虚拟路由冗余协议VRRP
<h1 style="text-align: left; margin-bottom: 10px;">什么是VRRP?</h1>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">虚拟路由冗余协议VRRP(Virtual Router Redundancy Protocol)是一种用于提高网络可靠性的容错协议。通过VRRP,可以在主机的下一跳设备出现故障时,及时将业务切换到备份设备,从而保障网络通信的连续性和可靠性。</span></p>
<h1 style="text-align: left; margin-bottom: 10px;">VRRP的工作原理</h1>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><strong style="color: blue;">VRRP的三种状态</strong></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">VRRP协议中定义了三种状态机:初始状态(Initialize)、活动状态(Master)、备份状态(Backup)。其中,只有处于Master状态的设备才可以转发那些发送到虚拟IP地址的报文。下表详细描述了三种状态。</p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><strong style="color: blue;">VRRP选举机制</strong></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">VRRP根据优先级来确定虚拟路由器中每台路由器的角色(Master路由器或Backup路由器)。优先级越高,则越有可能成为Master路由器。</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">初始创建的路由器工作在Backup状态,通过VRRP报文的交互获知虚拟路由器中其他成员的优先级:</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">如果VRRP报文中Master路由器的优先级高于自己的优先级,则路由器保持在Backup状态;</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">如果VRRP报文中Master路由器的优先级低于自己的优先级,采用抢占工作方式的路由器将抢占成为Master状态,周期性地发送VRRP报文,采用非抢占工作方式的路由器仍保持Backup状态;</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">如果在一定时间内没有收到VRRP报文,则路由器切换为Master状态。</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">VRRP优先级的取值范围为0到255(数值越大表明优先级越高),可配置的范围是1到254,优先级0为系统保留给路由器放弃Master位置时候使用,255则是系统保留给IP地址拥有者使用。当路由器为IP地址拥有者时,其优先级始终为255且不能修改。因此,当虚拟路由器内存在IP地址拥有者时,只要其工作正常,则为Master路由器</span><span style="color: green;">,选举方式如下图所示。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/be182687836343909d9b56a8c623579f~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=492a8w8XcijsSFJRFhnUbzhsbzY%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">注:当vrrp组中的优先级相同时,先启动完成初始化的路由器为Master不比较IP大小,backup不抢占;只有vrrp组中的所有路由器同时启动且优先级相同才比较IP大小,IP大的为Master</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><strong style="color: blue;">配置命令</strong></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">vrrp主备备份</p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/d7e683e6418e4795abd3c203c9797af2~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=vk8Jy%2FqTb8kndoh64akKpHxfEYU%3D" style="width: 100%; margin-bottom: 20px;"></div><span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.111</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span> <span style="color: green;">//设备在VRRP备份组中的优先级缺省为100,修改Master设备的优先级大于Backup设备</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span> <span style="color: green;">//设备在VRRP备份组中缺省采用立即抢占方式。修改Master设备的延迟抢占时间,以避免在网络环境不稳定时,由于双方频繁抢占而导致流量中断的问题</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;">SwitchB配置相同</span>
<span style="color: green;"></span> <span style="color: green;">display</span> <span style="color: green;">vrrp</span>
<span style="color: green;">Vlanif100</span> <span style="color: green;">|</span> <span style="color: green;">Virtual</span> <span style="color: green;">Router</span> <span style="color: green;">1</span>
<span style="color: green;">State :</span> <span style="color: green;">Master</span>
<span style="color: green;">Virtual IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.111</span>
<span style="color: green;">Master IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.1</span>
<span style="color: green;">PriorityRun :</span> <span style="color: green;">120</span>
<span style="color: green;">PriorityConfig :</span> <span style="color: green;">120</span>
<span style="color: green;">MasterPriority :</span> <span style="color: green;">120</span>
<span style="color: green;">Preempt : YES Delay Time :</span> <span style="color: green;">20</span> <span style="color: green;">s</span>
<span style="color: green;">TimerRun :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">TimerConfig :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">Auth type :</span> <span style="color: green;">NONE</span>
<span style="color: green;">Virtual MAC :</span> <span style="color: green;">0000</span><span style="color: green;">-5e00</span><span style="color: green;">-0101</span>
<span style="color: green;">Check TTL :</span> <span style="color: green;">YES</span>
<span style="color: green;">Config type :</span> <span style="color: green;">normal-vrrp</span>
<span style="color: green;">Backup-forward :</span> <span style="color: green;">disabled</span>
<span style="color: green;">Create time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:15:46</span>
