ManualsPro Cisco CISCO SD-WAN Vrrp Interface Tracking Installation Guide

CISCO SD-WAN Vrrp Interface Tracking Installation Guide

June 15, 2024
Cisco

CISCO-LOGO

CISCO SD-WAN Vrrp Interface Tracking

CISCO-SD-WAN-Vrrp-Interface-Tracking-PRO

Product Information

Description: VRRP Interface Tracking is a feature that enables VRRP to set the edge as active or standby based on the WAN Interface or SIG tracker events and increase the TLOC preference value on a new VRRP active to ensure traffic symmetry. This feature is available for Cisco vEdge Devices.

Release Information:

Feature Name Release Information

VRRP Interface Tracking for Cisco SD-WAN Release vEdge
Devices| 20.4.1
VRRP Interface Tracking for Cisco SD-WAN Release vEdge
Devices| 20.7.1

Product Usage Instructions

  • Section 1: Introduction
     The Virtual Router Redundancy Protocol (VRRP) is a LAN-side protocol that provides redundant gateway service for switches and other IP end stations. In Cisco SD-WAN, you can configure VRRP on interfaces and subinterfaces within a VPN.

  • Section 2: Restrictions and Limitations

    • For more information, refer to the “Configuring VRRP” documentation.
    • Starting from Cisco SD-WAN release 20.7.1, you can configure VRRP tracking using Cisco vManage feature template.
    • In Cisco SD-WAN release 20.6.1 and earlier releases, to update any existing VRRP configuration and add VRRP tracking, convert the configuration and the VRRP tracking commands to the CLI template.

  • Section 3: VRRP Tracking Use Cases
     The VRRP state is determined based on the tunnel link status. Ifthe tunnel or interface is down on the primary VRRP, then the traffic is directed to the secondary VRRP. The secondary VRRP router in the LAN segment becomes the primary VRRP to providegateway for the service-side traffic.

  • Section 4: Workflow to Configure VRRP Tracking
    Note:     We recommend using the same TLOC preference value for all TLOCs in a site.

    • Configure an object tracker. For detailed instructions, refer to the “Configure an Object Tracker” section below.

    • Configure VRRP for a VPN Interface template and associate the object tracker with the template. For detailed instructions, refer to the “Configure VRRP for a VPN Interface Template and Associate Interface Object Tracker” section below.

    • Configure an Object Tracker
       To configure an object tracker, follow these steps:

    • From the Cisco vManage menu, choose Configuration > Templates.

    • Click Feature.

    • Navigate to the System template for the device.

    • Configure VRRP for a VPN Interface Template and Associate Interface Object Tracker
       To configure VRRP for a VPN Interface template and associate the object tracker, follow these steps:

    • Step 1

    • Step 2

    • Step 3

Specifications

  • Feature Name : VRRP Interface Tracking
  • Supported Devices: Cisco vEdge Devices
  • Release Information:
    • 20.4.1 – VRRP Interface Tracking for Cisco SD-WAN Release vEdge Devices
    • 20.7.1 – VRRP Interface Tracking for Cisco SD-WAN Release vEdge Devices

FAQ

  • What is VRRP Interface Tracking?
     VRRP Interface Tracking is a feature that enables VRRP to setthe edge as active or standby based on the WAN Interface or SIG tracker events and increase the TLOC preference value on a new VRRP active to ensure traffic symmetry.

  • Which devices support VRRP Interface Tracking?
     VRRP Interface Tracking is supported on Cisco vEdge Devices.

  • How can I configure VRRP Interface Tracking?
     To configure VRRP Interface Tracking, follow the workflow mentioned in Section 4 of the user manual.

