VRRP虚拟路由冗余协议
VRRP虚拟路由冗余协议
- VRRP是一种选择协议,它可以把一个虚拟路由器的责任动态分配到局域网上的 VRRP 路由器中的一台。控制虚拟路由器 IP 地址的 VRRP 路由器称为主路由器,它负责转发数据包到这些虚拟 IP 地址。一旦主路由器不可用,这种选择过程就提供了动态的故障转移机制,这就允许虚拟路由器的 IP 地址可以作为终端主机的默认第一跳路由器。是一种LAN接入设备备份协议。一个局域网络内的所有主机都设置缺省网关,这样主机发出的目的地址不在本网段的报文将被通过缺省网关发往三层交换机,从而实现了主机和外部网络的通信。
- VRRP是一种路由容错协议,也可以叫做备份路由协议。一个局域网络内的所有主机都设置缺省路由,当网内主机发出的目的地址不在本网段时,报文将被通过缺省路由发往外部路由器,从而实现了主机与外部网络的通信。当缺省路由器down掉(即端口关闭)之后,内部主机将无法与外部通信,如果路由器设置了VRRP时,那么这时,虚拟路由将启用备份路由器,从而实现全网通信。
- 在VRRP协议中,有两组重要的概念:VRRP路由器和虚拟路由器,主控路由器和备份路由器。VRRP路由器是指运行VRRP的路由器,是物理实体;虚拟路由器是指VRRP协议创建的,是逻辑概念。一组VRRP路由器协同工作,共同构成一台虚拟路由器。该虚拟路由器对外表现为一个具有唯一固定的IP地址和MAC地址的逻辑路由器。处于同一个VRRP组中的路由器具有两种互斥的角色:主控路由器和备份路由器,一个VRRP组中有且只有一台处于主控角色的路由器,可以有一个或者多个处于备份角色的路由器VRRP协议从路由器组中选出一台作为主控路由器,负责ARP解析和转发IP数据包,组中的其他路由器作为备份的角色并处于待命状态,当由于某种原因主控路由器发生故障时,其中的一台备份路由器能在瞬间的时延后升级为主控路由器,由于此切换非常迅速而且不用改变IP地址和MAC地址,故对终端使用者系统是透明的。
实验拓扑
配置R2和R3
"路由器和交换机都是进端口配置VRRP"
[R2]interface GigabitEthernet 0/0/2
[R2-GigabitEthernet0/0/2]ip address 192.168.1.253 24
[R2-GigabitEthernet0/0/2]vrrp vrid 1 virtual-ip 192.168.1.254
[R2-GigabitEthernet0/0/2]vrrp vrid 1 priority 120
[R2-GigabitEthernet0/0/2]vrrp vrid 1 preempt-mode timer delay 60
[R3]interface GigabitEthernet 0/0/1
[R3-GigabitEthernet0/0/1]ip address 192.168.1.252 24
[R3-GigabitEthernet0/0/1]vrrp vrid 1 virtual-ip 192.168.1.254
[R3-GigabitEthernet0/0/1]vrrp vrid 1 priority 100配置PC1
此时检查R2和R3的路由器VRRP状态
[R2]display vrrp brief
Total:1 Master:1 Backup:0 Non-active:0
VRID State Interface Type Virtual IP
----------------------------------------------------------------
1 Master GE0/0/2 Normal 192.168.1.254
[R3]display vrrp brief
Total:1 Master:0 Backup:1 Non-active:0
VRID State Interface Type Virtual IP
----------------------------------------------------------------
1 Backup GE0/0/1 Normal 192.168.1.254
VRRP的详细拓扑图配置
实验拓扑
配置SW3和SW4的交换机
[SW3]vlan batch 10 20
[SW3]interface GigabitEthernet 0/0/3
[SW3-GigabitEthernet0/0/3]port link-type access
[SW3-GigabitEthernet0/0/3]port default vlan 10
[SW3]interface GigabitEthernet 0/0/4
[SW3-GigabitEthernet0/0/4]port link-type access
[SW3-GigabitEthernet0/0/4]port default vlan 20
[SW3]interface GigabitEthernet 0/0/1
[SW3-GigabitEthernet0/0/1]port link-type trunk
[SW3-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[SW3]interface GigabitEthernet 0/0/2
[SW3-GigabitEthernet0/0/2]port link-type trunk
[SW3-GigabitEthernet0/0/2]port trunk allow-pass vlan all
[SW4]vlan batch 10 20
[SW4]interface GigabitEthernet 0/0/3
[SW4-GigabitEthernet0/0/3]port link-type access
[SW4-GigabitEthernet0/0/3]port default vlan 10
[SW4]interface GigabitEthernet 0/0/4
[SW4-GigabitEthernet0/0/4]port link-type access
[SW4-GigabitEthernet0/0/4]port default vlan 20
[SW43]interface GigabitEthernet 0/0/1