<span style="color: green;">Last change time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:20:56</span>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">vrrp实现负载分担</p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/52224a241a564602b48805f56c25e7d2~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=anoDTUMXYYsp3mLyPAJxDAZDlmg%3D" style="width: 100%; margin-bottom: 20px;"></div><span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.10</span><span style="color: green;">.111</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span> <span style="color: green;">//设备在VRRP备份组中的优先级缺省为100,修改Master设备的优先级大于Backup设备</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span> <span style="color: green;">//设备在VRRP备份组中缺省采用立即抢占方式。修改Master设备的延迟抢占时间,以避免在网络环境不稳定时,由于双方频繁抢占而导致流量中断的问题</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">500</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">2</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.50</span><span style="color: green;">.111</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.10</span><span style="color: green;">.111</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">500</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">2</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.50</span><span style="color: green;">.111</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">2</span> <span style="color: green;">priority</span> <span style="color: green;">120</span> <span style="color: green;">//设备在VRRP备份组中的优先级缺省为100,修改Master设备的优先级大于Backup设备</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">2</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span> <span style="color: green;">//设备在VRRP备份组中缺省采用立即抢占方式。修改Master设备的延迟抢占时间,以避免在网络环境不稳定时,由于双方频繁抢占而导致流量中断的问题</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<h1 style="text-align: left; margin-bottom: 10px;">VRRP与BFD联动</h1>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">VRRP备份组通过收发VRRP协议报文进行主备状态的协商,以实现设备的冗余备份功能。当VRRP备份组之间的链路出现故障时,由于此时VRRP报文无法正常协商,Backup设备需要等待3倍协商周期(通常为3秒左右)后才会切换为Master设备,在等待切换期间内,业务流量仍会发往Master设备,此时会造成业务流量丢失。</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">BFD能够快速检测、监控网络中链路或者IP路由的连通状况,通过部署VRRP与BFD联动,可以使主备切换的时间控制在1秒以内,有效解决上述问题。通过在Master设备和Backup设备之间建立BFD会话并与VRRP备份组进行绑定,由BFD机制快速检测VRRP备份组的通信故障,并在出现故障时及时通知VRRP备份组进行主备切换,从而大大减少应用中断时间。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/a14ebd91e71b4b72aa245071b6d0e9b9~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=Fu%2BaeyRAhC%2BqwKZjP4eJe3S%2FFAM%3D" style="width: 100%; margin-bottom: 20px;"></div><span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span> <span style="color: green;">//设备在VRRP备份组中的优先级缺省为100,修改Master设备的优先级大于Backup设备</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span> <span style="color: green;">//设备在VRRP备份组中缺省采用立即抢占方式。修改Master设备的延迟抢占时间,以避免在网络环境不稳定时,由于双方频繁抢占而导致流量中断的问题</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">bfd</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">bfd</span> <span style="color: green;">atob</span> <span style="color: green;">bind</span> <span style="color: green;">peer-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.2</span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span> <span style="color: green;">//配置静态BFD会话,监测备份组之间的链路。</span>
<span style="color: green;"></span> <span style="color: green;">discriminator</span> <span style="color: green;">local</span> <span style="color: green;">1</span> <span style="color: green;">//配置BFD会话的本地标识符,SwitchA上的本地标识符需要与SwitchB上的远端标识符一致</span>
<span style="color: green;"></span> <span style="color: green;">discriminator</span> <span style="color: green;">remote</span> <span style="color: green;">2</span> <span style="color: green;">//配置BFD会话的远端标识符,SwitchA上的远端标识符需要与SwitchB上的本地标识符一致</span>
<span style="color: green;"></span> <span style="color: green;">min-rx-interval</span> <span style="color: green;">100</span> <span style="color: green;">//配置BFD报文的接收间隔</span>
<span style="color: green;"></span> <span style="color: green;">min-tx-interval</span> <span style="color: green;">100</span> <span style="color: green;">//配置BFD报文的发送间隔</span>
<span style="color: green;"></span> <span style="color: green;">commit</span> <span style="color: green;">//提交BFD会话配置,使配置生效</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">display</span> <span style="color: green;">bfd</span> <span style="color: green;">session</span> <span style="color: green;">all</span>
<span style="color: green;">--------------------------------------------------------------------------------</span>
<span style="color: green;">Local</span> <span style="color: green;">Remote</span> <span style="color: green;">PeerIpAddr</span> <span style="color: green;">State</span> <span style="color: green;">Type</span> <span style="color: green;">InterfaceName</span>
<span style="color: green;">--------------------------------------------------------------------------------</span>