Feature History

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-1

  • Information About VRRP Interface Tracking, on page 1
  • Restrictions and Limitations, on page 2
  • VRRP Tracking Use Cases, on page 2
  • Workflow to Configure VRRP Tracking, on page 3
  • Configure an Object Tracker, on page 3
  • Configure VRRP for a VPN Interface Template and Associate Interface Object Tracker, on page 4
  • Configure VRRP Tracking Using CLI Templates, on page 5
  • Configuration Example for VRRP Object Tracking Using CLI, on page 6
  • Configuration Examples for SIG Object Tracking, on page 7
  • Verify VRRP Tracking, on page 7

Information About VRRP Interface Tracking

  • The Virtual Router Redundancy Protocol (VRRP) is a LAN-side protocol that provides redundant gateway service for switches and other IP end stations. In Cisco SD-WAN, you can configure VRRP on interfaces and subinterfaces, within a VPN.
  • For more information, see Configuring VRRP.
  • The VRRP Tracking feature enables switching to a backup or a secondary VRRP router in the following scenarios:
    • If a single tunnel (or two tunnels – when you configure redundancy using Transport Locators (TLOC)) on a vEdge device goes down. In this case, the VRRP priority decrements and the secondary router becomes the primary router. VRRP notifies this change to the overlay through Overlay Management Protocol (OMP).
    • VRRP can track up to one interface object or Secure Internet Gateway (SIG) object for a group. The interface object can have up to four interfaces. Hence, a group can track up to four tunnel interfaces. The VRRP priority decrements only if all the interfaces of an interface object go down.

Restrictions and Limitations

  • VRRP is only supported with service-side VPNs. If you are using subinterfaces, configure VRRP physical interfaces in VPN 0.

  • VRRP tracking is enabled on either a physical uplink interface or a logical tunnel interface (IPSEC or GRE or both).

  • The VRRP Tracking feature does not support IP prefix as an object.

  • You can track a maximum of four interfaces simultaneously using a single tracker. VRRP state transition gets triggered only if all four interfaces go down.

  • You can use the same tracker under multiple VRRP groups or VPNs.

  • You cannot configure tloc-change and increase-preference on more than one VRRP group.

  • In Cisco SD-WAN release 20.6.1 and earlier releases, you can configure VRRP tracking only through Cisco vManage CLI template.
    Note

    • Starting from Cisco SD-WAN release 20.7.1, you can configure VRRP tracking using Cisco vManage feature template as well.
    • In Cisco SD-WAN release 20.6.1 and earlier releases, to update any existing VRRP configuration and add VRRP tracking, convert the configuration and the VRRP tracking commands to the CLI template.

VRRP Tracking Use Cases

The VRRP state is determined based on the tunnel link status. If the tunnel or interface is down on the primary VRRP, then the traffic is directed to the secondary VRRP. The secondary VRRP router in the LAN segment becomes primary VRRP to provide gateway for the service-side traffic.

Zscaler Tunnel Use Case 1—Primary VRRP, Single Internet Provider
The primary and secondary Zscaler tunnels are connected through a single internet provider to the primary VRRP. The primary and secondary VRRP routers are connected through using TLOC extension. In this scenario, the VRRP state transition occurs if the primary and secondary tunnels go down on primary VRRP. The predetermined priority value decrements when the tracking object is down, which triggers the VRRP state transition. To avoid asymmetric routing, VRRP notifies this change to the Overlay through OMP.

Zscaler Tunnel Use Case 2—VRRP Routers in TLOC Extension, Dual Internet Providers
The primary and secondary VRRP routers are configured in TLOC extension high availability mode. The primary and secondary Zscaler tunnels are directly connected with primary and secondary VRRP routers, respectively, using dual internet providers. In this scenario too, the VRRP state transition occurs if the primary and secondary tunnels go down on primary VRRP. The predetermined priority value decrements when the tracking object is down, which triggers the VRRP state transition. VRRP notifies this change to the Overlay through OMP.

TLOC Preference
Transport Locators (TLOCs) connect an OMP route to a physical location. A TLOC is directly reachable using an entry in the routing table of the physical network, or represented by a prefix beyond a NAT device.
The TLOC change preference is an optional configuration under VRRP group. If you configure TLOC change preference value using the tloc-change-pref command, the value increases by 1 when a node becomes the primary node. The configured or default TLOC preference is applied back on standby state.
Note
We recommend that you use the same TLOC preference value for all TLOCs in a site. For a Cisco vEdge device, the default TLOC preference for the tunnel interface can be modified irrespective of whether VRRP is configured or not. However, if you want to use the VRRP tracking feature and utilize the advantage of TLOC preference values for VRRP tracking, ensure that the default tunnel preference is same on both the VRRP routers.

