IP Application Services Commands show vrrp. This command was introduced. If no group is specified, the status for all groups is displayed.
|
|
|
- Myrtle Regina Gilmore
- 10 years ago
- Views:
Transcription
1 show vrrp show vrrp To display a brief or detailed status of one or all configured Virtual Router Redundancy Protocol (VRRP) groups on the router, use the show vrrp command in privileged EXEC mode. show vrrp [all brief] all brief (Optional) Provides VRRP group information about all VRRP groups, including groups in a disabled state. (Optional) Provides a summary view of the group information. Command Modes Privileged EXEC (#) 12.0(18)ST 12.0(22)S 12.2(13)T 12.2(14)S 12.3(2)T 12.3(14)T 12.2(33)SRA 12.2(31)SB2 12.2SX 12.2(33)SRC Cisco IOS XE (24)T Cisco IOS XE 2.6 This command was introduced. This command was integrated into Cisco IOS 12.0(22)S. This command was integrated into Cisco IOS 12.2(13)T. This command was integrated into Cisco IOS 12.2(14)S. This command was enhanced to display the state of a tracked object. This command was enhanced to display message digest algorithm 5 (MD5) authentication for a VRRP using text strings, key chains, or key strings. This command was integrated into Cisco IOS 12.2(33)SRA. This command was integrated into Cisco IOS 12.2(31)SB2. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. This command was enhanced to display synchronized state information from the active route processor (RP). This command was integrated into Cisco IOS XE 2.1. This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured. This command was modified. The output was modified to display information about configured Virtual Router Redundancy Service (VRRS) names. Usage Guidelines If no group is specified, the status for all groups is displayed. The following is sample output from the show vrrp command: Router# show vrrp IAP-533
2 show vrrp IP Application Services Commands Ethernet1/0 - Group 1 State is Master Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption is enabled min delay is sec Priority 100 Track object 1 state down decrement 15 Master Router is (local), priority is 100 Master Advertisement interval is sec Master Down interval is sec Ethernet1/0 - Group 2 State is Master Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption is enabled min delay is sec Priority 95 Master Router is (local), priority is 95 Master Advertisement interval is sec Master Down interval is sec The following sample output shows the MD5 authentication for a VRRP group using a key string: Router# show vrrp Ethernet0/1 - Group 1 State is Master Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption is enabled min delay is sec Priority is 100 Authentication MD5, key-string Master Router is (local), priority is 100 Master Advertisement interval is sec Master Down interval is sec The following is sample output from the show vrrp command in Cisco IOS 12.2(33)SRC or later releases, displaying peer RP state information: Router# show vrrp Ethernet0/0 - Group 1 State is Init (standby RP, peer state is Master) Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption enabled Priority is 255 Master Router is (local), priority is 255 Master Advertisement interval is sec Master Down interval is sec The following sample output displays information about a configured VRRS group name: Router# show vrrp Gige0/0/0 - Group 1 State is Master IAP-534
3 show vrrp Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption enabled Priority is 100 VRRS Group name CLUSTER1! Configured VRRS Group Name Master Router is (local), priority is 100 Master Advertisement interval is sec Master Down interval is sec Table 95 describes the significant fields shown in the displays. Table 95 show vrrp Field Descriptions Field Description Ethernet1/0 - Group Interface type and number, and VRRP group number. State is Role this interface plays within VRRP (Master or Backup). (standby RP, peer state is State of the peer RP. Master) Virtual IP address is Virtual IP address for this group. Virtual MAC address is Virtual MAC address for this group. Advertisement interval is Interval at which the router will send VRRP advertisements when it is the master virtual router. This value is configured with the vrrp timers advertise command. Preemption is Preemption is either enabled or disabled. Priority Priority of the interface. Master Router is IP address of the current master virtual router. priority is Priority of the current master virtual router. Master Advertisement interval is Advertisement interval, in seconds, of the master virtual router. Master Down interval is Calculated time, in seconds, that the master virtual router can be down before the backup virtual router takes over. Track object Object number representing the object to be tracked. state State value (up or down) of the object being tracked. decrement Amount by which the priority of the router is decremented (or incremented) when the tracked object goes down (or comes back up). Authentication MD5, key-string The currently configured authentication mechanism for this group. Values for this field include MD5 for Message Digest 5 encryption, as shown in the second example, text, string my_secret_password for plain text, and key-chain the_chain_i m_looking_at. The following is sample output from the show vrrp command with the brief keyword: Router# show vrrp brief Interface Grp Prio Time Own Pre State Master addr Group addr Ethernet1/ P Master Ethernet1/ P Master IAP-535
4 show vrrp IP Application Services Commands Table 96 describes the fields shown in the display. Table 96 Field Interface Grp Prio Time Own Pre State Master addr Group addr show vrrp brief Field Descriptions Description Interface type and number. VRRP group to which this interface belongs. VRRP priority number for this group. Calculated time that the master virtual router can be down before the backup virtual router takes over. IP address owner. Preemption status. P indicates that preemption is enabled. If this field is empty, preemption is disabled. Role this interface plays within VRRP (master or backup). IP address of the master virtual router. IP address of the virtual router. Related Commands Command vrrp ip Description Enables VRRP on an interface and identifies the IP address of the virtual router. IAP-536
5 show vrrp interface show vrrp interface To display the Virtual Router Redundancy Protocol (VRRP) groups and their status on a specified interface, use the show vrrp interface command in user EXEC or privileged EXEC mode. show vrrp interface type number [brief] type number brief Interface type. Interface number. (Optional) Provides a summary view of the group information. Command Modes User EXEC (>) Privileged EXEC (#) 12.0(18)ST 12.0(22)S 12.2(13)T 12.2(14)S 12.2(33)SRA 12.2(31)SB2 12.2SX Cisco IOS XE (24)T This command was introduced. This command was integrated into Cisco IOS 12.0(22)S. This command was integrated into Cisco IOS 12.2(13)T. This command was integrated into Cisco IOS 12.2(14)S. This command was integrated into Cisco IOS 12.2(33)SRA. This command was integrated into Cisco IOS 12.2(31)SB2. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. This command was integrated into Cisco IOS XE 2.1. This command was modified. The output was modified to hide configured passwords when MD5 key-string or text authentication is configured. The following is sample output from the show vrrp interface command: Router# show vrrp interface ethernet 1/0 Ethernet1/0 - Group 1 State is Master Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption enabled, delay min 4 secs Priority is 100 Master Router is (local), priority is 100 Master Advertisement interval is sec Master Down interval is sec Ethernet1/0 - Group 2 State is Master IAP-537
6 show vrrp interface IP Application Services Commands Virtual IP address is Virtual MAC address is e Advertisement interval is sec Preemption enabled, delay min 2 sec Priority is 95 Authentication MD5, key-string Master Router is (local), priority is 95 Master Advertisement interval is sec Master Down interval is sec Table 97 describes the significant fields shown in the display. Table 97 show vrrp interface Field Descriptions Field Ethernet1/0 - Group 1 State is Virtual IP address is Virtual MAC is Advertisement interval is Preemption delay min Authentication MD5, key-string Priority is 100 Master Router is (local) Priority is 100 Master Advertisement interval Master Down interval Description Interface type and number, and VRRP group number. Role this interface plays within VRRP (master or backup). Virtual IP address for this group. Virtual MAC address for this group. Interval at which the router will send VRRP advertisements when it is the master virtual router. This value is configured with the vrrp timers advertise command. Preemption is either enabled or disabled. If preemption is enabled, delay min is the minimum time (in seconds) that a router will wait before preempting the current master router. This field is displayed only if the delay is set at greater than 0 seconds. The currently configured authentication mechanism for this group. Possible values for this field include MD5 for Message Digest 5 encryption, as shown in the example above. Other messages not displayed in the example include text, string my_secret_password for plain text and key-chain the_chain_i m_looking_at. Priority of this group on this interface. IP address of the current master virtual router. Priority of the current master router. Advertisement interval of the master virtual router. Calculated time that the master virtual router can be down before the backup virtual router takes over. Related Commands Command vrrp ip vrrp timers advertise Description Enables VRRP and identifies the IP address of the virtual router. Configures the interval between successive advertisements by the master virtual router in a VRRP group. Related Commands IAP-538
7 show vrrs clients show vrrs clients To display a list of Virtual Router Redundancy Service (VRRS) clients, use the show vrrs clients command in user EXEC or privileged EXEC mode. show vrrs clients This command has no arguments or keywords. Command Modes Privileged EXEC (#) User EXEC (>) Cisco IOS XE 2.6 This command was introduced. Usage Guidelines Use the show vrrs clients command to display a list of VRRS clients currently active on the router. The display contains the client IDs, client priority, whether the client is interested in all VRRS groups, and the client name. The client ID is a dynamic integer value assigned to the client when it registers with VRRS. If the client ID for a particular client is different between two versions of a Cisco IOS XE image, it means there is a change in initialization order in the two images. The client priority is a priority that the client chooses during registration with VRRS. The client priority dictates the order in which clients receive server notifications. The following example displays a list VRRS clients: Router# show vrrs clients ID Priority All-groups Name High No VRRS-Plugins 2 Low Yes VRRS-Accounting 3 Normal No PPPOE-VRRS-CLIENT Table 98 describes the significant fields shown in the display. Table 98 Field Priority All-groups Name show vrrs clients Field Descriptions Description Priority of the client. Indicates whether a client is registered for all current and future VRRS groups. Name of the client. IAP-539
8 show vrrs clients IP Application Services Commands Related Commands Command Description show vrrp Displays a brief or detailed status of one or all configured VRRP groups on the router. show vrrs group Display information about VRRS groups. show vrrs plugin Displays details about the internal VRRS plug-in database. database show vrrs summary Displays a summary of all VRRS groups. IAP-540
9 show vrrs group show vrrs group To display information about Virtual Router Redundancy Service (VRRS) groups, use the show vrrs group command in user EXEC or privileged EXEC mode. show vrrs group [group-name] group-name Name of a VRRS group. Command Default Information about all VRRS groups is displayed. Command Modes Privileged EXEC (#) User EXEC (>) Cisco IOS XE 2.6 This command was introduced. Usage Guidelines Use the show vrrs group command to display details of a VRRS redundancy group, if a group name is specified. If no group name is specified, details of all VRRS groups configured or added by clients on the router are displayed. The following example displays information about all currently configured VRRS groups: Router# show vrrs group DT-CLUSTER-3 Server Not configured, state INIT, old state INIT, reason Protocol Address family IPv4, Virtual address , Virtual mac Active interface address , standby interface address Client 5 VRRS TEST CLIENT, priority Low DT-CLUSTER-2 Server VRRP, state BACKUP, old state INIT, reason HA SSO Address family IPv4, Virtual address , Virtual mac e Active interface address , standby interface address Client 1 VRRS-Plugins, priority High Client 2 VRRS-Accounting, priority Low Client 3 PPPOE-VRRS-CLIENT, priority Normal DT-CLUSTER-1 Server VRRP, state ACTIVE, old state INIT, reason HA SSO Address family IPv4, Virtual address , Virtual mac e Active interface address , standby interface address Client 1 VRRS-Plugins, priority High Client 2 VRRS-Accounting, priority Low Client 3 PPPOE-VRRS-CLIENT, priority Normal IAP-541
10 show vrrs group IP Application Services Commands Table 99 describes the significant fields shown in the display. Table 99 show vrrs group Field Descriptions Field state old state reason Address family IPv4 Virtual address Virtual mac Client 1 VRRS-Plugins priority High Description Current state of the server. Previous state of the server Reason for the last server state change. Address family for this VRRS group. Virtual IP address for this VRRS group. Virtual MAC address for this VRRS group. Client ID of a VRRS client. Client name. Priority of this client. Related Commands Command show vrrp show vrrs clients show vrrs plugin database show vrrs summary Description Displays a brief or detailed status of one or all configured VRRP groups on the router. Displays a list of VRRS clients. Displays details about the internal VRRS plug-in database. Displays a summary of all VRRS groups. IAP-542
11 show vrrs plugin database show vrrs plugin database To display details about the internal Virtual Router Redundancy Service (VRRS) plug-in database, use the show vrrs plugin database command in user EXEC or privileged EXEC mode. show vrrs plugin database This command has no arguments or keywords. Command Modes Privileged EXEC (#) User EXEC (>) Cisco IOS XE 2.6 This command was introduced. Usage Guidelines Use the show vrrs plugin database command to display details of the internal VRRS plug-in database. This command maps an interface-specific configuration with a VRRS redundancy group. The output display includes; name, server connection status, VRRS State (simple), MAC address, test control indicator, VRRS client handle, and the plug-in interface list. The following example displays information about the internal VRRS plug-in database: Router# show vrrs plugin database VRRS Plugin Database Name = VRRS_NAME_1 Server connection = Live State = Disabled MAC addr = e Test Control = False Client Handle = Interface list = gige0/0/0.2 gige0/0/ Name = VRRS_NAME_2 Server connection = Diconnected State = Disabled MAC addr = Test Control = False Client Handle = Interface list = gige0/0/ IAP-543