<span style="color: green;">1</span> <span style="color: green;">2</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.2</span> <span style="color: green;">Up</span> <span style="color: green;">S_IP_IF</span> <span style="color: green;">Vlanif100</span>
<span style="color: green;">--------------------------------------------------------------------------------</span>
<span style="color: green;">Total UP/DOWN Session Number :</span> <span style="color: green;">1</span><span style="color: green;">/0</span>
<span style="color: green;"></span> <span style="color: green;">bfd</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">bfd</span> <span style="color: green;">btoa</span> <span style="color: green;">bind</span> <span style="color: green;">peer-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.1</span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">discriminator</span> <span style="color: green;">local</span> <span style="color: green;">2</span>
<span style="color: green;"></span> <span style="color: green;">discriminator</span> <span style="color: green;">remote</span> <span style="color: green;">1</span>
<span style="color: green;"></span> <span style="color: green;">min-rx-interval</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">min-tx-interval</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">commit</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;">配置vrrp与bfd联动</span>
<span style="color: green;">在SwitchB上配置VRRP与BFD联动,当BFD会话状态Down时,SwitchB的优先级增加40</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">vlanif</span> <span style="color: green;">100</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">track</span> <span style="color: green;">bfd-session</span> <span style="color: green;">2</span> <span style="color: green;">increased</span> <span style="color: green;">40</span> <span style="color: green;">//其中2代表BFD会话的本地标识符</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;">验证</span>
<span style="color: green;"></span> <span style="color: green;">display</span> <span style="color: green;">vrrp</span>
<span style="color: green;">Vlanif100</span> <span style="color: green;">|</span> <span style="color: green;">Virtual</span> <span style="color: green;">Router</span> <span style="color: green;">1</span>
<span style="color: green;">State :</span> <span style="color: green;">Master</span>
<span style="color: green;">Virtual IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;">Master IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.1</span>
<span style="color: green;">PriorityRun :</span> <span style="color: green;">120</span>
<span style="color: green;">PriorityConfig :</span> <span style="color: green;">120</span>
<span style="color: green;">MasterPriority :</span> <span style="color: green;">120</span>
<span style="color: green;">Preempt : YES Delay Time :</span> <span style="color: green;">20</span> <span style="color: green;">s</span>
<span style="color: green;">TimerRun :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">TimerConfig :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">Auth type :</span> <span style="color: green;">NONE</span>
<span style="color: green;">Virtual MAC :</span> <span style="color: green;">0000</span><span style="color: green;">-5e00</span><span style="color: green;">-0101</span>
<span style="color: green;">Check TTL :</span> <span style="color: green;">YES</span>
<span style="color: green;">Config type :</span> <span style="color: green;">normal-vrrp</span>
<span style="color: green;">Backup-forward :</span> <span style="color: green;">disabled</span>
<span style="color: green;">Create time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:15:46</span>
<span style="color: green;">Last change time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:15:46</span>
<span style="color: green;"></span> <span style="color: green;">display</span> <span style="color: green;">vrrp</span>
<span style="color: green;">Vlanif100</span> <span style="color: green;">|</span> <span style="color: green;">Virtual</span> <span style="color: green;">Router</span> <span style="color: green;">1</span>
<span style="color: green;">State :</span> <span style="color: green;">Backup</span>
<span style="color: green;">Virtual IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;">Master IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.1</span>
<span style="color: green;">PriorityRun :</span> <span style="color: green;">100</span>
<span style="color: green;">PriorityConfig :</span> <span style="color: green;">100</span>
<span style="color: green;">MasterPriority :</span> <span style="color: green;">120</span>