[SW4-GigabitEthernet0/0/1]port link-type trunk
[SW4-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[SW4]interface GigabitEthernet 0/0/2
[SW4-GigabitEthernet0/0/2]port link-type trunk
[SW4-GigabitEthernet0/0/2]port trunk allow-pass vlan all
配置S1和S2交换机
[S1]vlan batch 10 20
[S1]interface GigabitEthernet 0/0/1
[S1-GigabitEthernet0/0/1]port link-type trunk
[S1-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[S1]interface GigabitEthernet 0/0/2
[S1-GigabitEthernet0/0/2]port link-type trunk
[S1-GigabitEthernet0/0/2]port trunk allow-pass vlan all
[S1]interface Eth-Trunk 0
[S1-Eth-Trunk0]trunkport GigabitEthernet 0/0/9
[S1-Eth-Trunk0]trunkport GigabitEthernet 0/0/10
[S1-Eth-Trunk0]port link-type trunk
[S1-Eth-Trunk0]port trunk allow-pass vlan all
[S2]vlan batch 10 20
[S2]interface GigabitEthernet 0/0/1
[S2-GigabitEthernet0/0/1]port link-type trunk
[S2-GigabitEthernet0/0/1]port trunk allow-pass vlan all
[S2]interface GigabitEthernet 0/0/2
[S2-GigabitEthernet0/0/2]port link-type trunk
[S2-GigabitEthernet0/0/2]port trunk allow-pass vlan all
[S2]interface Eth-Trunk 0
[S2-Eth-Trunk0]trunkport GigabitEthernet 0/0/9
[S2-Eth-Trunk0]trunkport GigabitEthernet 0/0/10
[S2-Eth-Trunk0]port link-type trunk
[S2-Eth-Trunk0]port trunk allow-pass vlan all
配置SW1的VRRP
[S1]interface Vlanif 10
[S1-Vlanif10]ip ad
[S1-Vlanif10]ip address 192.168.10.253 24
[S1]interface Vlanif 20
[S1-Vlanif20]ip address 192.168.20.253 24
[S1]interface Vlanif 10
[S1-Vlanif10]vrrp vrid 1 virtual-ip 192.168.10.254
[S1-Vlanif10]vrrp vrid 1 priority 120
[S1]interface Vlanif 20
[S1-Vlanif20]ip address 192.168.20.253 24
[S1-Vlanif20]vrrp vrid 1 virtual-ip 192.168.20.254
[S1-Vlanif20]vrrp vrid 1 priority 120
配置SW2的VRRP
[S2]interface Vlanif 10
[S2-Vlanif10]ip ad
[S2-Vlanif10]ip address 192.168.10.252 24
[S2]interface Vlanif 20
[S2-Vlanif20]ip address 192.168.20.252 24
[S2]interface Vlanif 10
[S2-Vlanif10]vrrp vrid 1 virtual-ip 192.168.10.254
[S2]interface Vlanif 20
[S2-Vlanif20]ip address 192.168.20.253 24
[S2-Vlanif20]vrrp vrid 1 virtual-ip 192.168.20.254
检查
SW1为Master SW2为Backup
[S1]display vrrp brief
VRID State Interface Type Virtual IP
----------------------------------------------------------------
1 Master Vlanif10 Normal 192.168.10.254
1 Master Vlanif20 Normal 192.168.20.254
----------------------------------------------------------------
Total:2 Master:2 Backup:0 Non-active:0
[S2]display vrrp brief
VRID State Interface Type Virtual IP
----------------------------------------------------------------
1 Backup Vlanif10 Normal 192.168.10.254
1 Backup Vlanif20 Normal 192.168.20.254
----------------------------------------------------------------
Total:2 Master:0 Backup:2 Non-active:0 
浙公网安备 33010602011771号