12 show vrrs plugin database IP Application Services Commands Related Commands Command Description show vrrp Displays a brief or detailed status of one or all configured VRRP groups on the router. show vrrs clients Displays a list of VRRS clients. show vrrs group Display information about VRRS groups. show vrrs summary Displays a summary of all VRRS groups. IAP-544
13 show vrrs summary show vrrs summary To display a summary of all Virtual Router Redundancy Service (VRRS) groups, use the show vrrs summary command in user EXEC or privileged EXEC configuration mode. show vrrs summary This command has no arguments or keywords. Command Modes Privileged EXEC (#) User EXEC (>) Cisco IOS XE 2.6 This command was introduced. Usage Guidelines Use the show vrrs summary command to display a summary of VRRS groups either configured on a router or added by a client. The display includes the following group information: name, server, state, and virtual address. The following example displays a summary of VRRS groups: Router# show vrrs summary Group Server State Virtual-address DT-CLUSTER-3 UNKNOW INIT DT-CLUSTER-2 VRRP BACKUP DT-CLUSTER-1 VRRP ACTIVE Table 100 describes the significant fields shown in the display. Table 100 show vrrs summary Field Descriptions Field Group Server State Virtual-address Description VRRS group name. The server which serves the VRRS group. State of the server for the VRRS group. Virtual address associated with the VRRS group. IAP-545
14 show vrrs summary IP Application Services Commands Related Commands Command Description show vrrp Displays a brief or detailed status of one or all configured VRRP groups on the router. show vrrs clients Displays a list of VRRS clients. show vrrs group Display information about VRRS groups. show vrrs plugin database Displays details about the internal VRRS plug-in database. IAP-546
15 snmp-server enable traps slb snmp-server enable traps slb To enable IOS SLB traps for real- and virtual-server state changes, use the snmp-server enable traps slb command in global configuration mode. To disable the traps use the no form of this command. snmp-server enable traps slb {real virtual} no snmp-server enable traps slb {real virtual} real virtual Enables traps for real server state changes. Enables traps for virtual server state changes. Defaults IOS SLB traps for real- and virtual-server state changes are not enabled. Command Modes Global configuration (config) 12.1(11b)E 12.2(18)SXE 12.2(33)SRA This command was introduced. This command was integrated into Cisco IOS 12.2(18)SXE. This command was integrated into Cisco IOS 12.2(33)SRA. The following example enables IOS SLB traps for real server state changes: Router(config)# snmp-server enable traps slb real IAP-547
16 special-vj IP Application Services Commands special-vj To enable the special Van Jacobson (VJ) format of TCP header compression so that context IDs are included in compressed packets, use the special-vj command in IPHC profile configuration mode. To disable the special VJ format and return to the default VJ format, use the no form of this command. special-vj no special-vj This command has no arguments or keywords. Command Default Context IDs are not included in compressed packets. Command Modes IPHC profile configuration (config-iphcp) 12.4(15)T (1)M2 This command was introduced. This command was integrated into Cisco IOS 15.0(1)M2. Usage Guidelines If the special-vj command is configured on a VJ profile, each compressed packet will include the context ID. To enable the special VJ format of TCP header compression, use the ip header-compression special-vj command in interface configuration mode. The following example shows how to enable the special VJ format of TCP header compression: Router(config)# iphc-profile p1 van-jacobson Router(config-iphcp)# special-vj Router(config-iphcp)# end Related Commands Command ip header-compression special-vj show ip tcp header-compression Description Enables the special VJ format of TCP header compression. Displays TCP/IP header compression statistics. IAP-548
17 standby arp gratuitous standby arp gratuitous To configure the number of gratuitous Address Resolution Protocol (ARP) packets sent by a Hot Standby Router Protocol (HSRP) group when it transitions to the active state, and how often the ARP packets are sent, use the standby arp gratuitous command in interface configuration mode. To configure HSRP to send the default number of gratuitous of ARP packets at the default interval when an HSRP group changes to the active state, use the no form of this command. standby arp gratuitous [count number] [interval seconds] no standby arp gratuitous count number interval seconds (Optional) Specifies the number of gratuitous ARP packets to send after an HSRP group is activated. The range is 0 to 60. The default is 2. 0 sends continuous gratuitous ARP packets. (Optional) Specifies the interval, in seconds, at which HSRP gratuitous ARP packets are sent. The range is 3 to 1800 seconds. The default is 3 seconds. Command Default HSRP sends one gratuitous ARP packet when a group becomes active, and then another two and four seconds later. Command Modes Interface configuration (config-if) 12.2(33)SXI This command was introduced. Usage Guidelines You can configure HSRP to send a gratuitous ARP packet from one or more HSRP active groups. By default, HSRP sends one gratuitous ARP packet when a group becomes active, and then another two and four seconds later. Use the standby arp gratuitous command in interface configuration mode to configure the number of gratuitous ARP packets sent by an Active HSRP group, and how often they are sent. The count and interval keywords can be specified in any order. If both the count and interval keywords are set to their default values, the standby arp gratuitous command does not appear in the running configuration. Use the standby send arp command in EXEC mode to configure HSRP to send a single gratuitous ARP packet when an HSRP group becomes active. The following example shows how to configure HSRP to send three gratuitous ARP packets every 4 seconds: Router(config-if)# standby arp gratuitous count 3 interval 4 IAP-549
18 standby arp gratuitous IP Application Services Commands Related Commands Command Description debug standby events Displays events related to HSRP. show standby arp gratuitous standby send arp Displays the number of gratuitous ARP packets sent by HSRP and how often they are sent. Configures HSRP to send a single gratuitous ARP packet for each active HSRP group. IAP-550
19 standby authentication standby authentication To configure an authentication string for the Hot Standby Router Protocol (HSRP), use the standby authentication command in interface configuration mode. To delete an authentication string, use the no form of this command. standby [group-number] authentication {text string md5 {key-string [0 7] key [timeout seconds] key-chain name-of-chain}} no standby [group-number] authentication {text string md5 {key-string [0 7] key [timeout seconds] key-chain name-of-chain}} group-number text string md5 key-string key (Optional) Group number on the interface to which this authentication string applies. The default group number is 0. Authentication string. It can be up to eight characters long. The default string is cisco. Message Digest 5 (MD5) authentication. Specifies the secret key for MD5 authentication. The key can contain up to 64 characters. We recommend using at least 16 characters. 0 (Optional) Unencrypted key. If no prefix is specified, the text also is unencrypted. 7 (Optional) Encrypted key. timeout seconds key-chain name-of-chain (Optional) Duration in seconds that HSRP will accept message digests based on both the old and new keys. Identifies a group of authentication keys. Command Default No text authentication string is configured. Command Modes Interface configuration (config-if) 10.0 This command was introduced The text keyword was added. 12.3(2)T The md5 keyword and associated parameters were added. 12.2(25)S This command was integrated into Cisco IOS 12.2(25)S 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(28)SB This command was integrated into Cisco IOS 12.2(28)SB. 12.2(33)SXH This command was integrated into Cisco IOS 12.2(33)SXH. Cisco IOS XE This command was integrated into Cisco IOS XE IAP-551
![standby [group-number] authentication {text string md5 {key-string [0 7] key [timeout seconds] key-chain name-of-chain}} no standby [group-number] authentication {text string md5 {key-string [0 7]](/docs-images/55/8983715/images/page_19.jpg "key [timeout seconds] key-chain name-of-chain}} group-number text string md5 key-string key (Optional) Group number on the interface to which this authentication string applies.")
20 standby authentication IP Application Services Commands Usage Guidelines The authentication string is sent unencrypted in all HSRP messages when using the standby authentication text string option. The same authentication string must be configured on all routers and access servers on a cable to ensure interoperation. Authentication mismatch prevents a device from learning the designated Hot Standby IP address and the Hot Standby timer values from other routers configured with HSRP. When group number 0 is used, no group number is written to NVRAM, providing backward compatibility. If password encryption is configured with the service password-encryption command, the software saves the key string as encrypted text. The timeout seconds is the duration that the HSRP group will accept message digests based on both the old and new keys. This allows time for configuration of all routers in a group with the new key. HSRP route flapping can be minimized by changing the keys on all the routers, provided that the active router is changed last. The active router should have its key string changed no later than one holdtime period, specified by the standby timers interface configuration command, after the non-active routers. This procedure ensures that the non-active routers do not time out the active router. The following example configures company1 as the authentication string required to allow Hot Standby routers in group 1 to interoperate: interface ethernet 0 standby 1 authentication text company1 The following example configures MD5 authentication using a key string named : interface Ethernet0/1 standby 1 ip standby 1 priority 110 standby 1 preempt standby 1 authentication md5 key-string timeout 30 The following example configures MD5 authentication using a key chain. HSRP queries the key chain hsrp1 to obtain the current live key and key ID for the specified key chain: key chain hsrp1 key 1 key-string interface Ethernet0/1 standby 1 ip standby 1 priority 110 standby 1 preempt standby 1 authentication md5 key-chain hsrp1 Related Commands Command Description service password-encryption Encrypts passwords. standby timers Configures the time between hello packets and the time before other routers declare the active Hot Standby or standby router to be down. IAP-552
21 standby bfd standby bfd To reenable Hot Standby Router Protocol (HSRP) Bidirectional Forwarding Detection (BFD) peering if it has been disabled on an interface, use the standby bfd command in interface configuration mode. To disable HSRP support for BFD, use the no form of this command. standby bfd no standby bfd This command has no arguments or keywords. Command Default HSRP support for BFD is enabled. Command Modes Interface configuration 12.4(11)T This command was introduced. Usage Guidelines HSRP BFD peering is enabled by default when the router is configured for BFD. Use this command to reenable HSRP BFD peering on the specified interface when it has previously been manually disabled. To enable HSRP BFD peering globally on the router, use the standby bfd all-interfaces command in global configuration mode. The following example shows how to reenable HSRP BFD peering if it has been disabled: Router(config)# interface ethernet0/0 Router(config-if)# standby bfd Related Commands Command bfd debug standby events neighbor show bfd neighbor show standby show standby neighbors standby bfd all-interfaces standby ip Description Sets the baseline BFD session parameters on an interface. Displays HSRP neighbor events. Displays a line-by-line listing of existing BFD adjacencies. Displays HSRP information. Displays information about HSRP neighbors. Reenables HSRP BFD peering on all interfaces if it has been disabled. Activates HSRP. IAP-553
22 standby bfd all-interfaces IP Application Services Commands standby bfd all-interfaces To reenable Hot Standby Router Protocol (HSRP) Bidirectional Forwarding Detection (BFD) peering on all interfaces if it has been disabled, use the standby bfd all-interfaces command in global configuration mode. To disable HSRP support for BFD peering, use the no form of this command. standby bfd all-interfaces no standby bfd all-interfaces This command has no arguments or keywords. Command Default HSRP BFD peering is enabled. Command Modes Global configuration 12.4(11)T This command was introduced. Usage Guidelines The HSRP BFD peering feature introduces BFD in the HSRP group member health monitoring system. Previously, group member monitoring relied exclusively on HSRP multicast messages, which are relatively large and consume CPU memory to produce and check. In architectures where a single interface hosts a large number of groups, there is a need for a protocol with low CPU memory consumption and processing overhead. BFD addresses this issue and offers subsecond health monitoring (failure detection in milliseconds) with a relatively low CPU impact. This command is enabled by default. To enable HSRP support for BFD on a per-interface basis, use the standby bfd command in interface configuration mode. The following example shows how to reenable HSRP BFD peering if it has been disabled on a router: Router(config)# standby bfd all-interfaces Related Commands Command bfd debug standby events neighbor show bfd neighbor show standby Description Sets the baseline BFD session parameters on an interface. Displays HSRP neighbor events. Displays a line-by-line listing of existing BFD adjacencies. Displays information about HSRP. IAP-554
23 standby bfd all-interfaces Command show standby neighbors standby bfd standby ip Description Displays information about HSRP neighbors. Reenables HSRP BFD peering for a specified interface if it has been disabled. Activates HSRP. IAP-555