<span style="color: green;">Preempt : YES Delay Time :</span> <span style="color: green;">0</span> <span style="color: green;">s</span>
<span style="color: green;">TimerRun :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">TimerConfig :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">Auth type :</span> <span style="color: green;">NONE</span>
<span style="color: green;">Virtual MAC :</span> <span style="color: green;">0000</span><span style="color: green;">-5e00</span><span style="color: green;">-0101</span>
<span style="color: green;">Check TTL :</span> <span style="color: green;">YES</span>
<span style="color: green;">Config type :</span> <span style="color: green;">normal-vrrp</span>
<span style="color: green;">Backup-forward :</span> <span style="color: green;">disabled</span>
<span style="color: green;">Track BFD : 2 Priority increased :</span> <span style="color: green;">40</span>
<span style="color: green;">BFD-session state :</span> <span style="color: green;">UP</span>
<span style="color: green;">Create time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:15:46</span>
<span style="color: green;">Last change time :</span> <span style="color: green;">2012</span><span style="color: green;">-01</span><span style="color: green;">-12</span> <span style="color: green;">20</span><span style="color: green;">:15:46</span>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">模拟故障</p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;"># 在SwitchA的接口GE1/0/1上执行</span><strong style="color: blue;"><span style="color: green;">shutdown</span></strong><span style="color: green;">命令,模拟链路故障。此时在SwitchA和SwitchB上分别执行</span><strong style="color: blue;"><span style="color: green;">display vrrp</span></strong><span style="color: green;">命令,可以看出SwitchA状态变为Initialize,SwitchB状态变为Master,联动的BFD会话状态为DOWN。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/580b96a28fc040aa9b395d84fa0724d9~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=vVF9WMfgLY0pm72%2F8OAaWXf%2B%2Fhg%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">在SwitchA的接口GE1/0/1上执行</span><strong style="color: blue;"><span style="color: green;">undo shutdown</span></strong><span style="color: green;">命令,模拟故障恢复。等待20秒后,分别在SwitchA和SwitchB上执行</span><strong style="color: blue;"><span style="color: green;">display vrrp</span></strong><span style="color: green;">命令,可以看出SwitchA状态恢复为Master,SwitchB状态恢复为Backup,联动的BFD会话状态恢复为UP。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/0c616bb620bd475c8f9eb1640a41929c~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=Qpc96Ssopu6MZ%2FFoIgKm%2BsLizEU%3D" style="width: 100%; margin-bottom: 20px;"></div>
<h1 style="text-align: left; margin-bottom: 10px;">VRRP与接口状态联动监视上行接口</h1>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/dc4e2b3430bc4d52a75588e6d6325f5e~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=qpVU7E%2FWU1V9v9TeKW6inv1pQIc%3D" style="width: 100%; margin-bottom: 20px;"></div><span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">2</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">2</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">2</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">track</span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span> <span style="color: green;">reduced</span> <span style="color: green;">40</span> <span style="color: green;">监视的接口GE1/0/0状态Down时,RouterA的优先级降低40。</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">display</span> <span style="color: green;">vrrp</span>
<span style="color: green;">GigabitEthernet2/0/0</span> <span style="color: green;">|</span> <span style="color: green;">Virtual</span> <span style="color: green;">Router</span> <span style="color: green;">1</span>
<span style="color: green;">State :</span> <span style="color: green;">Master</span>
<span style="color: green;">Virtual IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.3</span>
<span style="color: green;">Master IP :</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.1</span>
<span style="color: green;">PriorityRun :</span> <span style="color: green;">120</span>
<span style="color: green;">PriorityConfig :</span> <span style="color: green;">120</span>
<span style="color: green;">MasterPriority :</span> <span style="color: green;">120</span>
<span style="color: green;">Preempt : YES Delay Time :</span> <span style="color: green;">20</span> <span style="color: green;">s</span>
<span style="color: green;">TimerRun :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">TimerConfig :</span> <span style="color: green;">1</span> <span style="color: green;">s</span>
<span style="color: green;">Auth Type :</span> <span style="color: green;">NONE</span>