Workflow to Configure VRRP Tracking

  1. Configure an object tracker. For more information, see Configure an Object Tracker, on page 3.
  2. Configure VRRP for a VPN Interface template and associate the object tracker with the template. For more information, see Configure VRRP for a VPN Interface Template and Associate Interface Object Tracker, on page 4.

Configure an Object Tracker

Use the System template to configure an object tracker.

  1. From the Cisco vManage menu, choose Configuration > Templates.

  2. Click Feature.

  3. Navigate to the System template for the device.
    Note To create a System template, see Create System Template

  4. Click Tracker, and click New Object Tracker to configure the tracker parameters.CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-2

  5. Click Add.

  6. Click Save.

Configure VRRP for a VPN Interface Template and Associate Interface

Object Tracker

To configure VRRP for a VPN template, do the following:

  1. From the Cisco vManage menu, choose Configuration > Templates.

  2. Click Feature Templates.
    Note In Cisco vManage Release 20.7.x and earlier releases, Feature Templates is titled Feature.

  3. Navigate to the VPN Interface Ethernet template for the device.
    Note For information about creating a new VPN Interface Ethernet template, see Configure VPN Ethernet Interface.

  4. Click VRRP and choose IPv4.

  5. Click New VRRP to create a new VRRP or edit the existing VRRP and configure the following parameters:CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-3

  6. Click the Add Tracking Object link, and in the Tracking Object dialog box that is displayed, click Add Tracking Object.

  7. In the Tracker Name field, enter the name of the tracker.

  8. From the Action drop-down list, choose Decrement and enter the Decrement Value.

  9. Click Add.

  10. Click Add to save the VRRP details.

  11. Click Save.

Configure VRRP Tracking Using CLI Templates

You can configure VRRP tracking using the CLI add-on feature templates and CLI device templates. For more information, see CLI Templates.

VRRP Object Tracking Using CLI

Configure Track List Interface
Use the following configuration to add an interface to a track list using Cisco vManage device CLI tempale:

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-4

Configure Interface Tracking and Priority Decrement

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-5

SIG Container Tracking

The following example shows how to configure a track list and tracking for SIG containers using the Cisco vManage device CLI template.
Note In SIG Object Tracking, you can only set global as the variable for Service Name.

  • Configure Track List for SIG Container****  

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-6

  • Configure SIG Container Tracking and Priority Decrement****  

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-7

  • Configure SIG Container Tracking for VRRP Group****CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-8

Configuration Example for VRRP Object Tracking Using CLI

Interface Object Tracking Using CLI
This example shows how to addan interface to a track list using Cisco vManage device CLI template:

Configure Interface Tracking and Priority Decrement

Configuration Examples for SIG Object Tracking

Configure Track List for SIG Container

Configure SIG Container Tracking and Priority Decrement

Verify VRRP Tracking

Device# show vrrp
The following is a sample output for the show vrrp command:

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-13

Device# show vrrp detail
The following is a sample output for the show vrrp detail command:

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-14 CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-15

Device# show run system
The following is a sample output for the show run system command:

CISCO-SD-WAN-Vrrp-Interface-Tracking-FIG-16

References

Read User Manual Online (PDF format)

Read User Manual Online (PDF format)  >>

Download This Manual (PDF format)