24 standby delay minimum reload IP Application Services Commands standby delay minimum reload To configure the delay period before the initialization of Hot Standby Router Protocol (HSRP) groups, use the standby delay minimum reload command in interface configuration mode. To disable the delay period, use the no form of this command. standby delay minimum min-seconds reload reload-seconds no standby delay minimum min-seconds reload reload-seconds min-seconds reload-seconds Minimum time (in seconds) to delay HSRP group initialization after an interface comes up. This minimum delay period applies to all subsequent interface events. The valid range is 0 to 300 seconds. The default is 1 second. The recommended value is 30 seconds. Time (in seconds) to delay after the router has reloaded. This delay period applies only to the first interface-up event after the router has reloaded. The valid rang is 0 to 300 seconds. The default is 5 seconds. The recommended value is 60 seconds. Command Default HSRP group initialization is not delayed. Command Modes Interface configuration (config-if) 12.2 This command was introduced. 12.2(14)SX Support for this command was added for the Supervisor Engine (17d)SXB Support for this command on the Supervisor Engine 2 was extended to Cisco IOS 12.2(17d)SXB. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB2. Usage Guidelines If the active router fails or is removed from the network, then the standby router will automatically become the new active router. If the former active router comes back online, you can control whether it takes over as the active router by using the standby preempt command. However, in some cases, even if the standby preempt command is not configured, the former active router will resume the active role after it reloads and comes back online. Use the standby delay minimum reload command to set a delay period for HSRP group initialization. This command allows time for the packets to get through before the router resumes the active role. We recommend that all HSRP routers have the standby delay minimum reload configured with a minimum delay time of 30 seconds and a minimum reload time of 60 seconds. The delay will be cancelled if an HSRP packet is received on an interface. IAP-556
25 standby delay minimum reload The standby delay minimum reload interface configuration command delays HSRP groups from initializing for the specified time after the interface comes up. This command is separate from the standby preempt delay interface configuration command, which enables HSRP preemption delay. The following example sets the minimum delay period to 30 seconds and the delay period after the first reload to 120 seconds: interface ethernet 0 ip address standby delay minimum 30 reload 60 standby 3 ip standby 3 timers msec 300 msec 700 standby 3 priority 100 Related Commands Command Description show standby delay Displays HSRP information about delay periods. standby preempt Configures the HSRP preemption and preemption delay. standby timers Configures the time between hello packets and the time before other routers declare the active HSRP or standby router to be down. IAP-557
26 standby follow IP Application Services Commands standby follow To configure a Hot Standby Router Protocol (HSRP) group to become an IP redundancy client of another HSRP group, use the standby follow command in interface configuration mode. To remove the configuration of an HSRP group as a client group, use the no form of this command. standby group-number follow group-name no standby group-number follow group-name group-number group-name Group number on the interface for which HSRP is being activated. The default is 0. Specifies the name of the master group for the client group to follow. Command Default HSRP groups are not configured as client groups. Command Modes Interface configuration (config-if) 12.4(6)T 12.2(33)SRB 12.2(33)SXI Cisco IOS XE 2.1 This command was introduced. This command was integrated into Cisco IOS 12.2(33)SRB. This command was integrated into Cisco IOS 12.2(33)SXI. This command was integrated into Cisco IOS XE 2.1. Usage Guidelines The standby follow command configures an HSRP group to become an IP redundancy client of another HSRP group. Client or slave groups must be on the same physical interface as the master group. A client group takes its state from the master group it is following. Therefore, the client group does not use its timer, priority, or preemption settings. A warning is displayed if these settings are configured on a client group: Router(config-if)# standby 1 priority 110 %Warning: This setting has no effect while following another group. Router(config-if)# standby 1 timers 5 15 % Warning: This setting has no effect while following another group. Router(config-if)# standby 1 preempt delay minimum 300 % Warning: This setting has no effect while following another group. HSRP client groups follow the master HSRP with a slight, random delay so that all client groups do not change at the same time. IAP-558
27 standby follow You cannot configure an HSRP group to follow another HSRP group if that group is itself being followed by another HSRP group. Use the show standby command to display complete information about an HSRP client group. The following example shows how to configure HSRP group 2 as a client to the HSRP1 master group: standby 2 follow HSRP1 Related Commands Command Description show standby Displays HSRP information. IAP-559
28 standby ip IP Application Services Commands standby ip To activate the Hot Standby Router Protocol (HSRP), use the standby ip command in interface configuration mode. To disable HSRP, use the no form of this command. standby [group-number] ip [ip-address [secondary]] no standby [group-number] ip [ip-address] group-number ip-address secondary (Optional) Group number on the interface for which HSRP is being activated. The default is 0. The group number range is from 0 to 255 for HSRP version 1 and from 0 to 4095 for HSRP version 2. (Optional) IP address of the Hot Standby router interface. (Optional) Indicates the IP address is a secondary Hot Standby router interface. Useful on interfaces with primary and secondary addresses; you can configure primary and secondary HSRP addresses. Defaults The default group number is 0. HSRP is disabled by default. Command Modes Interface configuration (config-if) 10.0 This command was introduced The group-number argument was added The secondary keyword was added. 12.3(4)T The group number range was expanded for HSRP version (25)S This command was integrated into Cisco IOS 12.2(25)S. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. Usage Guidelines The standby ip command activates HSRP on the configured interface. If an IP address is specified, that address is used as the designated address for the Hot Standby group. If no IP address is specified, the designated address is learned through the standby function. For HSRP to elect a designated router, at least one router on the cable must have been configured with, or have learned, the designated address. Configuration of the designated address on the active router always overrides a designated address that is currently in use. IAP-560
29 standby ip When the standby ip command is enabled on an interface, the handling of proxy Address Resolution Protocol (ARP) requests is changed (unless proxy ARP was disabled). If the Hot Standby state of the interface is active, proxy ARP requests are answered using the MAC address of the Hot Standby group. If the interface is in a different state, proxy ARP responses are suppressed. When group number 0 is used, no group number is written to NVRAM, providing backward compatibility. HSRP version 2 permits an expanded group number range from 0 to The increased group number range does not imply that an interface can, or should, support that many HSRP groups. The expanded group number range was changed to allow the group number to match the VLAN number on subinterfaces. The following example activates HSRP for group 1 on Ethernet interface 0. The IP address used by the Hot Standby group will be learned using HSRP. interface ethernet 0 standby 1 ip In the following example, all three virtual IP addresses appear in the ARP table using the same (single) virtual MAC address. All three virtual IP addresses are using the same HSRP group (group 0). ip address ip address secondary ip address secondary ip address secondary standby ip standby ip secondary standby ip secondary IAP-561
30 standby mac-address IP Application Services Commands standby mac-address To specify a virtual Media Access Control (MAC) address for the Hot Standby Router Protocol (HSRP), use the standby mac-address command in interface configuration mode. To revert to the standard virtual MAC address (000.0C07.ACxy), use the no form of this command. standby [group-number] mac-address mac-address no standby [group-number] mac-address group-number mac-address (Optional) Group number on the interface for which HSRP is being activated. The default is 0. MAC address. Command Default If this command is not configured, and the standby use-bia command is not configured, the standard virtual MAC address is used: C07.ACxy, where xy is the group number in hexadecimal. This address is specified in RFC 2281, Cisco Hot Standby Router Protocol (HSRP). Command Modes Interface configuration (config-if) 11.2 This command was introduced. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. Usage Guidelines This command cannot be used on a Token Ring interface. HSRP is used to help end stations locate the first-hop gateway for IP routing. The end stations are configured with a default gateway. However, HSRP can provide first-hop redundancy for other protocols. Some protocols, such as Advanced Peer-to-Peer Networking (APN), use the MAC address to identify the first hop for outing purposes. In this case, it is often necessary to be able to specify the virtual MAC address; the virtual IP address is unimportant for these protocols. Use the standby mac-address command to specify the virtual MAC address. The MAC address specified is used as the virtual MAC address when the router is active. This command is intended for certain APPN configurations. The parallel terms are shown in Table 101. IAP-562
31 standby mac-address Table 101 APPN End node Network Node Parallel Terms Between APPN and IP IP Host Router or gateway In an APPN network, an end node is typically configured with the MAC address of the adjacent network node. Use the standby mac-address command in the routers to set the virtual MAC address to the value used in the end nodes. If the end nodes are configured to use as the MAC address of the network node, the following example shows the command used to configure HSRP group 1 with the virtual MAC address: Router(config-if)# standby 1 mac-address Related Commands Command show standby standby use-bia Description Displays HSRP information. Configures HSRP to use the burned-in address of the interface as its virtual MAC address. IAP-563
32 standby mac-refresh IP Application Services Commands standby mac-refresh To change the interval at which packets are sent to refresh the Media Access Control (MAC) cache when the Hot Standby Router Protocol (HSRP) is running over FDDI, use the standby mac-refresh command in interface configuration mode. To restore the default value, use the no form of this command. standby mac-refresh seconds no standby mac-refresh seconds Number of seconds in the interval at which a packet is sent to refresh the MAC cache. The maximum value is 255 seconds. The default is 10 seconds. Defaults seconds: 10 seconds Command Modes Interface configuration (config-if) 12.0 This command was introduced. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. Usage Guidelines This command applies to HSRP running over FDDI only. Packets are sent every 10 seconds to refresh the MAC cache on learning bridges or switches. By default, the MAC cache entries age out in 300 seconds (5 minutes). All other routers participating in HSRP on the FDDI ring receive the refresh packets, although the packets are intended only for the learning bridge or switch. Use this command to change the interval. Set the interval to 0 if you want to prevent refresh packets (if you have FDDI but do not have a learning bridge or switch). The following example changes the MAC refresh interval to 100 seconds. Therefore, a learning bridge would need to miss three packets before the entry ages out. standby mac-refresh 100 IAP-564
33 standby name standby name To configure the name of the standby group, use the standby name command in interface configuration mode. To disable the name, use the no form of this command. standby name group-name no standby name group-name group-name Specifies the name of the standby group. Defaults The Hot Standby Router Protocol (HSRP) is disabled. Command Modes Interface configuration (config-if) 12.0(2)T 12.2(33)SRA 12.2SX This command was introduced. This command was integrated into Cisco IOS 12.2(33)SRA. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. Usage Guidelines The name specifies the HSRP group used. The HSRP group name must be unique on the router. The following example specifies the standby name as SanJoseHA: interface ethernet0 ip address standby ip standby name SanJoseHA standby preempt delay sync 100 standby priority 110 Related Commands Command ip mobile home-agent redundancy Description Configures the home agent for redundancy. IAP-565
34 standby preempt IP Application Services Commands standby preempt To configure Hot Standby Router Protocol (HSRP) preemption and preemption delay, use the standby preempt command in interface configuration mode. To restore the default values, use the no form of this command. standby [group-number] preempt [delay {minimum seconds reload seconds sync seconds}] no standby [group-number] preempt [delay {minimum seconds reload seconds sync seconds}] group-number delay minimum seconds reload seconds sync seconds (Optional) Group number on the interface to which the other arguments in this command apply. (Optional) Required if either the minimum, reload, or sync keywords are specified. (Optional) Specifies the minimum delay period in seconds. The seconds argument causes the local router to postpone taking over the active role for a minimum number of seconds since that router was last restarted. The range is from 0 to 3600 seconds (1 hour). The default is 0 seconds (no delay). (Optional) Specifies the preemption delay, in seconds, after a reload only. This delay period applies only to the first interface-up event after the router has reloaded. (Optional) Specifies the maximum synchronization period for IP redundancy clients in seconds. Defaults The default group number is 0. The default delay is 0 seconds; if the router wants to preempt, it will do so immediately. By default, the router that comes up later becomes the standby. Command Modes Interface configuration (config-if) 11.3 This command was introduced. 12.2SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. 12.0(2)T The minimum and sync keywords were added The behavior of the command changed such that standby preempt and standby priority must be entered as separate commands The reload keyword was added. 12.4(4)T Support for IPv6 was added. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. IAP-566
