.14 are located at location B and pointed to the hsrp virtual gateway as their gateway. The hsrp virtual gateway is active at location A. Also we have enforce all traffic go up to gateway by private vlan.

With this setup, while 192.168.1.13 communicate with 192.168.1.14, the traceroute will be

192.168.1.2

192.168.1.14

Therefore, it have to go from location B -> location A -> location B which cause some ms delay within the link between location A and B.

We would like to shorten the delay, therefore, expect have a traceroute result from 192.168.1.13 to 192.168.1.14 would be the next hop as 192.168.1.3 (Location B gateway)

Tried to configure both GW for 192.168.1.13 and 192.168.1.14 as 192.168.1.3.

However, the traceroute still have to go back to 192.168.1.2:

192.168.1.2

192.168.1.14

Does my assumption is correct or the result is a normal habit in HSRP?

Are there any suggestion to overcome this problem other than to config the private vlan as community vlan?

Thanks.

paul driver · ‎06-23-2021

Hello

@kevinivek888 wrote:

With this setup, while 192.168.1.13 communicate with 192.168.1.14, the traceroute will be

192.168.1.2

192.168.1.14

Therefore, it have to go from location B -> location A -> location B which cause some ms delay within the link between location A and B.

FYI- Those hosts are on the same broadcast segment (vlan) as such they won’t use their D/G, The D/G is only used if either of those hosts need to communicate to another host in a different vlan

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

kevinivek888 · ‎06-28-2021

Hello Paul,

As we are using private vlan, so the traffic must go to the gateway first.

This is what we need as we have to make sure all traffic cannot be pass if not passing through our firewall.

Thanks.

balaji.bandi · ‎06-23-2021

Based on the picture, From the access switch do you have only 1 uplink with Parent Switch ? is the access switch just Layer 2 ?

on the Core or Distribution, is the devices is this Layer 2 Link between these devices and extended VLAN 10 ?

what is the advantage you get here for HSRP, since if you have only 1 uplink ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

kevinivek888 · ‎06-28-2021

Based on the picture, From the access switch do you have only 1 uplink with Parent Switch ? In my live network, it should have 1 more uplink from , also Location A layer 2 switch to Location B HSRP switch another one from Location B layer 2 switch to Location A HSRP switch. Thanks for remind the situation.

Is the access switch just Layer 2 ? Yes for Layer 2 switch, but also layer 3 in those switch running HSRP.

on the Core or Distribution, is the devices is this Layer 2 Link between these devices and extended VLAN 10 ? Yes

what is the advantage you get here for HSRP, since if you have only 1 uplink ? Sorry for misunderstanding, it should have 2 uplink, thanks for remind.