<span style="color: green;">Virtual Mac :</span> <span style="color: green;">0000</span><span style="color: green;">-5e00</span><span style="color: green;">-0101</span>
<span style="color: green;">Check TTL :</span> <span style="color: green;">YES</span>
<span style="color: green;">Config type :</span> <span style="color: green;">normal-vrrp</span>
<span style="color: green;">Backup-forward :</span> <span style="color: green;">disabled</span>
<span style="color: green;">Track IF : GigabitEthernet1/0/0 Priority reduced :</span> <span style="color: green;">40</span>
<span style="color: green;">IF state :</span> <span style="color: green;">UP</span>
<span style="color: green;">Create time :</span> <span style="color: green;">2012</span><span style="color: green;">-05</span><span style="color: green;">-22</span> <span style="color: green;">17</span><span style="color: green;">:32:56</span>
<span style="color: green;">Last change time :</span> <span style="color: green;">2012</span><span style="color: green;">-05</span><span style="color: green;">-22</span> <span style="color: green;">17</span><span style="color: green;">:33:00</span>
<h1 style="text-align: left; margin-bottom: 10px;">VRRP与路由联动监视上行链路</h1>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">如图7-17所示,局域网内的主机通过Switch双归属到部署了VRRP备份组的RouterA和RouterB,其中RouterA为Master。正常情况下,RouterA承担网关工作,用户侧流量由Switch → RouterA → RouterC → RouterE进行转发。</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">用户希望当RouterC到RouterE之间路由撤销或者状态变为非激活时,VRRP备份组能感知并进行主备切换。启用RouterB承担业务转发,以减小链路故障对业务转发的影响。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/f4991be6c26f4fd3918f0cbb43463ec4~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=hfE%2F%2B%2BM9xFIsHR8B5ZCp3s4Dy9Q%3D" style="width: 100%; margin-bottom: 20px;"></div><span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.10</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.10</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">track</span> <span style="color: green;">ip</span> <span style="color: green;">route</span> <span style="color: green;">172.16</span><span style="color: green;">.1</span><span style="color: green;">.0</span> <span style="color: green;">24</span> <span style="color: green;">reduced</span> <span style="color: green;">40</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">验证</p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">在RouterA上执行</span><strong style="color: blue;"><span style="color: green;">display isis route</span></strong><span style="color: green;">命令,可以看到存在一条去往172.16.1.0/24网段的路由。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/6f874bf962534c94a8285e57828a231e~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=3efw8SkSHpr5C%2Bp%2Fk%2FKRO1Me8JM%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;"># 分别在RouterA和RouterB上执行</span><strong style="color: blue;"><span style="color: green;">display vrrp</span></strong><span style="color: green;">命令,可以看到RouterA的状态为Master,联动的路由状态为Reachable,RouterB的状态为Backup</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/2fc9d37923f7408db3ee124098bb27b2~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=8ihjOY5vl7USNW8uDx3vj9LMs1w%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;"># 在RouterE的接口GE1/0/0上执行</span><strong style="color: blue;"><span style="color: green;">shutdown</span></strong><span style="color: green;">命令,模拟链路故障。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/9e22a11937034413a9da2555bd3e41eb~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=1eijEPaCfVN4S3yVRX80ZIBkDoo%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;"># 分别在RouterA和RouterB上执行</span><strong style="color: blue;"><span style="color: green;">display vrrp</span></strong><span style="color: green;">命令,可以看到RouterA的状态切换为Backup,联动的路由状态为Unreachable,RouterB的状态切换为Master。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/f3c84129c7e84f2cbbbcb151fddc18b4~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=fBvDqtqsZF%2FXpaVpfksQUeWuPcQ%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;"># 在RouterE的接口GE1/0/0上执行</span><strong style="color: blue;"><span style="color: green;">undo shutdown</span></strong><span style="color: green;">命令,恢复链路故障。等待20秒后,分别在RouterA和RouterB上执行</span><strong style="color: blue;"><span style="color: green;">display vrrp</span></strong><span style="color: green;">命令,可以看到RouterA的状态恢复为Master,联动的路由状态恢复为Reachable,RouterB的状态恢复为Backup。</span></p>