Download this manual  >>

Cisco User Manuals

cisco Configuring Console Access Instructions
Cisco
cisco HyperFlex HX-Series Data Platform for HCI Instructions
Cisco
CISCO Meraki Cloud Monitoring for Catalyst User Guide
Cisco
CISCO Cloud-Delivered Catalyst SD-WAN Platform User Guide
Cisco
CISCO 60079011 Wi Fi 6 E Access Point User Manual
Cisco
CISCO IP Phone o Through the Normal Startup Process User Guide
Cisco
CISCO Install Enterprise NFVIS Using USB User Guide
Cisco
CISCO NCS 1014 Network Convergence System 1014 Instruction Manual
Cisco
CISCO Set Up Webex User Guide
Cisco
CISCO Webex App User Guide
Cisco
CISCO DNA Center Configure Telemetry User Guide
Cisco
802.11 Parameters for Cisco Access Points User Guide
Cisco
CISCO Nexus 3000 Series NX-OS Verified Scalability Guide Release 9.3 Instruction Manual Product Information
Cisco
CISCO P-LTE-450 Cellular Pluggable Interface Module Configuration User Guide
Cisco
CISCO Nexus 3600 Series NX-OS Verified Scalability Guide Release 9.3 User Guide
Cisco
CISCO Nexus 3000 SeriesNX-OS Verified Scalability Guide Release 9.3 User Guide
Cisco
CISCO Nexus 3000 Series NX-OS Verified Scalability Guide User Guide
Cisco
CISCO Nexus 9804 NX-OS Mode Switch Hardware Installation Guide
Cisco
CISCO Nexus 3548 Series NX-OS Verified Scalability Instructions
Cisco
CISCO 9.0SU Emergency Responder User Guide
Cisco

Related Manuals

Origami rack Warranty Information
Origami rack
Richmar InTENSity 7 IF Combo TENS Machine User Guide
Richmar
Silonn SLIM09T Countertop Ice Maker Instruction Manual
Silonn
FISHER PAYKEL WH2424P2 Front Load Washer 2.4 cu ft User Guide
Fisher & Paykel
Cambride Audio Melomania 1 True Wireless Earbuds User Manual
Cambride Audio
Hisense 65R6E4 Roku TV User Guide
Hisense
TRUE FINE TD20021W Bathroom Vanity Wall Sconce Instruction Manual
TRUE FINE
dals 5003-CC Color Temperature Changing 3 Inch Round Panel Light Installation Guide
dals
ADJ Mega Go Flood Par HO RGBA LED Wash Fixture User Manual
ADJ
FUSION 917RGBRC Wireless Remote and Speaker Lighting Control Module Instruction Manual
FUSION
VEYMAX Cejour ER Electric Skateboard User Manual
VEYMAX
JOOLA 110-2207 Nova Plus Table Instruction Manual
JOOLA
Kydera DR-8200 Series Digital Handheld Radio Instruction Manual
Kydera
chacon 32180 Metal Socket Copper Instruction Manual
CHACON
720 Wireless Keyboard with Touchpad Instructions
HP
PXF LIGHTING FS006.11.1500 Finestra Ring LED Premium Instructions
PXF LIGHTING
waterpik WP-672 Professional Water Flosser User Guide
Waterpik
elk Home 52354-1 Brushed Gold Tall Wall Sconce Instruction Manual
elk HOME
Kmart 42942153 16 Cube Unit White Installation Guide
Kmart
SMC D-F6 Series Solid State Auto Switch User Manual
SMC
ZigBee MIGT05.19 Smart Thermostatic Radiator Vavle Instruction Manual
zigbee
GARMIN Forerunner 55 Sport Watch User Manual
Garmin
Westinghouse WHG959BD Gas Cooktop Installation Guide
Westinghouse
SUNELL SN-NVR3964E8-JR Network Video Recorder User Guide
SUNELL
ACTWIND SL-Q22 Walking Pad Under Desk Treadmill User Manual
ACTWIND
SereneLife SLFPS3 Propane Gas Fire Pit Table User Manual
serenelife
NEFF Z92WWy9X2 Mandatory Seamless Combination Kit for Glass Draft 90cm Installation Guide
Neff
SONOFF B02-F LBS Wi-Fi Smart LED Filament Bulb User Manual
SonOFF
EAW LA123 5 Inch Powered Speaker User Manual
EAW
Mikser HB-130638 Stick Mixer Instruction Manual
Mikser
Contact Us   Privacy Policy   6.453ms