Use vrrp to achieve routing and backup between routers (H3C)

Vro routing and backup (H3C) using vrrp 1. job Requirements: vrrp is used to back up between routers to achieve traffic distribution between two routers (improving efficiency). channel technology is used to improve security. topology www.2cto.com

3. device Description: router: H3C Quidway R2621 (R9 R6) Switch: H3C Quidway S2000 (L2 Switch S2) H3C Quidway S3526E (L3 switch S1) 4. device Configuration 4.1 basic configuration: vrorr9: [Router] sysname R9 [R9] int e1.10 [R9-Ethernet1.10] vlan-type dot1q vid 10 // tag [R9-Ethernet1.10] ip add 192.168.10.1 255.255.255.0 // configure ip
// The order of the two steps cannot be reversed! Www.2cto.com [R9-Ethernet1.10] int e1.20 [R9-Ethernet1.20] vlan-type dot1q vid 20 [R9-Ethernet1.20] ip add 192.168.20.1 24 router R6: [R6] int e1.10 [R6-Ethernet1.10] vlan-type dot1q vid 10 [R6-Ethernet1.10] ip add 192.168.10.2 24 [R6-Ethernet1.10] int e1.20 [R6-Ethernet1.20] vlan-type dot1q vid 20 [R6-Ethernet1.20] ip add 192.168.20.2 24 switch s1: [Quidway] sysname s1 [s1] int e0/24 [s1-Ethernet0/24] port link-type trunk // trunk link [s1-Ethernet0/24] port trunk permit vlan all // default only allow vlan1 to pass, so here Please wait .................................... ....... done. [s1-Ethernet0/24] vlan 10 [s1-vlan10] port e0/3 to e0/5 // partitioning port [s1-vlan10] vlan 20 [s1-vlan20] port e0/10 to e 0/15 [s1] int e0/1 [s1-Ethernet0/1] port link-type trunk [s1-Ethernet0/1] port trunk permit vlan all [s1-Ethernet0/1] dis int e0/1 www.2cto.com Ethernet0/1 current state: UPIP Sending Frames 'format is PKTFMT_ETHNT_2, Hardware address is invalid Maximum Transmit Unit is 1500 Media type is twisted pair, loopback not setPort hardware type is 100_BASE_TX100Mbps-speed mode, full-duplex modeLink speed type is autonegotiation, link duplex type is autonegotiationFlow-control is not enabledPort-flow-constrain has not been configured completelyThe Maximum Frame Length is 1536 Broadcast MAX-ratio: 100% PVID: 1Mdi type: autoPort link-type: trunkVLAN passing: 1 (default vlan), 10, 20 VLAN allowed: 1 (default vlan), 2-4094Trunk port encapsulation: IEEE 802.1q
Vswitch s2: [s2] int e1/0/24 [s2-Ethernet1/0/24] port link-type trunk [s2-Ethernet1/0/24] port trunk permit vlan allPlease wait ............ ............................... done. [s2-Ethernet1/0/24] vlan 10 [s2-vlan10] port e1/0/3 to e1/0/5 [s2-vlan10] vlan 20 [s2-vlan20] port e1/0/10 to e1/0/15 [s2] int e1/ 0/1 [s2-Ethernet1/0/1] port link-type trunk [s2-Ethernet1/0/1] port trunk permit vlan allPlease wait .................. ......................... done. [s2-Ethernet1/0/1] dis int e1/0/1Ethernet1/0/1 current state: UPIP Sending Frames 'format is PKTFMT_ETHNT_2, Hardware address is 000f-e274-2158Media type is twisted pair, loopback not setPort hardware type is invalid mode, full-duplex modeLink speed type is autonegotiation, link duplex type is autonegotiationFlow-control is not enabledThe Maximum Frame Length is 1536 Broadcast MAX-ratio: 100% PVID: 1Mdi type: normalPort link-type: trunkVLAN passing: 1 (default vlan), 10, 20 VLAN permitted: 1 (default vlan), 2-4094Trunk port encapsulation: IEEE 802.1q
Test whether: www.2cto.com [R9] ping 192.168.10.2PING 192.168.10.2: 56 data bytes, press CTRL_C to breakReply from 192.168.10.2: bytes = 56 Sequence = 0 ttl = 255 time = 2 msReply from 192.168.10.2: bytes = 56 Sequence = 1 ttl = 255 time = 2 MS [R9] ping 192.168.20.2PING 192.168.20.2: 56 data bytes, press CTRL_C to breakReply from 192.168.20.2: bytes = 56 Sequence = 0 ttl = 255 time = 2 msReply from 192.168.20.2: bytes = 56 Se Quence = 1 ttl = 255 time = 2 ms before configuring the channel: ensure that the two lines are trunk links!
4.2 configure a channel: add a link: [s1-Ethernet0/22] int e0/2 [s1-Ethernet0/2] port link-type trunk [s1-Ethernet0/2] port trunk permit vlan allPlease wait .......... ................................. done [s2] int e1/0/2 [s2-Ethernet1/0/2] port link-type trunk [s2-Ethernet1/0/2] port trunk permit vlan al channel bundle Configuration: // s3526E [s1] link-aggregation eth0/1 to eth0/2 both range: 1 9 17 can be bound consecutively. Others cannot be bound and the ports must be full-duplex, MB!
// S2000 [s2] link-aggregation group 1 mode manual [s2-Ethernet1/0/22] int e1/0/1 [s2-Ethernet1/0/1] port link-aggregation group 1 [s2] int e1/0/2 [s2-Ethernet1/0/2] port link-aggregation group 1
Set full duplex for incoming interface, rate [s1] int e0/1 [s1-Ethernet0/1] duplex full [s1-Ethernet0/1] speed 100 [s1] int e0/2 [s1-Ethernet0/2] duplex? Auto Enable port's duplex negotiation automaticallyfull Full-duplex www.2cto.com half Half-duplex [s1-Ethernet0/2] duplex full [s1-Ethernet0/2] speed 100 [s2-Ethernet1/0/1] duplex full/This one end can be automatically negotiated! [S2-Ethernet1/0/1] speed 100 [s2-Ethernet1/0/1] int e1/0/2 [s2-Ethernet1/0/2] duplex full [s2-Ethernet1/0/2] speed 100 test: unplugging any line between s1 and s2 does not affect normal communication!