<h1 style="text-align: left; margin-bottom: 10px;">VRRP与NQA联动监视上行链路</h1>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><strong style="color: blue;">组网需求</strong></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">如图7-16所示,局域网内的主机通过Switch双归属到部署了VRRP备份组的RouterA和RouterB,其中RouterA为Master。正常情况下,RouterA承担网关工作,用户侧流量由Switch → RouterA → RouterC → RouterE进行转发。</span></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><span style="color: green;">用户希望当RouterC到RouterE之间的链路故障或链路质量较差时,VRRP备份组可以感知并进行主备切换,启用RouterB承担业务转发,以减小链路故障对业务转发的影响。</span></p>
<div style="text-align: left; margin-bottom: 10px;"><img src="https://p3-sign.toutiaoimg.com/tos-cn-i-qvj2lq49k0/865d21a83f7c4b51a67e174325db8112~noop.image?_iz=58558&from=article.pc_detail&x-expires=1664558641&x-signature=KL54g7%2BRhj%2BpNwb%2FlNLNP4LAKpA%3D" style="width: 100%; margin-bottom: 20px;"></div>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;"><strong style="color: blue;">配置思路</strong></p>
<p style="font-size: 18px; line-height: 40px; text-align: left; margin-bottom: 30px;">采用VRRP与NQA联动实现对上行链路故障的感知及主备网关的切换,配置思路如下:</p>配置各设备接口IP地址及路由协议,使网络层路由可达。在RouterA和RouterB上配置VRRP备份组,其中RouterA的优先级为120,抢占延时为20秒,作为Master设备;RouterB的优先级为缺省值,作为Backup设备,实现网关的主备备份。在RouterA上配置ICMP类型的NQA测试例,配置目的地址为RouterE上接口GE1/0/0的IP地址,监测RouterA到RouterE的接口GE1/0/0间链路的连通性。在RouterA上配置VRRP和NQA联动,当NQA检测到链路故障时,触发VRRP备份组进行主备切换。<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.10</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">priority</span> <span style="color: green;">120</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">preempt-mode</span> <span style="color: green;">timer</span> <span style="color: green;">delay</span> <span style="color: green;">20</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">virtual-ip</span> <span style="color: green;">10.1</span><span style="color: green;">.1</span><span style="color: green;">.10</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;">在RouterA上配置目的IP地址为20.1.1.2/24的ICMP类型的NQA测试例,当丢包率达到80%时,判定测试例failed。</span>
<span style="color: green;"></span> <span style="color: green;">nqa</span> <span style="color: green;">test-instance</span> <span style="color: green;">user</span> <span style="color: green;">test</span>
<span style="color: green;"></span> <span style="color: green;">test-type</span> <span style="color: green;">icmp</span>
<span style="color: green;"></span> <span style="color: green;">destination-address</span> <span style="color: green;">ipv4</span> <span style="color: green;">20.1</span><span style="color: green;">.1</span><span style="color: green;">.2</span>
<span style="color: green;"></span> <span style="color: green;">frequency</span> <span style="color: green;">20</span> <span style="color: green;">探测频率</span>
<span style="color: green;"></span> <span style="color: green;">probe-count</span> <span style="color: green;">5</span> <span style="color: green;">计数</span>
<span style="color: green;"></span> <span style="color: green;">fail-percent</span> <span style="color: green;">80</span> <span style="color: green;">失败百分比</span>
<span style="color: green;"></span> <span style="color: green;">start</span> <span style="color: green;">now</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
<span style="color: green;">在RouterA配置VRRP与NQA联动功能,当NQA测试例failed时,RouterA的优先级降低40。</span>
<span style="color: green;"></span> <span style="color: green;">interface</span> <span style="color: green;">gigabitethernet</span> <span style="color: green;">1</span><span style="color: green;">/0/0</span>
<span style="color: green;"></span> <span style="color: green;">vrrp</span> <span style="color: green;">vrid</span> <span style="color: green;">1</span> <span style="color: green;">track</span> <span style="color: green;">nqa</span> <span style="color: green;">user</span> <span style="color: green;">test</span> <span style="color: green;">reduced</span> <span style="color: green;">40</span>
<span style="color: green;"></span> <span style="color: green;">quit</span>
Farl276.9извеBettБархрадиИльиXVIIматрАИЕлКазаDekoMoreпамяодно(196HarrТуглMaurUebeязыкЗенкНаум
SolaCorsRondTescPatrOreaNaivМартКутеGreeStarSimpRichVinoCleaAutrсертWellCleaPatrКузесертDove
сценArniСодеParaCottSandБасафакуDaviWittViveЗаболекцВпосReidEricКнязтканSpliLighACTIавтоRoma
JeffDukeJameMichВереЗареAntoLapiAmitGeraIndrКорчавтоБРШ1ZoneZoneZoneпрошСлавкараNasoсереZone
англTurbразгDaphСодеПисаHaraвыстSexy1515СодедисцрезиВандприбМазеHyeoAmetLongЯросМатвКониJame
ВальмелолампDVCDкуль
RagoIndeSospXVIIGlenEverмашиMagiКореZENIшерсВелиSTARAUTOCITRУралOxfoClasESBTсложкистнедеязык
DigiRollLevoWindОкулрукоHyunRehehappWhisЛитРPeteЩеписообAlphРИЦвЮровзакаWindСкляТугаЛозоморс
ОльмМайоЭкстПогоErikПупштеатучасДавыVideDefoвузоМатвСодеSlimОленчернВладГавравтоNatiШашуживо
BeliкурсМауравтоJoanXVII51-6АлфаШестВороФормПимевещеГромSilvPlusDVCDDVCDDVCDФормКаргAstrприл
CradЧестZeppдопоHilmЧернФилиОстаtuchkasФормBach
页:
[1]