35 standby preempt 12.2(31)SB2 12.2(33)SXH This command was integrated into Cisco IOS 12.2(31)SB2. The behavior of the command changed such that standby preempt and standby priority must be entered as separate commands. Usage Guidelines Note Cisco IOS 12.2SX software releases earlier than Cisco IOS 12.2(33)SXH use the syntax from Cisco IOS 12.1, which supports preempt as a keyword for the standby priority command. Cisco IOS 12.2(33)SXH and later releases use Cisco IOS 12.2 syntax, which requires standby preempt and standby priority to be entered as separate commands. When the standby preempt command is configured, the router is configured to preempt, which means that when the local router has a Hot Standby priority higher than the current active router, the local router should attempt to assume control as the active router. If preemption is not configured, the local router assumes control as the active router only if it receives information indicating no router is in the active state (acting as the designated router). This command is separate from the standby delay minimum reload interface configuration command, which delays HSRP groups from initializing for the specified time after the interface comes up. When a router first comes up, it does not have a complete routing table. If it is configured to preempt, it will become the active router, yet it is unable to provide adequate routing services. Solve this problem by configuring a delay before the preempting router actually preempts the currently active router. When group number 0 is used, no group number is written to NVRAM, providing backward compatibility. IP redundancy clients can prevent preemption from taking place. The standby preempt delay sync seconds command specifies a maximum number of seconds to allow IP redundancy clients to prevent preemption. When this expires, then preemption takes place regardless of the state of the IP redundancy clients. The standby preempt delay reload seconds command allows preemption to occur only after a router reloads. This provides stabilization of the router at startup. After this initial delay at startup, the operation returns to the default behavior. The no standby preempt delay command will disable the preemption delay but preemption will remain enabled. The no standby preempt delay minimum seconds command will disable the minimum delay but leave any synchronization delay if it was configured. When the standby follow command is used to configure an HSRP group to become an IP redundancy client of another HSRP group, the client group takes its state from the master group it is following. Therefore, the client group does not use its timer, priority, or preemption settings. A warning is displayed if these settings are configured on a client group: Router(config-if)# standby 1 preempt delay minimum 300 % Warning: This setting has no effect while following another group. IAP-567
36 standby preempt IP Application Services Commands In the following example, the router will wait for 300 seconds (5 minutes) before attempting to become the active router: interface ethernet 0 standby ip standby preempt delay minimum 300 IAP-568
37 standby priority standby priority To configure Hot Standby Router Protocol (HSRP) priority, use the standby priority command in interface configuration mode. To restore the default values, use the no form of this command. standby [group-number] priority priority no standby [group-number] priority priority group-number priority (Optional) Group number on the interface to which the other arguments in this command apply. The default group number is 0. Priority value that prioritizes a potential Hot Standby router. The range is from 1 to 255, where 1 denotes the lowest priority and 255 denotes the highest priority. The default priority value is 100. The router in the HSRP group with the highest priority value becomes the active router. Defaults The default group number is 0. The default priority is 100. Command Modes Interface configuration (config-if) 11.3 This command was introduced. 12.2SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware The behavior of the command changed such that standby preempt and standby priority must be entered as separate commands. 12.4(4)T Support for IPv6 was added. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB (33)SXH The behavior of the command changed such that standby preempt and standby priority must be entered as separate commands. Usage Guidelines Note Cisco IOS 12.2SX software releases earlier than Cisco IOS 12.2(33)SXH use the syntax from Cisco IOS 12.1, which supports preempt as a keyword for the standby priority command. Cisco IOS 12.2(33)SXH and later releases use Cisco IOS 12.2 syntax, which requires standby preempt and standby priority to be entered as separate commands. When group number 0 is used, the number 0 is written to NVRAM, providing backward compatibility. IAP-569
38 standby priority IP Application Services Commands The assigned priority is used to help select the active and standby routers. Assuming that preemption is enabled, the router with the highest priority becomes the designated active router. In case of ties, the primary IP addresses are compared, and the higher IP address has priority. Note that the priority of the device can change dynamically if an interface is configured with the standby track command and another interface on the router or a tracked object goes down. When the standby follow command is used to configure an HSRP group to become an IP redundancy client of another HSRP group, the client group takes its state from the master group it is following. Therefore, the client group does not use its timer, priority, or preemption settings. A warning is displayed if these settings are configured on a client group: Router(config-if)# standby 1 priority 110 %Warning: This setting has no effect while following another group. In the following example, the router has a priority of 120 (higher than the default value): interface ethernet 0 standby ip standby priority 120 standby preempt delay 300 Related Commands Command Description standby track Configures an interface so that the Hot Standby priority changes based on the availability of other interfaces. IAP-570
39 standby redirect standby redirect To enable Hot Standby Router Protocol (HSRP) filtering of Internet Control Message Protocol (ICMP) redirect messages, use the standby redirect command in interface configuration mode. To disable the HSRP filtering of ICMP redirect messages, use the no form of this command. standby redirect [timers advertisement holddown] [unknown] no standby redirect [unknown] timers advertisement holddown unknown (Optional) Adjusts HSRP router advertisement timers. (Optional) HSRP Router advertisement interval in seconds. This is an integer from 10 to 180. The default is 60 seconds. (Optional) HSRP router holddown interval in seconds. This is an integer from 61 to The default is 180 seconds. (Optional) Allows sending of ICMP packets when the next hop IP address contained in the packet is unknown in the HSRP table of real IP addresses and active virtual IP addresses. The no standby redirect unknown command stops the redirects from being sent. Command Default HSRP filtering of ICMP redirect messages is enabled if HSRP is configured on an interface. Command Modes Interface configuration (config-if) 12.1(3)T This command was introduced The following keywords and arguments were added to the command: timers advertisement holdtime 12.3(2)T 12.2(33)SRA 12.2(31)SB2 12.2SX Cisco IOS XE 2.1 unknown The enable and disable keywords were deprecated. This command was integrated into Cisco IOS 12.2(33)SRA. This command was integrated into Cisco IOS 12.2(31)SB2. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. This command was integrated into Cisco IOS XE 2.1. IAP-571
40 standby redirect IP Application Services Commands Usage Guidelines The standby redirect command can be configured globally or on a per-interface basis. When HSRP is first configured on an interface, the setting for that interface will inherit the global value. If the filtering of ICMP redirects is explicitly disabled on an interface, then the global command cannot reenable this functionality. With the standby redirect command enabled, the real IP address of a router can be replaced with a virtual IP address in the next hop address or gateway field of the redirect packet. HSRP looks up the next hop IP address in its table of real IP addresses versus virtual IP addresses. If HSRP does not find a match, the HSRP router allows the redirect packet to go out unchanged. The host HSRP router is redirected to a router that is unknown, that is, a router with no active HSRP groups. You can specify the no standby redirect unknown command to stop these redirects from being sent. The following example shows how to allow HSRP to filter ICMP redirect messages on interface Ethernet 0: interface ethernet 0 ip address standby redirect standby 1 ip The following example shows how to change the HSRP router advertisement interval to 90 seconds and the holddown timer to 270 seconds on interface Ethernet 0: interface ethernet 0 ip address standby redirect timers standby 1 ip Related Commands Command Description show standby Displays the HSRP information. show standby redirect Displays ICMP redirect information on interfaces configured with the HSRP. IAP-572
41 standby redirects (global) standby redirects (global) To configure Internet Control Message Protocol (ICMP) redirect messages with a Hot Standby Router Protocol (HSRP) virtual IP address as the gateway IP address, use the standby redirects command in global configuration mode. To disable the configuration, use the no form of this command. standby redirects [disable enable] no standby redirects disable enable (Optional) Disables the gateway address configuration. (Optional) Enables the gateway address configuration. Command Default The HSRP virtual IP address is configured as the gateway IP address. Command Modes Global configuration (config) 15.0(1)M 12.2(33)SRC 12.2(33)SXI Cisco IOS XE 2.1 This command was introduced in a release earlier than Cisco IOS 15.0(1)M. This command was integrated into a release earlier than Cisco IOS 12.2(33)SRC. This command was integrated into a release earlier than Cisco IOS 12.2(33)SXI. This command was integrated into Cisco IOS XE 2.1 and implemented on the Cisco ASR 1000 Series Aggregation Services Routers. The following example shows how to disable the gateway address configuration: Router# configure terminal Router(config)# standby redirects disable Related Commands Command show standby redirect Description Displays ICMP redirect information on interfaces configured with the HSRP. IAP-573
42 standby send arp IP Application Services Commands standby send arp To configure Hot Standby Router Protocol (HSRP) to send a single gratuitous ARP packet for each active HSRP group, use the standby send arp command in user EXEC or privileged EXEC mode. standby send arp [interface-type interface-number [group-number]] interface-type interface-number group-number (Optional) Interface type and number of the interface out of which ARP packets are sent. (Optional) Group number on the interface to which the other arguments in this command apply. Command Default HSRP sends gratuitous ARP packets from an HSRP group when it changes to the Active state. Command Modes User EXEC Privileged EXEC(#) 12.2(33)SXI This command was introduced. Usage Guidelines Use the standby send arp command to cause a single gratuitous ARP packet to be sent for each active group. HSRP checks that the virtual IP address is entered correctly in the ARP cache prior to sending a gratuitous ARP packet. If the ARP entry is incorrect then HSRP will try to re-add it. This enables you to ensure that a host ARP cache is updated prior to starting heavy CPU-usage processes or configurations. Static or alias ARP entries cannot be overwritten by HSRP. You can use the standby arp gratuitous command in interface configuration mode to configure the number of gratuitous ARP packets sent by an active HSRP group, and how often they are sent. The following example shows how to configure HSRP to check that an ARP cache is refreshed prior to sending a gratuitous ARP packet: Router# standby send arp ethernet0/0 1 Related Commands Command debug standby events show standby arp gratuitous Description Displays events related to HSRP. Displays the number of gratuitous ARP packets sent by HSRP and how often they are sent. standby arp gratuitous Configures the number of gratuitous ARP packets sent by an active HSRP group, and how often they are sent. IAP-574
43 standby sso standby sso To enable the Hot Standby Router Protocol (HSRP) Stateful Switchover (SSO), use the standby sso command in global configuration mode. To disable HSRP SSO, use the no form of this command. standby sso no standby sso This command has no arguments or keywords. Command Default HSRP SSO is enabled when redundancy mode SSO is configured. Command Modes Global configuration (config) 12.2(25)S 12.2(27)SBC 12.2(33)SRA 12.2(33)SXH Cisco IOS XE 2.1 This command was introduced. This command was integrated into Cisco IOS 12.2(27)SBC. This command was integrated into Cisco IOS 12.2(33)SRA. This command was integrated into Cisco IOS 12.2(33)SXH. This command was integrated into Cisco IOS XE 2.1. Usage Guidelines Use the standby sso command to enable HSRP SSO. This is the default when redundancy mode SSO is configured. When standby SSO is enabled, traffic sent using an HSRP virtual IP address continues through the HSRP group member using the current path while a Route Processor (RP) switchover occurs. The HSRP state is maintained and kept synchronized across the redundant RPs within the chassis. If you want the traffic to switch to a redundant device (another chassis) even though the redundant RP is capable of taking over, then the feature can be disabled by using the no form of the command. If the command is disabled and if the primary HSRP router fails, the HSRP state is not maintained across RP switchover and traffic targeted to the HSRP virtual IP address is handled by the standby HSRP router. The following example shows how to reenable standby SSO for HSRP if it has been disabled: standby sso Related Commands Command debug standby events show standby Description Displays standby events related to HSRP. Displays HSRP information. IAP-575
44 standby timers IP Application Services Commands standby timers To configure the time between hello packets and the time before other routers declare the active Hot Standby or standby router to be down, use the standby timers command in interface configuration mode. To restore the timers to their default values, use the no form of this command. standby [group-number] timers [msec] hellotime [msec] holdtime no standby [group-number] timers [msec] hellotime [msec] holdtime group-number msec hellotime holdtime (Optional) Group number on the interface to which the timers apply. The default is 0. (Optional) Interval in milliseconds. Millisecond timers allow for faster failover. Hello interval (in seconds). This is an integer from 1 to 254. The default is 3 seconds. If the msec option is specified, hello interval is in milliseconds. This is an integer from 15 to 999. Time (in seconds) before the active or standby router is declared to be down. This is an integer from x to 255. The default is 10 seconds. If the msec option is specified, holdtime is in milliseconds. This is an integer from y to Where: x is the hellotime + 50 milliseconds, then rounded up to the nearest 1second y is greater than or equal to 3 times the hellotime and is not less than 50 milliseconds. Defaults The default group number is 0. The default hello interval is 3 seconds. The default hold time is 10 seconds. Command Modes Interface configuration (config-if) 10.0 This command was introduced The msec keyword was added The minimum values of hellotime and holdtime in milliseconds changed. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB SX This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. IAP-576
