Excellent and informative answers.  Thanks!  I will start testing out this design. 

Question - "First of all, for STP, you need to force your primary hsrp to be the primary root stp and your secondary hsrp to be your secondary root."

I'm familiar with forcing vlans to become the root, but how would I do this in hsrp?  Do you mean setting the primary L3 switch as the root and the secondary L3 switch as the secondary root?  What would be a command example for this?

Thanks again!

Yes sorry to misspell what I was thinking about.

What I meant is having all your vlan root on the switch being elected as primary hsrp and a priority a bit bad on the secondary hsrp switch.

As per example, it could be a priority of 4096 on primary switch hsrp  and 8192 on secondary switch hsrp 

Thanks

PS: Please don't forget to rate and mark as correct answer if this answered your question

Thank you.

So currently on the Primary Core - The svi/vlan 10 is setup as follows:

interface vlan10
ip address 10.4.10.1 255.255.255.0
ip helper-address 10.4.5.1

I will add the HSRP commands, but will the IP address in bold need to change? 

Yes your IP of your SVI needs to be changed. The actual IP will be your HSRP VIP IP

But I thought the virtual IP was defined in the standby command? 

So it would be:

Primary L3 switch:

interface vlan 10
ip address 10.4.10.1 255.255.255.0
Standby 10 IP x.x.x.x <- virtual IP?

Getting confused here.

Much more clear, thank you.  I will begin testing this out. 

Thanks again.

you're welcome.

Please don't forget to rate and mark as correct answer if this answered your question

Ok I have a test environment setup for this.  I'm trying to ping the virtual IP address for VLAN 10 from a PC on vlan 10, but it is not replying.  My config:

    interface vlan 10
    ip address 10.4.10.2 255.255.255.0
    standby 1 ip 10.4.10.1
    standby 1 priority 110
    standby 1 preempt

I can ping the new SVI address (10.4.10.2) but not the virtual..

Hi

Please execute the following command on your L3 switches

show standby vlan 10

you should see an active status on the primary L3 switch and standby status on the secondary L3 switch otherwise these L3 switches are not passing the vlan 10 between them. 

Also, could you please share your config and the show vlan output?

thank you in advance. 

I ran the show standby command on both L3 switches, and it comes back with:

Active router is local

Standby router is unknown

So I guess they two L3 switches aren't communicating with each other..  Any ideas why?  I have a trunk link setup between the two.  

sho vlan

VLAN Name                             Status    Ports
---- -------------------------------- --------- -------------------------------
1    default                          active    Fa0/2, Fa0/3, Fa0/4, Fa0/5
                                                Fa0/6, Fa0/7, Fa0/8, Fa0/9
                                                Fa0/10, Fa0/11, Fa0/12, Fa0/13
                                                Fa0/14, Fa0/15, Fa0/16, Fa0/17
                                                Fa0/18, Fa0/19, Fa0/20, Fa0/21
                                                Fa0/22, Fa0/23, Fa0/24, Gig0/2
10  VLAN010                          active    
1002 fddi-default                     active    
1003 token-ring-default               active    
1004 fddinet-default                  active    
1005 trnet-default                    active    

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2
---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------
1    enet  100001     1500  -      -      -        -    -        0      0
10  enet  100141     1500  -      -      -        -    -        0      0
1002 fddi  101002     1500  -      -      -        -    -        0      0   
1003 tr    101003     1500  -      -      -        -    -        0      0   
1004 fdnet 101004     1500  -      -      -        ieee -        0      0   
1005 trnet 101005     1500  -      -      -        ibm  -        0      0   

Remote SPAN VLANs
------------------------------------------------------------------------------

Primary Secondary Type              Ports
------- --------- -----------------

Yeap there is no a standby hsrp, you should have a trunk interface between the L3 switches and pass your vlans through that trunk. 

Also the vlan 10 should be created on both switches

conf t

vlan 10

interface g1/0/1  (example interface)  <-- same config on both L3 switches. 

switchport trunk encapsulation dot1q
switchport mode trunk
no shutdown. 

Also try to shut and not shut the SVI on both L3 switches. 

This is the way I have it setup.  The trunk link between the two routers, vlan 10 is on both routers with the HSRP config you recommended..