4.3 vrrp (Virtual redundancy routing protocol) [R6] vrrp ping-enable // you must run this command first, otherwise, you cannot ping vrrp enable [R9] int e1.10 [R9-Ethernet1.10] vrrp vrid? INTEGER <1-255> Virtual router ID [R9-Ethernet1.10] vrrp vrid 10 virtual-ip 192.168.10.254 // configure virtual gateway to point to [R9-Ethernet1.10] int e1.20 [R9-Ethernet1.20] vrrp vrid 20 Virtual-ip 192.168.255.254 [R6] vrrp ping-enableping vrrp enable [R6] int e1.10 [R6-Ethernet1.10] vrrp vrid 10 virtual-ip 192.168.10.254 [R6-Ethernet1.10] vrrp vrid 10 priority 80 [R6-Ethernet1.10] int e1.20 [R6-Ethernet1.20] vrrp vrid 20 virtual-ip 192.168.255.254 [R6-Ethernet1.20] vrrp vrid 20 priority 80 // tune priority 5. test:


[R6] dis vrrpEthernet1.20 | Virtual Router 20 state: BackupVirtual IP: 192.168.255.254priority: 80 Preempt: YES Delay Time: 0 Timer: 1 Auth Type: NOEthernet1.10 | Virtual Router 10 state: BackupVirtual IP: 192.168.10.254Priority: 80 Preempt: YES Delay Time: 0 Timer: 1 Auth Type: NO [R9] dis vrrpEthernet1.20 | Virtual Router 20 state: MasterVirtual IP: 192.168.255.254priority: 100 Preempt: YES Delay Time: 0 Timer: 1 www.2cto.com Auth Type: NOEthernet1.10 | Virtual Router 10 Status: MasterVirtual IP: 192.168.10.254Priority: 100 Preempt: YES Delay Time: 0 Timer: 1 Auth Type: NO

All traffic is concentrated on one vro! R9 (R6 as backup) shunting configuration: [R6] int e1.20 [R6-Ethernet1.20] vrrp vrid 20 priority 120 [R6-Ethernet1.20] quit [R6] dis vrrpEthernet1.20 | Virtual Router 20 state: masterVirtual IP: Priority: 120 Preempt: YES Delay Time: 0 // default permission for Timer: 1 www.2cto.com Auth Type: NOEthernet1.10 | Virtual Router 10 state: BackupVirtual IP: 192.168.10.254Priority: 80 Preempt: YES Delay Time: 0 Timer: 1 Auth Type: NO

Traffic is distributed across two Routers
After plugging any line in the intermediate channel: (channel function)