45 standby timers Usage Guidelines The standby timers command configures the time between standby hello packets and the time before other routers declare the active or standby router to be down. Routers or access servers on which timer values are not configured can learn timer values from the active or standby router. The timers configured on the active router always override any other timer settings. All routers in a Hot Standby group should use the same timer values. Normally, holdtime is greater than or equal to 3 times the value of hellotime. The range of values for holdtime force the holdtime to be greater than the hellotime. If the timer values are specified in milliseconds, the holdtime is required to be at least three times the hellotime value and not less than 50 milliseconds. Some HSRP state flapping can occasionally occur if the holdtime is set to less than 250 milliseconds, and the processor is busy. It is recommended that holdtime values less than 250 milliseconds be used on Cisco 7200 platforms or better, and on Fast-Ethernet or FDDI interfaces or better. Setting the process-max-time command to a suitable value may also help with flapping. The value of the standby timer will not be learned through HSRP hellos if it is less than 1 second. When group number 0 is used, no group number is written to NVRAM, providing backward compatibility. When the standby follow command is used to configure an HSRP group to become an IP redundancy client of another HSRP group, the client group takes its state from the master group it is following. Therefore, the client group does not use its timer, priority, or preemption settings. A warning is displayed if these settings are configured on a client group: Router(config-if)# standby 1 timers 5 15 % Warning: This setting has no effect while following another group. The following example sets, for group number 1 on Ethernet interface 0, the time between hello packets to 5 seconds, and the time after which a router is considered to be down to 15 seconds: interface ethernet 0 standby 1 ip standby 1 timers 5 15 The following example sets, for the Hot Router interface located at on Ethernet interface 0, the time between hello packets to 300 milliseconds, and the time after which a router is considered to be down to 900 milliseconds: interface ethernet 0 standby ip standby timers msec 300 msec 900 The following example sets, for the Hot Router interface located at on Ethernet interface 0, the time between hello packets to 15 milliseconds, and the time after which a router is considered to be down to 50 milliseconds. Note that the holdtime is larger than three times the hellotime because the minimum holdtime value in milliseconds is 50. interface ethernet 0 standby ip standby timers msec 15 msec 50 IAP-577
46 standby track IP Application Services Commands standby track To configure the Hot Standby Router Protocol (HSRP) to track an object and change the Hot Standby priority on the basis of the state of the object, use the standby track command in interface configuration mode. To remove the tracking, use the no form of this command. Cisco IOS XE 2.1 and Later s standby track {object-number interface-type interface-number [decrement priority-decrement]} [shutdown] no standby track {object-number interface-type interface-number} Cisco IOS 12.2(33)SXH, 12.2(33)SRB, and Later s standby track {object-number interface-type interface-number [decrement priority-decrement]} [shutdown] no standby track {object-number interface-type interface-number} Cisco IOS 12.4(9)T and Later s standby track {object-number [priority-decrement] interface-type interface-number [decrement priority-decrement]} [shutdown] no standby track {object-number interface-type interface-number} Cisco IOS 12.2(15)T and Later s standby track {object-number [priority-decrement] interface-type interface-number [decrement priority-decrement]} no standby track {object-number interface-type interface-number} Cisco IOS s 12.2(13)T, 12.2(14)SX, 12.2(17dSXB), 12.2(33)SRA, and Earlier s standby track interface-type interface-number [interface-priority] no standby track interface-type interface-number [interface-priority] object-number Object number that represents the object to be tracked. The range is from 1 to The default is 1. interface-type Interface type (combined with interface number) that will be tracked. interface-number Interface number (combined with interface type) that will be tracked. decrement priority-decrement shutdown (Optional) Amount by which the Hot Standby priority for the router is decremented (or incremented) when the tracked object goes down (or comes back up). The range is from 1 to 255. The default is 10. (Optional) Changes the HSRP group to the Init state on the basis of the state of a tracked object. IAP-578
47 standby track interface-priority group-number (Optional) Amount by which the Hot Standby priority for the router is decremented (or incremented) when the interface goes down (or comes back up). The range is from 0 to 255. The default is 10. (Optional) Group number to which the tracking applies. Command Default There is no tracking. Command Modes Interface configuration (config-if) 10.3 This command was introduced. 12.2(15)T This command was enhanced to allow HSRP to track objects other than the interface line-protocol state. 12.2(14)SX Support for this command was introduced on the Cisco 7600 series routers running a Supervisor Engine (17d)SXB This command was integrated into Cisco IOS release 12.2(17d)SXB. 12.2(25)S This command was integrated into Cisco IOS 12.2(25)S. 12.2(28)SB This command was integrated into Cisco IOS 12.2(28)SB. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.4(9)T The shutdown keyword was added. 12.2(33)SXH This command was integrated into Cisco IOS 12.2(33)SXH. Cisco IOS XE This command was integrated into Cisco IOS XE (3)T This command was modified. The valid range of the object-number argument increased to (1)S This command was modified. The valid range for the object-number argument increased to Usage Guidelines This command ties the Hot Standby priority of the router to the availability of its tracked objects. Use the track interface command or track ip route command to track an interface object or an IP-route object. The HSRP client can register its interest in the tracking process by using the standby track command and take action when the object changes. When a tracked object goes down, the Hot Standby priority decreases by 10. If an object is not tracked, its state changes do not affect the Hot Standby priority. For each object configured for Hot Standby, you can configure a separate list of objects to be tracked. The optional priority-decrement and interface-priority arguments specify how much to decrement the Hot Standby priority when a tracked object goes down. When the tracked object comes back up, the priority is incremented by the same amount. When multiple tracked objects are down, the decrements are cumulative, whether configured with priority-decrement or interface-priority values or not. IAP-579
48 standby track IP Application Services Commands The optional shutdown keyword configures the HSRP group to change to the Init state and become disabled rather than having its priority decremented when a tracked object goes down. Use the no standby group-number track command to delete all tracking configuration for a group. When group number 0 is used, no group number is written to NVRAM, providing backward compatibility. The standby track command syntax prior to Cisco IOS 12.2(15)T is still supported. Using the older form of the command syntax will cause a tracked object to be created in the new tracking process. This tracking information can be displayed using the show track command. Note Using the command syntax of standby track prior to Cisco IOS 12.2(15)T results in the same performance as using the new standby track command syntax. If you configure HSRP to track an interface, and that interface is physically removed as in the case of an Online Insertion and Removal (OIR) operation, then HSRP regards the interface as always down. You cannot remove the HSRP interface-tracking configuration. To prevent this situation, use the no standby track command before you physically remove the interface. If an object is already being tracked by an HSRP group, you cannot change the configuration to use the HSRP Group Shutdown feature that disables the HSRP group. You must first remove the tracking configuration using the no standby track command and then reconfigure it using the standby track command with the shutdown keyword. As of Cisco IOS 15.1(3)T, a maximum of 1000 objects can be tracked. Although 1000 tracked objects can be configured, each tracked object uses CPU resources. The amount of available CPU resources on a router is dependent upon variables such as traffic load and how other protocols are configured and run. The ability to use 1000 tracked objects is dependent upon the available CPU. Testing should be conducted on site to ensure that the service works under the specific site traffic conditions. In the following example, the tracking process is configured to track the IP-routing capability of serial interface 1/0. HSRP on Ethernet interface 0/0 then registers with the tracking process to be informed of any changes to the IP-routing state of serial interface 1/0. If the IP state on serial interface 1/0 goes down, the priority of the HSRP group is reduced by 10. If both serial interfaces are operational, Router A will be the HSRP active router because it has the higher priority. However, if IP routing on serial interface 1/0 in Router A fails, the HSRP group priority will be reduced and Router B will take over as the active router, thus maintaining a default virtual gateway service to hosts on the subnet. Router A Configuration Router(config)# track 100 interface serial1/0 ip routing Router(config-track)# exit Router(config)# interface Ethernet0/0 Router(config-if)# ip address Router(config-if)# standby 1 ip Router(config-if)# standby 1 preempt Router(config-if)# standby 1 priority 105 Router(config-if)# standby 1 track 100 decrement 10 Router B Configuration Router(config)# track 100 interface serial1/0 ip routing Router(config-track)# exit Router(config)# interface Ethernet0/0 IAP-580
49 standby track Router(config-if)# ip address Router(config-if)# standby 1 ip Router(config-if)# standby 1 preempt Router(config-if)# standby 1 priority 11 Router(config-if)# standby 1 track 100 decrement 10 The following example shows how to change the configuration of a tracked object to include the HSRP Group Shutdown feature: Router(config-if)# no standby 1 track 101 decrement 10 Router(config-if)# standby 1 track 101 shutdown Related Commands Command Description show standby Displays HSRP information. show track Displays information about objects that are tracked by the tracking process. standby preempt Configures HSRP preemption and preemption delay. standby priority Configures Hot Standby priority of potential standby routers. track interface Configures an interface to be tracked and enters tracking configuration mode. track ip route Tracks the state of an IP route and enters tracking configuration mode. IAP-581
50 standby use-bia IP Application Services Commands standby use-bia To configure the Hot Standby Router Protocol (HSRP) to use the burned-in address of the interface as its virtual MAC address, instead of the preassigned MAC address (on Ethernet and FDDI) or the functional address (on Token Ring), use the standby use-bia command in interface configuration mode. To restore the default virtual MAC address, use the no form of this command. standby use-bia [scope interface] no standby use-bia scope interface (Optional) Specifies that this command is configured just for the subinterface on which it was entered, instead of the major interface. Command Default HSRP uses the preassigned MAC address on Ethernet and FDDI, or the functional address on Token Ring. Command Modes Interface configuration (config-if) 11.2 This command was introduced The behavior was modified to allow multiple standby groups to be configured for an interface configured with this command. 12.2(14)SX Support for this command was added for the Cisco 7600 series routers loaded with a Supervisor Engine (17d)SXB Support for this command was extended into Cisco IOS 12.2(17d)SXBon the Cisco 7600 series routers loaded with a Supervisor Engine (33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(31)SB2 This command was integrated into Cisco IOS 12.2(31)SB2. Usage Guidelines Note This command is not supported on Cisco 7600 series routers that are configured with a Policy Feature Card, version 2 (PFC2). The PFC2 supports a maximum of 16 unique HSRP-group numbers. You can use the same HSRP-group numbers in different VLANs. If you configure more than 16 HSRP groups, this restriction prevents use of the VLAN number as the HSRP-group number. For an interface with this command configured, multiple standby groups can be configured. Hosts on the interface must have a default gateway configured. We recommend that you set the no ip proxy-arp command on the interface. It is desirable to configure the standby use-bia command on a Token Ring interface if there are devices that reject ARP replies with source hardware addresses set to a functional address. IAP-582
51 standby use-bia When HSRP runs on a multiple-ring, source-routed bridging environment and the HRSP routers reside on different rings, configuring the standby use-bia command can prevent confusion about the routing information field. Without the scope interface keywords, the standby use-bia command applies to all subinterfaces on the major interface. The standby use-bia command may not be configured both with and without the scope interface keywords at the same time. Note Identically numbered HSRP groups use the same virtual MAC address, which might cause errors if you configure bridge groups. In the following example, the burned-in address of Token Ring interface 4/0 will be the virtual MAC address mapped to the virtual IP address: Router(config)# interface token4/0 Router(config-if)# standby use-bia IAP-583
52 standby version IP Application Services Commands standby version To change the version of the Hot Standby Router Protocol (HSRP), use the standby version command in interface configuration mode. To change to the default version, use the no form of this command. standby version {1 2} no standby version 1 Specifies HSRP version 1. 2 Specifies HSRP version 2. Defaults HSRP version 1 is the default HSRP version. Command Modes Interface configuration (config-if) 12.3(4)T 12.2(25)S 12.4(4)T 12.2(33)SRA 12.2SX Cisco IOS XE 3.1S This command was introduced. This command was integrated into Cisco IOS 12.2(25)S. Support for IPv6 was added. This command was integrated into Cisco IOS 12.2(33)SRA. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. This command was integrated into Cisco IOS XE 3.1S. Usage Guidelines HSRP version 2 addresses limitations of HSRP version 1 by providing an expanded group number range of 0 to HSRP version 2 does not interoperate with HSRP version 1. An interface cannot operate both version 1 and version 2 because both versions are mutually exclusive. However, the different versions can be run on different physical interfaces of the same router. The group number range is from 0 to 255 for HSRP version 1 and from 0 to 4095 for HSRP version 2. You cannot change from version 2 to version 1 if you have configured groups above 255. Use the no standby version command to set the HSRP version to the default version, version 1. If an HSRP version is changed, each group will reinitialize because it now has a new virtual MAC address. The following example shows how to configure HSRP version 2 on an interface with a group number of 500: IAP-584
