Alibaba Cloud vswitch RRPP configuration Experiment

I encountered the RRPP configuration of H3C and HW in my work. Here I will try again with the Huawei simulator. Let's discuss the problems we encountered together.
[Theoretical basis]
Www.2cto.com
For more information about RRPP, see the configuration manual.

Below are just a few error-prone points
1. stps must be disabled for the interface used as the RRPP ring.

2. Two important commands:
Control-vlan-id command to create a control VLAN.
Neither the control vlan specified by the parameter VLAN-id nor the sub-control vlan specified by VLAN-id + 1 must be created, VLANs that have not been used by port trunk, mapping, and stacking.
Each RRPP domain is configured with two control VLANs: the master control VLAN and the sub-control VLAN. When configuring, you only need to specify the primary control VLAN, and use the VLAN 1 greater than the primary control vlan id as the subcontrol VLAN.
You cannot directly modify the control VLAN after it is created. You can delete the domain and then reconfigure it, you can also use the undo control-vlan command to delete and reconfigure the control VLAN. The sub-control VLAN is deleted when the domain is deleted.
Www.2cto.com
Protected-vlan reference-instance {instance-id1 [to instance-id2]} & <1-10> | all}, configure the list of protection VLANs for the RRPP domain.
All VLANs allowed by RRPP ports should be configured as protection VLANs, including data VLANs and control VLANs.
Note:
Note the following When configuring the RRPP protection VLAN list:
You must configure the protection VLAN before configuring the RRPP ring.
You can delete or modify the configured protection VLAN before configuring the RRPP ring. You cannot change the protection VLAN After configuring the ring.
In the same physical topology, the control VLAN of this domain cannot be the protection VLAN of other domains.
The control VLAN must be within the protection VLAN range; otherwise, the Ring cannot be configured.
The control VLAN can be added to another instance before being created. It cannot be changed after being created unless the domain is deleted.
When the instance and VLAN ing relationship change, the Protection vlan of the rrpp domain changes accordingly.
All VLANs allowed by the RRPP port should be protected by the RRPP domain.
3. RRPP does not allow control of vlan passing under the port.

4. rrpp adds control VLANs to the STP domain.

Lab software and Topology]

ENSP 1.0 simulator, like. This simulator is really good! I have never had any contact before, and it is quite easy to use, similar to the real environment.

Switch select S5700


The connected interfaces are as follows: LSW0-G0/0/1-----------G0/0/1-LSW1-G0/0/2------------G0/0/1--LSW2-G0/0/2-----------G0/0/2-LSW1

LSW0 acts as the master node, 0/0/2 acts as the master port, and 0/0/1 acts as the secondary port. After the configuration is complete, 0/0/1 is logically blocked.

LSW1 and LSW2 serve as transmission nodes. The port master and slave of the transmission node are irrelevant, but we recommend regular configuration in actual projects.

The configuration script is as follows:
Www.2cto.com

<SW0> dis cu
#
Sysname SW0
#
Vlan batch 20 to 21
#
Rrpp enable
#
Cluster enable
Ntdp enable
Ndp enable
#
Drop illegal-mac alarm
#
Diffserv domain default
#
Stp region-configuration
Instance 1 vlan 20 to 21 100 to 300
Active region-configuration
#
Rrpp domain 1
Control-vlan 20
Protected-vlan reference-instance 1
Ring 1 node-mode master primary-port GigabitEthernet0/0/2 secondary-port GigabitEthernet0/0/1 level 0
Ring 1 enable
#
Drop-profile default
#
Aaa
Authentication-scheme default
Authorization-scheme default
Accounting-scheme default
Domain default
Domain default_admin
Local-user admin password simple admin
Local-user admin service-type http
#
Interface Vlanif1
#
Interface MEth0/0/1
#
Interface GigabitEthernet0/0/1
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#
Interface GigabitEthernet0/0/2
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#

[SW1] dis cu
#
Sysname SW1
#
Vlan batch 20 to 21
#
Rrpp enable
#
Cluster enable
Ntdp enable
Ndp enable
#
Drop illegal-mac alarm
#
Diffserv domain default
#
Stp region-configuration
Instance 1 vlan 20 to 21 100 to 300
Active region-configuration
#
Rrpp domain 1
Control-vlan 20
Protected-vlan reference-instance 1
Ring 1 node-mode transit primary-port GigabitEthernet0/0/1 secondary-port GigabitEthernet0/0/2 level 0
Ring 1 enable
#
Drop-profile default
#
Aaa
Authentication-scheme default
Authorization-scheme default
Accounting-scheme default
Domain default
Domain default_admin
Local-user admin password simple admin
Local-user admin service-type http
#
Interface Vlanif1
#
Interface MEth0/0/1
#
Interface GigabitEthernet0/0/1
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#
Interface GigabitEthernet0/0/2
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#

<SW2> dis cu
#
Sysname SW2
#
Vlan batch 20 to 21
#
Rrpp enable
#
Cluster enable
Ntdp enable
Ndp enable
#
Drop illegal-mac alarm
#
Diffserv domain default
#
Stp region-configuration
Instance 1 vlan 20 to 21 100 to 300
Active region-configuration
#
Rrpp domain 1
Control-vlan 20
Protected-vlan reference-instance 1
Ring 1 node-mode transit primary-port GigabitEthernet0/0/1 secondary-port GigabitEthernet0/0/2 level 0
Ring 1 enable
#
Drop-profile default
#
Aaa
Authentication-scheme default
Authorization-scheme default
Accounting-scheme default
Domain default
Domain default_admin
Local-user admin password simple admin
Local-user admin service-type http
#
Interface Vlanif1
#
Interface MEth0/0/1
#
Interface GigabitEthernet0/0/1
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#
Interface GigabitEthernet0/0/2
Port link-type trunk
Port trunk allow-pass vlan 20 to 21 100 to 300.
Stp disable
#

<SW0> dis rrpp brief
Abbreviations for Switch Node Mode:
M-Master, T-Transit, E-Edge, A-Assistant-Edge

RRPP Protocol Status: Enable
RRPP Working Mode: HW
RRPP Linkup Delay Timer: 0 sec (0 sec default)
Number of RRPP Domains: 1

Domain Index: 1
Control VLAN: major 20 sub 21
Protected VLAN: Reference Instance 1
Hello Timer: 1 sec (default is 1 sec) Fail Timer: 6 sec (default is 6 sec)

Ring Node Primary/Common Secondary/Edge Is
ID Level Mode Port Enabled
----------------------------------------------------------------------------
1 0 M GigabitEthernet0/0/2 GigabitEthernet0/0/1 Yes

<SW0> dis rrpp verbose domain 1
Domain Index: 1
Control VLAN: major 20 sub 21
Protected VLAN: Reference Instance 1
Hello Timer: 1 sec (default is 1 sec) Fail Timer: 6 sec (default is 6 sec)

RRPP Ring: 1
Ring Level: 0
Node Mode: Master
Ring State: Complete
Is Enabled: Enable Is Active: Yes
Primary port: GigabitEthernet0/0/2 Port status: UP
Secondary port: GigabitEthernet0/0/1 Port status: BLOCKED is logically BLOCKED, and the experiment is completed. Www.2cto.com