trouble with basic ospf + vrrp

[mooseoner]

I have 2 6509's which I am setting up with OSPF and VRRP.
We have a sup 720 in each one running the following
version of IOS:

s72033-ipservices_wan-mz.122-18.SXF16.bin

I am having issues a basic OSPF. Its a pretty simple design
and yet I still cannot get traffic to route. I am including a few bits from the config. The point to point link comes up and I am able to ping the other switches routing interface, but I cannot ping the other ip addresses in different subnets of the same switches.

I have a bunch of Nortel switches hanging off these 6509's in the 137.135.12.0/24 subnet and they cannot communicate with each other over the point to point routed links.

Is there anything I am overlooking? Any helps or tips greatly appreciated.


From Switch 1:

interface GigabitEthernet2/1
ip address 137.135.10.1 255.255.255.252
ip ospf priority 10
vrrp 1 ip 137.135.10.1
!
interface Vlan1
ip address 137.135.12.10 255.255.255.0
!
router ospf 100
log-adjacency-changes
network 137.135.10.0 0.0.0.3 area 0
network 137.135.12.0 0.0.0.255 area 0
network 137.135.0.0 0.0.255.255 area 0
!



From Switch2:

interface GigabitEthernet1/1
ip address 137.135.10.2 255.255.255.252
ip ospf priority 5
vrrp 1 ip 137.135.10.1
!
interface Vlan1
ip address 137.135.12.14 255.255.255.0
!
router ospf 100
log-adjacency-changes
network 137.135.10.0 0.0.0.3 area 0
network 137.135.12.0 0.0.0.255 area 0
network 137.135.0.0 0.0.255.255 area 0
!

 

[burtsbees]

More info, like a topology, would help.

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!

 

[62HotRod]

mooseoner - Switch1 interface Gi2/1 should have a unique IP address. The VRRP IP cannot share the same address as an interface.

 

[ISPKing]

If i could smack you virtually i would. Do you think he has two 6509's just sitting waiting for someone to respond to his Tek-tips post 2 months later. DO NOT BRING UP DEAD TOPICS!

CCNP

 

[VinceWhirlwind]

Don't you need to configure VRRP for each subnet that you want routed?

In other words VRRP on VLAN1.

 

[ISPKing]

i wish i was a mod...

CCNP

 

[Quadratic]

To answer Vince, it is common practice to assign HSRP/VRRP groups on a per-vlan basis (ie: assigning groups to vlan SVI's), since each vlan would usually correspond with a given subnet, and each subnet would have a different default gateway IP, but it's not a strict requirement. You physically can have multiple vlans associated with a single subnet, and associate them with a single group, but that's not done in most situations.

I'll stop talking now ISPKing.

CCNP, CCDP

 

[VinceWhirlwind]

I guess we'd have to see the rest of his config to understand wht he's doing.

Either way, it looks like he had his Nortel hat on when configuring his 6500s: Nortel VRRP is configured the way he's tried configuring the 6500s - Cisco requires a 3rd IP address.

 

[Quadratic]

VRRP in general requires that the group IP be unique. At least, I can't see how it wouldn't require that.

CCNP, CCDP

 

[imbadatthis]

mooseoner if you can post a config ...
thanks,


We must go always forward, not backward
always up, not down and always twirling twirling towards infinity.

 

[VinceWhirlwind]

Quadratic, here's a Nortel config sample, showing they only use two for their take on VRRP:

Master:
vlan 87
name "LAZARUS"
ip address 10.7.87.1 255.255.255.0
tagged D21,Trk4
exit
vlan 87
vrrp vrid 87
owner
virtual-ip-address 10.7.87.1 255.255.255.0
priority 255
enable
exit
exit

Backup:
vlan 87
name "LAZARUS"
ip address 10.7.87.2 255.255.255.0
tagged D21,Trk4
exit
vlan 87
vrrp vrid 87
backup
virtual-ip-address 10.7.87.1 255.255.255.0
enable
exit
exit

 

[Quadratic]

Hmm... I just went through RFC 3768, and I guess it doesn't explicitly say you can't do it that way, but I've never seen it done before.

CCNP, CCDP

 

[VinceWhirlwind]

I was surprised, too.

And I've mis-led you anyway, the above config was VRRP off a *Procurve* switch.

Here is how Nortel do it, with 3 addresses:

MASTER
vlan 10 ip create 172.16.10.2/255.255.255.0
vlan 10 ip vrrp 10 address 172.16.10.1
vlan 10 ip vrrp 10 adver-int 10
vlan 10 ip vrrp 10 holddown-timer 30
vlan 10 ip vrrp 10 enable

BACKUP:
vlan 10 ip create 172.16.10.3/255.255.255.0
vlan 10 ip vrrp 10 address 172.16.10.1
vlan 10 ip vrrp 10 adver-int 10
vlan 10 ip vrrp 10 backup-master enable
vlan 10 ip vrrp 10 priority 90
vlan 10 ip vrrp 10 enable