53 standby version! interface vlan500 standby version 2 standby 500 ip standby 500 priority 110 standby 500 preempt standby 500 timers 5 15 Related Commands Command Description show standby Displays HSRP information. IAP-585
54 start-forwarding-agent IP Application Services Commands start-forwarding-agent To start the forwarding agent, use the start-forwarding-agent command in CASA-port configuration mode. start-forwarding-agent port-number [password [seconds]] port-number password seconds Port numbers on which the Forwarding Agent will listen for wildcards broadcast from the services manager. This must match the port number defined on the services manager. (Optional) Text password used for generating the MD5 digest. (Optional) Duration (in seconds) during which the Forwarding Agent will accept the new and old password. Valid range is from 0 to 3600 seconds. The default is 180 seconds. Defaults The default initial number of affinities is The default maximum number of affinities is 30,000. Command Modes CASA-port configuration (config-casa) 12.0(5)T 12.2(33)SRA 12.2SX This command was introduced. This command was integrated into Cisco IOS 12.2(33)SRA. This command is supported in the Cisco IOS 12.2SX train. Support in a specific 12.2SX release of this train depends on your feature set, platform, and platform hardware. Usage Guidelines The forwarding agent must be started before you can configure any port information for the forwarding agent. The following example specifies that the forwarding agent will listen for wildcard and fixed affinities on port 1637: start-forwarding-agent 1637 Related Commands Command forwarding-agent Description Specifies the port on which the forwarding agent will listen for wildcard and fixed affinities. IAP-586
55 sticky (firewall farm datagram protocol) sticky (firewall farm datagram protocol) To assign all connections from a client to the same firewall, use the sticky command in firewall farm datagram protocol configuration mode. To remove the client/server coupling, use the no form of this command. sticky seconds[netmask netmask] [source destination] no sticky seconds Sticky timer duration in seconds. Valid values range from 0 to netmask netmask (Optional) Places the virtual server as part of a sticky subnet, for coupling of services. source (Optional) Bases sticky on source IP address. destination (Optional) Bases sticky on destination IP address. Defaults Virtual servers are not associated with any groups. Command Modes Firewall farm datagram protocol configuration (config-slb-fw-udp) 12.1(3a)E 12.2(12c)E 12.2(14)S 12.2(18)SXE 12.2(33)SRA This command was introduced. The source and destination keywords were added. This command was integrated into Cisco IOS 12.2(14)S. This command was integrated into Cisco IOS 12.2(18)SXE. This command was integrated into Cisco IOS 12.2(33)SRA. The following example specifies that if a client s subsequent request for a firewall farm is made within 60 seconds of the previous request, then the same firewall is used for the connection: Router(config)# ip slb firewallfarm FIRE1 Router(config-slb-fw)# protocol datagram Router(config-slb-fw-udp)# sticky 60 Related Commands Command protocol datagram show ip slb firewallfarm show ip slb sticky Description Enters firewall farm datagram protocol configuration mode. Displays information about the firewall farm configuration. Displays information about the IOS SLB database. IAP-587
56 sticky (firewall farm TCP protocol) IP Application Services Commands sticky (firewall farm TCP protocol) To assign all connections from a client to the same firewall, use the sticky command in firewall farm TCP protocol configuration mode. To remove the client/server coupling, use the no form of this command. sticky seconds [netmask netmask] [source destination] no sticky seconds Sticky timer duration in seconds. Valid values range from 0 to netmask netmask (Optional) Places the virtual server as part of a sticky subnet, for coupling of services. source (Optional) Bases sticky on source IP address. destination (Optional) Bases sticky on destination IP address. Defaults Virtual servers are not associated with any groups. Command Modes Firewall farm TCP protocol configuration (config-slb-fw-tcp) 12.1(3a)E 12.2(12c)E 12.2(14)S 12.2(18)SXE 12.2(33)SRA This command was introduced. The source and destination keywords were added. This command was integrated into Cisco IOS 12.2(14)S. This command was integrated into Cisco IOS 12.2(18)SXE. This command was integrated into Cisco IOS 12.2(33)SRA. The following example specifies that if a client s subsequent request for a firewall farm is made within 60 seconds of the previous request, then the same firewall is used for the connection: Router(config)# ip slb firewallfarm FIRE1 Router(config-slb-fw)# protocol tcp Router(config-slb-fw-tcp)# sticky 60 Related Commands Command protocol tcp show ip slb firewallfarm show ip slb sticky Description Enters firewall farm TCP protocol configuration mode. Displays information about the firewall farm configuration. Displays information about the IOS SLB database. IAP-588
57 sticky (virtual server) sticky (virtual server) To assign all connections from a client to the same real server, use the sticky command in SLB virtual server configuration mode. To remove the client/server coupling, use the no form of this command. sticky {duration [group group-id] [netmask netmask] asn msid [group group-id] gtp imsi [group group-id] radius calling-station-id radius framed-ip [group group-id] radius username [msid-cisco] [group group-id]} no sticky {duration [group group-id] [netmask netmask] asn msid [group group-id] gtp imsi [group group-id] radius calling-station-id radius framed-ip [group group-id] radius username [msid-cisco] [group group-id]} duration Sticky timer duration in seconds. Valid values range from 0 to group group-id (Optional) Places the virtual server in the specified sticky group, for coupling of services. All virtual servers that have the same sticky group ID share the sticky entry for a user. In essence, the group keyword and group-id argument tie multiple virtual servers together. Valid values range from 0 to 255. netmask netmask (Optional) Places the virtual server as part of the specified sticky subnet, for coupling of services. Client sessions whose source IP addresses fall within the netmask are directed to the same real server. asn msid Enables IOS SLB to load-balance Access Service Network (ASN) sessions to the same real server that processed all previous sessions for a given Mobile Station ID (MSID). gtp imsi Enables IOS SLB to load-balance general packet radio service (GPRS) Tunneling Protocol (GTP) Packet Data Protocol (PDP) context create requests to the same real server that processed all previous create requests for a given International Mobile Subscriber ID (IMSI). radius calling-station-id Enables IOS SLB to create the IOS SLB RADIUS calling-station-id sticky database and direct RADIUS requests from a given calling station ID to the same service gateway. radius framed-ip Enables IOS Server Load Balancing (IOS SLB) to create the IOS SLB RADIUS framed-ip sticky database and direct RADIUS requests and non-radius flows from a given end user to the same service gateway. radius username Enables IOS SLB to create the IOS SLB RADIUS username sticky database and direct RADIUS requests from a given end user to the same service gateway. msid-cisco (Optional) Enables IOS SLB to support Cisco PDSNs that provide MSID-based access (also known as MSID-based access, Cisco variant). Defaults Sticky connections are not tracked. Virtual servers are not associated with any groups. IAP-589
58 sticky (virtual server) IP Application Services Commands Command Modes SLB virtual server configuration (config-slb-vserver) 12.0(7)XE This command was introduced. 12.1(5)T This command was integrated into Cisco IOS 12.1(5)T This command was integrated into Cisco IOS (2)E The netmask keyword and netmask argument were added. 12.1(11b)E The radius framed-ip keywords were added. 12.1(12c)E The radius username and msid-cisco keywords were added. 12.2(14)S This command was integrated into Cisco IOS 12.2(14)S. 12.2(14)ZA5 The radius calling-station-id keywords were added. 12.2(18)SXE The gtp imsi keywords were added. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. 12.2(33)SRE The asn msid keywords were added. Usage Guidelines The last real server that was used for a connection from a client is stored for the set duration seconds. If a new connection from the client to the virtual server is initiated during that time, the same real server that was used for the previous connection is chosen for the new connection. If two virtual servers are placed in the same group, coincident connection requests for those services from the same IP address are handled by the same real server. In Virtual Private Network (VPN) server load balancing, remember the following requirements: For IPsec flows, you must specify a sticky connection between the User Datagram Protocol (UDP) virtual server and the Encapsulation Security Payload (ESP) virtual server. For PPTP flows, you must specify a sticky connection between the TCP virtual server and the Generic Routing Encapsulation (GRE) virtual server. You must specify a duration of at least 15 seconds. In general packet radio service (GPRS) load balancing and the Home Agent Director, the sticky command is not supported. In RADIUS load balancing, remember the following requirements: If you configure the sticky radius framed-ip command, you must also configure the virtual command with the service radius keywords specified. If you configure the sticky radius calling-station-id command or the sticky radius username command, you must also configure the virtual command with the service radius keywords specified, and you must configure the sticky radius framed-ip command. You cannot configure both the sticky radius calling-station-id command and the sticky radius username command on the same virtual server. If you configure the sticky radius calling-station-id command, you must configure all RADIUS maps to match against the RADIUS calling station ID attribute. If you configure the sticky radius username command, you must configure all RADIUS maps to match against the RADIUS username attribute. IAP-590
59 sticky (virtual server) For GTP load balancing: IOS SLB creates a sticky database object when it processes the first GTP PDP create request for a given IMSI. IOS SLB removes the sticky object when it receives a notification to do so from the real server, or as a result of inactivity. When the last PDP belonging to an IMSI is deleted on the GGSN, it sends a notification to IOS SLB to remove the sticky object. If you configure the sticky gtp imsi command, you must also configure the virtual command with the service gtp keywords specified. For ASN load balancing, if you configure the sticky asn msid command, you must also configure the virtual command with the service asn keywords specified. The following example specifies that if a client s subsequent request for a virtual server is made within 60 seconds of the previous request, then the same real server is used for the connection. This example also places the virtual server in group 10. Router(config)# ip slb vserver VS1 Router(config-slb-vserver)# sticky 60 group 10 Related Commands Command Description show ip slb sticky Displays information about the IOS SLB database. show ip slb vservers Displays information about the virtual servers defined to IOS SLB. virtual Configures the virtual server attributes. IAP-591
60 synguard (virtual server) IP Application Services Commands synguard (virtual server) To limit the rate of TCP SYNchronize sequence numbers (SYNs) handled by a virtual server to prevent a SYN flood denial-of-service attack, use the synguard command in SLB virtual server configuration mode. To remove the threshold, use the no form of this command. synguard syn-count [interval] no synguard syn-count interval Number of unacknowledged SYNs that are allowed to be outstanding to a virtual server. Valid values range from 0 (off) to The default is 0. (Optional) Interval, in milliseconds, for SYN threshold monitoring. Valid values range from 50 to The default is 100 milliseconds (ms). Defaults The default number of unacknowledged SYNs that are allowed to be outstanding to a virtual server is 0 (off). The default interval is 100 ms. Command Modes SLB virtual server configuration (config-slb-vserver) 12.0(7)XE This command was introduced. 12.1(5)T This command was integrated into Cisco IOS 12.1(5)T This command was integrated into Cisco IOS (14)S This command was integrated into Cisco IOS 12.2(14)S. 12.2(18)SXE This command was integrated into Cisco IOS 12.2(18)SXE. 12.2(33)SRA This command was integrated into Cisco IOS 12.2(33)SRA. Usage Guidelines In general packet radio service (GPRS) load balancing and the Home Agent Director, the synguard command has no meaning and is not supported. The following example sets the threshold of unacknowledged SYNs to 50: Router(config)# ip slb vserver PUBLIC_HTTP Router(config-slb-vserver)# synguard 50 IAP-592
61 synguard (virtual server) Related Commands Command Description show ip slb vservers Displays information about the virtual servers defined to IOS SLB. virtual Configures the virtual server attributes. IAP-593
GLBP - Gateway Load Balancing Protocol
GLBP - Gateway Load Balancing Protocol Gateway Load Balancing Protocol (GLBP) protects data traffic from a failed router or circuit, like Hot Standby Router Protocol (HSRP) and Virtual Router Redundancy
VRRPv3: Object Tracking Integration
Virtual Router Redundancy Protocol (VRRP) enables a group of devices to form a single virtual device to provide redundancy. The LAN clients then can be configured with the virtual device as the default
- Redundancy and Load Balancing -
1 - Redundancy and Load Balancing - Importance of Redundancy High availability is critical in most environments. Even a brief outage due to hardware failure may be considered unacceptable. Consider the
Layer 3 Redundancy with HSRP By Sunset Learning Instructor Andrew Stibbards
Layer 3 Redundancy with HSRP By Sunset Learning Instructor Andrew Stibbards Hot Standby Router Protocol (HSRP) is a Cisco proprietary protocol which allows several routers or multilayer switches to appear
Cisco Networking Academy CCNP Multilayer Switching
CCNP3 v5 - Chapter 5 Cisco Networking Academy CCNP Multilayer Switching Implementing High Availability in a Campus Environment Routing issues Hosts rely on a router to find the best path Issues with established
Configuring IKEv2 Load Balancer
The IKEv2 Load Balancer feature provides support for enabling clusters of FlexVPN gateways and distributes incoming Internet Key Exchange Version 2 (IKEv2) connection requests among FlexVPN gateways. This
VRRP Technology White Paper
Issue 01 Date 2012-08-31 HUAWEI TECHNOLOGIES CO., LTD. 2012. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means without prior written consent of
Chapter 12 Configuring VRRP and VRRPE
Chapter 12 Configuring VRRP and VRRPE This chapter describes how to configure HP routing switches to configure the following router redundancy protocols: Virtual Router Redundancy Protocol (VRRP) The standard
Migration from Cisco GLBP to industry standard VRRPE
Migration from Cisco GLBP to industry standard VRRPE Technical white paper Table of contents Overview... 2 Gateway load balancing protocols... 2 Introduction to Cisco GLBP... 2 Introduction to VRRPE...
DHCP Server Port-Based Address Allocation
The feature provides port-based address allocation support on the Cisco IOS Dynamic Host Configuration Protocol (DHCP) server for the Ethernet platform. The DHCP server provides address assignment support
Configuring Redundancy
7 CHAPTER This chapter describes how to configure redundancy and contains these sections: Configuring Fault Tolerance, page 7-1 Configuring HSRP, page 7-5 Configuring Interface and Device Tracking, page
Configuring Enhanced Object Tracking
Configuring Enhanced Object Tracking First Published: May 2, 2005 Last Updated: July 1, 2009 Before the introduction of the Enhanced Object Tracking feature, the Hot Standby Router Protocol (HSRP) had
NetFlow Subinterface Support
NetFlow Subinterface Support Feature History Release Modification 12.2(14)S This feature was introduced. 12.2(15)T This feature was integrated into Cisco IOS Release 12.2 T. This document describes the
Redundancy and load balancing at L3 in Local Area Networks. Fulvio Risso Politecnico di Torino
Redundancy and load balancing at L3 in Local Area Networks Fulvio Risso Politecnico di Torino 1 Default gateway redundancy (1) H1 DG: R1 H2 DG: R1 H3 DG: R1 R1 R2 ISP1 ISP2 Internet 3 Default gateway redundancy
CCNP SWITCH: Implementing High Availability and Redundancy in a Campus Network
CCNP SWITCH: Implementing High Availability and Redundancy in a Campus Network Olga Torstensson SWITCHv6 1 Components of High Availability Redundancy Technology (including hardware and software features)
First Hop Redundancy (Layer 3) 1. Network Design First Hop. Agenda. First Hop Redundancy (Layer 3) 2. L102 - First Hop Redundancy
First Hop Redundancy (Layer 3) 1 Network Design First Hop First Hop Redundancy, Server Redundancy The problem: How can local routers be recognized by IP hosts? Note: Normally IP host has limited view of
NetFlow v9 Export Format
NetFlow v9 Export Format With this release, NetFlow can export data in NetFlow v9 (version 9) export format. This format is flexible and extensible, which provides the versatility needed to support new
DNS Commands ip dns spoofing
DNS Commands ip dns spoofing ip dns spoofing To enable Domain Name System (DNS) spoofing, use the ip dns spoofing command in global configuration mode. To disable DNS spoofing, use the no form of this
Chapter 3 Configuring Basic IPv6 Connectivity
Chapter 3 Configuring Basic IPv6 Connectivity This chapter explains how to get a ProCurve Routing Switch that supports IPv6 up and running. To configure basic IPv6 connectivity, you must do the following:
How to Configure Cisco 2600 Routers
Helsinki University of Technology Department of Communications and Networking How to Configure Cisco 2600 Routers Juha Järvinen 10.6.2004 [email protected] Modified by Zhong Yunqiu 7.8.2008 Table
Redundancy and load balancing at L3 in Local Area Networks. Fulvio Risso Politecnico di Torino
Redundancy and load balancing at L3 in Local Area Networks Fulvio Risso Politecnico di Torino 1 Problem: the router is a single point of failure H1 H2 H3 VLAN4 H4 VLAN4 Corporate LAN Corporate LAN R1 R2
Cisco Router Configuration Tutorial
Cisco Router Configuration Tutorial Cisco Inter-network Operating System: Cisco IOS Modes of Operation The Cisco IOS software provides access to several different command modes. Each command mode provides
Configuring Port Security
CHAPTER 62 This chapter describes how to configure the port security feature. For complete syntax and usage information for the commands used in this chapter, see the Cisco IOS Master List, at this URL:
CCNP Switch 642-813 Questions/Answers Implementing High Availability and Redundancy
Which Catalyst 6500 switch component integrates on individual line modules as well as on the supervisor engine? A. CPU B. Flash C. ASIC D. NVRAM Answer: C Cisco Catalyst 6500 Series with Cisco IOS Software
Cisco IOS Flexible NetFlow Command Reference
Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION
Configuring VIP and Virtual IP Interface Redundancy
CHAPTER 6 Configuring VIP and Virtual IP Interface Redundancy This chapter describes how to plan for and configure Virtual IP (VIP) and Virtual IP Interface Redundancy on the CSS. Information in this chapter
Configuring the Cisco IOS In-Service Software Upgrade Process
CHAPTER 6 Configuring the Cisco IOS In-Service Software Upgrade Process Starting with Cisco IOS 12.2(31)SGA, ISSU is supported on the Catalyst 4500. All line cards are supported. Operating on redundant
NetFlow Aggregation. Feature Overview. Aggregation Cache Schemes
NetFlow Aggregation This document describes the Cisco IOS NetFlow Aggregation feature, which allows Cisco NetFlow users to summarize NetFlow export data on an IOS router before the data is exported to
Redundancy and load balancing at L3 in Local. Fulvio Risso Politecnico di Torino
Redundancy and load balancing at L3 in Local Area Networks Fulvio Risso Politecnico di Torino 1 Copyright notice This set of transparencies, hereinafter referred to as slides, is protected by copyright
Brocade to Cisco Comparisons
1 2 3 Console cables - The console cables are not interchangeable between Brocade and Cisco. Each vendor provides their console cable with each manageable unit it sells. Passwords - Neither Cisco or Brocade
Configuring SNMP and using the NetFlow MIB to Monitor NetFlow Data
Configuring SNMP and using the NetFlow MIB to Monitor NetFlow Data NetFlow is a technology that provides highly granular per-flow statistics on traffic in a Cisco router. The NetFlow MIB feature provides
Basic Configuration of the Cisco 12000 Series Internet Router
CHAPTER 2 Basic Configuration of the Cisco 12000 Series Internet Router This chapter describes how to boot and configure the Cisco 12000 Series Internet Router. It discusses the following subjects: Cisco
Simulation of High Availability Internet Service Provider s Network
Abdullah Jameel Mahdi 1 and Anas Ali Hussain 2 1 Information and Communication department, Information Engineering Collage, Al-Nahrin University 2 Computer department, Engineering Collage, Al-Nahrin University
Configuring a Load-Balancing Scheme
This module contains information about Cisco Express Forwarding and describes the tasks for configuring a load-balancing scheme for Cisco Express Forwarding traffic. Load-balancing allows you to optimize
Configuring Server Load Balancing
Configuring Server Load Balancing This chapter describes how to configure the IOS Server Load Balancing (SLB) feature. For a complete description of the SLB commands in this chapter, refer to the Server
High Availability. Vyatta System
VYATTA, INC. Vyatta System High Availability REFERENCE GUIDE WAN Load Balancing VRRP Clustering Stateful NAT and Firewall Failover RAID 1 Configuration Synchronization Vyatta Suite 200 1301 Shoreway Road
Firewall Load Balancing
CHAPTER 6 This chapter describes the (FWLB) feature. It includes the following sections: FWLB Overview, page 6-1 FWLB Features, page 6-2 FWLB Configuration Tasks, page 6-3 Monitoring and Maintaining FWLB,
crypto key generate rsa
, page 2 1 To generate Rivest, Shamir, and Adelman (RSA) key pairs, use the commandinglobal configuration mode. [general-keys usage-keys signature encryption] [label key-label] [exportable] [modulus modulus-size]
- Advanced IOS Functions -
1 The Configuration Register - Advanced IOS Functions - The configuration register (config-register) is a hexadecimal value that controls various aspects of how a router boots, including: Baud Rate Boot
High Availability. Vyatta System
VYATTA, INC. Vyatta System High Availability REFERENCE GUIDE WAN Load Balancing VRRP Clustering Stateful NAT and Firewall Failover RAID 1 Configuration Synchronization Vyatta Suite 200 1301 Shoreway Road
Configuring Simple Network Management Protocol (SNMP)
Configuring Simple Network Management Protocol (SNMP) This chapter describes the Simple Network Management Protocol (SNMP), SNMP Management Information Bases (MIBs), and how to configure SNMP on Cisco
Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.
Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials. CHAPTER 5 OBJECTIVES Configure a router with an initial configuration. Use the
Configuring System Message Logging
CHAPTER 1 This chapter describes how to configure system message logging on the Cisco 4700 Series Application Control Engine (ACE) appliance. Each ACE contains a number of log files that retain records
Configuring a Load-Balancing Scheme
Configuring a Load-Balancing Scheme Last Updated: October 5, 2011 This module contains information about Cisco Express Forwarding and describes the tasks for configuring a load-balancing scheme for Cisco
The VRRP Project. (Virtual Router Redundancy Protocol) Design Document
The VRRP Project (Virtual Router Redundancy Protocol) Design Document [email protected] Solaris Networking Sun Microsystems, Inc. Revision 1.0 July 7, 2009 Contents 1 Introduction...1 2 Requirements...1
Cisco IOS NetFlow Command Reference
July 2011 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND
Sampled NetFlow. Feature Overview. Benefits
Sampled NetFlow This feature module describes the Sampled NetFlow feature. It includes information on the benefits of the new feature, supported platforms, supported standards, and the commands necessary
- Basic Router Security -
1 Enable Passwords - Basic Router Security - The enable password protects a router s Privileged mode. This password can be set or changed from Global Configuration mode: Router(config)# enable password
IOS Server Load Balancing
IOS Server Load Balancing This feature module describes the Cisco IOS Server Load Balancing (SLB) feature. It includes the following sections: Feature Overview, page 1 Supported Platforms, page 5 Supported
IOS Server Load Balancing
IOS Server Load Balancing This feature module describes the Cisco IOS Server Load Balancing (SLB) feature. It includes the following sections: Feature Overview, page 1 Supported Platforms, page 5 Supported
Configuring EtherChannels
CHAPTER 12 This chapter describes how to configure EtherChannels on the Cisco 7600 series router Layer 2 or Layer 3 LAN ports. For complete syntax and usage information for the commands used in this chapter,
Configuring LLDP, LLDP-MED, and Location Service
27 CHAPTER Configuring LLDP, LLDP-MED, and Location Service This chapter describes how to configure the Link Layer Discovery Protocol (LLDP), LLDP Media Endpoint Discovery (LLDP-MED), and Location Service
High Availability. FortiOS Handbook v3 for FortiOS 4.0 MR3
High Availability FortiOS Handbook v3 for FortiOS 4.0 MR3 FortiOS Handbook High Availability v3 2 May 2014 01-431-99686-20140502 Copyright 2014 Fortinet, Inc. All rights reserved. Fortinet, FortiGate,
M2M Series Routers. Virtual Router Redundancy Protocol (VRRP) Configuration Whitepaper
Virtual Router Redundancy Protocol (VRRP) Configuration Whitepaper Table of Contents What is VRRP?... 3 VRRP Terminology... 3 Virtual Router... 3 VRRP Instance... 3 Virtual Router ID... 3 Virtual Router
Static and Dynamic Network Configuration
CHAPTER 6 This chapter describes: Static Networks Dynamic Networks Static Networks The mobile access router can be part of a static network or a dynamic network. A static network supports stub routers
RESILIENT NETWORK DESIGN
Matěj Grégr RESILIENT NETWORK DESIGN 1/36 2011 Brno University of Technology, Faculty of Information Technology, Matěj Grégr, [email protected] Campus Best Practices - Resilient network design Campus
Configuring DHCP. DHCP Server Overview
Configuring DHCP This chapter describes how to configure Dynamic Host Configuration Protocol (DHCP). For a complete description of the DHCP commands listed in this chapter, refer to the DHCP s chapter
ROM Monitor. Entering the ROM Monitor APPENDIX
APPENDIX B This appendix describes the Cisco router ROM monitor (also called the bootstrap program). The ROM monitor firmware runs when the router is powered up or reset. The firmware helps to initialize
Tech Note Cisco IOS SNMP Traps Supported and How to Conf
Tech Note Cisco IOS SNMP Traps Supported and How to Conf Table of Contents Cisco IOS SNMP Traps Supported and How to Configure Them...1 Introduction...1 Before You Begin...1 Conventions...1 Prerequisites...1
CHAPTER 3 STATIC ROUTING
CHAPTER 3 STATIC ROUTING This chapter addresses the end-to-end delivery service of IP and explains how IP routers and hosts handle IP datagrams. The first section discusses how datagrams are forwarded
GLBP Gateway Load Balancing Protocol
GLBP Gateway Load Balancing Protocol By MEDDANE Redouane Cisco Instructor 1 How GLBP Works. GLBP works by making use of a single virtual IP address, which is configured as the default gateway on the hosts.
Terminal Server Configuration and Reference Errata
Doc. No. 78-0944-06A0 June 14, 1993 Terminal Server Configuration and Reference Errata This document supplies corrections and additional informaiton for the 9.0 version of the Cisco publication Terminal
Configuring NetFlow Switching
Configuring NetFlow Switching This chapter describes how to configure NetFlow switching. For a complete description of NetFlow commands used in this chapter, refer to the Cisco IOS Switching s chapter
VOIP-211RS/210RS/220RS/440S. SIP VoIP Router. User s Guide
VOIP-211RS/210RS/220RS/440S SIP VoIP Router User s Guide Trademarks Contents are subject to revise without prior notice. All trademarks belong to their respective owners. FCC Warning This equipment has
Table of Contents. Cisco How Does Load Balancing Work?
Table of Contents How Does Load Balancing Work?...1 Document ID: 5212...1 Introduction...1 Prerequisites...1 Requirements...1 Components Used...1 Conventions...1 Load Balancing...1 Per Destination and
RADIUS Server Load Balancing
First Published: March 20, 2006 Last Updated: September 22, 2009 The feature distributes authentication, authorization, and accounting (AAA) authentication and accounting transactions across servers in
Using Cisco IOS Software
Using Cisco IOS Software This chapter provides helpful tips for understanding and configuring Cisco IOS software using the command-line interface (CLI). It contains the following sections: Understanding
OSPF Routing Protocol
OSPF Routing Protocol Contents Introduction Network Architecture Campus Design Architecture Building Block Design Server Farm Design Core Block Design WAN Design Architecture Protocol Design Campus Design
Layer 3 Routing User s Manual
User s Manual Second Edition, July 2011 www.moxa.com/product 2011 Moxa Inc. All rights reserved. User s Manual The software described in this manual is furnished under a license agreement and may be used
Configuring a Load-Balancing Scheme
Configuring a Load-Balancing Scheme Finding Feature Information Configuring a Load-Balancing Scheme Last Updated: August 15, 2011 This module contains information about Cisco Express Forwarding and describes
High Availability Failover Optimization Tuning HA Timers PAN-OS 6.0.0
High Availability Failover Optimization Tuning HA Timers PAN-OS 6.0.0 Revision C 2013, Palo Alto Networks, Inc. www.paloaltonetworks.com Contents Overview... 3 Passive Link State Auto Configuration (A/P)...
Configuring the Transparent or Routed Firewall
5 CHAPTER This chapter describes how to set the firewall mode to routed or transparent, as well as how the firewall works in each firewall mode. This chapter also includes information about customizing
Configuring Static and Dynamic NAT Translation
This chapter contains the following sections: Network Address Translation Overview, page 1 Information About Static NAT, page 2 Dynamic NAT Overview, page 3 Timeout Mechanisms, page 4 NAT Inside and Outside
LAB THREE STATIC ROUTING
LAB THREE STATIC ROUTING In this lab you will work with four different network topologies. The topology for Parts 1-4 is shown in Figure 3.1. These parts address router configuration on Linux PCs and a
Applicazioni Telematiche
Angelo Coiro Laboratorio Applicazioni Telematiche L emulatore Packet Tracer Packet Tracer Cisco Packet Tracer is an academic software that allows to emulate Cisco devices Packet Tracer can be used for
Enhanced Password Security - Phase I
Enhanced Password Security - Phase I Feature History 120(18)S 121(8a)E 122(14)S This feature was introduced Support for this feature was integrated into Cisco IOS Release 121(8a)E This feature was integrated
Link Layer Discovery Protocol
12 Link Layer Discovery Protocol Contents Overview..................................................... 12-2 LLDP..................................................... 12-2 LLDP Messages............................................
IPv6 for Cisco IOS Software, File 2 of 3: Configuring
IPv6 for Cisco IOS Software, File 2 of 3: Configuring This document provides configuration tasks for the Cisco implementation of IP version 6 (IPv6) in the Cisco IOS software and includes the following
Encrypted Preshared Key
Encrypted Preshared Key The Encrypted Preshared Key feature allows you to securely store plain text passwords in type 6 (encrypted) format in NVRAM. Feature History for Encrypted Preshared Key Release
IP Addressing and Subnetting. 2002, Cisco Systems, Inc. All rights reserved.
IP Addressing and Subnetting 2002, Cisco Systems, Inc. All rights reserved. 1 Objectives Upon completion, you will be able to: Discuss the Types of Network Addressing Explain the Form of an IP Address
Configuring DHCP Snooping and IP Source Guard
CHAPTER 19 This chapter describes how to configure Dynamic Host Configuration Protocol (DHCP) snooping and IP Source Guard on Catalyst 4500 series switches. It provides guidelines, procedures, and configuration
Using Debug Commands
CHAPTER 1 Using Debug Commands This chapter explains how you use debug commands to diagnose and resolve internetworking problems. Specifically, it covers the following topics: Entering debug commands Using
Chapter 7 Configuring Trunk Groups and Dynamic Link Aggregation
Chapter 7 Configuring Trunk Groups and Dynamic Link Aggregation This chapter describes how to configure trunk groups and 802.3ad link aggregation. Trunk groups are manually-configured aggregate links containing
Enhanced Password Security - Phase I
Enhanced Password Security - Phase I Feature History 120(18)S This feature was introduced This document describes the Enhanced Password Security feature in It includes the following sections: Feature Overview,
REDUNDANCY PROTOCOLS FOR CAMPOUS NETWORK
REDUNDANCY PROTOCOLS FOR CAMPOUS NETWORK Kabita Sahoo * and Jagannath Ballav Goswami * Centurion University of Technology and Management, BBSR. DRIEMS, Tangi, Cuttack. ABSTRACT In this paper we are describing
CHAPTER 10 LAN REDUNDANCY. Scaling Networks
CHAPTER 10 LAN REDUNDANCY Scaling Networks CHAPTER 10 10.0 Introduction 10.1 Spanning Tree Concepts 10.2 Varieties of Spanning Tree Protocols 10.3 Spanning Tree Configuration 10.4 First-Hop Redundancy
Managing ACE Software Licenses
CHAPTER 2 This chapter describes how to manage the software licenses for your Cisco 4700 Series Application Control Engine (ACE) appliance. It contains the following major sections: Information about ACE
OSPF Test Suite and Router configuration
OSPF Test Suite and Router configuration Codenomicon Solution Note Version: 2012-03-02 1 INTRODUCTION This document will give detailed information how to configure Cisco routers and OpenBSD servers to
Cisco IOS Embedded Syslog Manager Command Reference
Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION
HTTP 1.1 Web Server and Client
HTTP 1.1 Web Server and Client Finding Feature Information HTTP 1.1 Web Server and Client Last Updated: August 17, 2011 The HTTP 1.1 Web Server and Client feature provides a consistent interface for users
Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation
Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation Nokia E70 Configuring connection settings Nokia E70 Configuring connection settings Legal Notice Copyright Nokia 2006. All
Using Debug Commands
Using Debug Commands This chapter explains how you use debug commands to diagnose and resolve internetworking problems. Specifically, it covers the following topics: Entering debug commands Using the debug?
Encrypted Preshared Key
The feature allows you to securely store plain text passwords in type 6 (encrypted) format in NVRAM. Feature History for Release Modification 12.3(2)T This feature was introduced. Finding Support Information
Configuring Failover. Understanding Failover CHAPTER
CHAPTER 15 This chapter describes the security appliance failover feature, which lets you configure two security appliances so that one takes over operation if the other one fails. This chapter includes
Enabling NetFlow and NetFlow Data Export (NDE) on Cisco Catalyst Switches
Enabling NetFlow and NetFlow Data Export (NDE) on Cisco Catalyst Switches Revised 2/1/2007 Introduction...2 Requirements...2 Catalyst 4500 Series...2 Enabling NetFlow...2 Configuring a NetFlow Destination...3
How To Understand and Configure Your Network for IntraVUE
How To Understand and Configure Your Network for IntraVUE Summary This document attempts to standardize the methods used to configure Intrauve in situations where there is little or no understanding of
Supported Platforms. Supported Standards, MIBs, and RFCs. Prerequisites. Related Features and Technologies. Related Documents. Improved Server Access
Configuring Timeout, Retransmission, and Key Values per RADIUS Server The Configuring Timeout, Retransmission, and Key Values per RADIUS Server feature extends the functionality of the existing radius-server
Using Link Layer Discovery Protocol in Multivendor Networks
Using Link Layer Discovery Protocol in Multivendor Networks Link Layer Discovery Protocol (LLDP), standardized by the IEEE as part of 802.1ab, enables standardized discovery of nodes, which in turn facilitates
SNMP Version 3. Finding Feature Information. Information About SNMP Version 3. Security Features in SNMP Version 3
The feature provides secure access to devices by authenticating and encrypting data packets over the network. Simple Network Management Protocol version 3 (SNMPv3) is an interoperable, standards-based