Link Search Menu Expand Document

VRRP Tab

Configuration > Networking > VRRP

This tab summarizes the configuration and state for appliances deployed with Virtual Router Redundancy Protocol (VRRP).

VRRP specifies an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN. The VRRP router controlling the IP address(es) associated with a virtual router is called the Master and forwards packets sent to these IP addresses. The election process provides dynamic failover in the forwarding responsibility should the Master become unavailable. This allows end hosts to use any virtual router IP addresses on the LAN as the default first-hop router. The advantage gained from using VRRP is a higher availability default path without configuring dynamic routing protocols such as BGP or OSPF.

VRRP Edit Row

Click Add VRRP to begin completing the fields in the following table.

VRRP Tab Settings

Field Description
Version Select the VRRP version that applies for your system:

2 – Supports only IPv4.

3 – Supports IPv4 and IPv6; does not support authentication strings.
Group ID The value is assigned to a group of routing devices. The group most commonly includes two appliances, but depending on the deployment, could contain one or more appliances and a router (or L3 switch), or more than two appliances. The valid range is 1 to 255.
Interface Choose an interface that VRRP will use for peering from a list of configured system interfaces.
State The VRRP instance has three states:

Backup – Instance is in VRRP backup state.

Init – Instance is initializing, it is disabled, or the interface is down.

Master – Instance is the current VRRP master.
Admin Select up (enable) or down (disable).
Virtual IP IP address of the VRRP instance. VRRP instances can run between two or more appliances, or appliances and routers.
Hold Down The number of seconds a higher-priority backup router that has just started up waits before preempting the primary router. It is best practice to configure a hold time so that routing protocols converge and tunnels come back up before preemption occurs. The default value is 60 sec to account for the default quiescent tunnel keep alive time. The minimum value is 1 second.
Advertisement Timer The time interval between sent advertisements. For version 2, the time is measured in seconds, and the default is 1 sec. For version 3, the time is measured in centi-seconds, and the default is 1 centi-sec. 1 centi-sec = 10ms.
Priority Config The greater the number, the higher the priority. The appliance with the higher priority is the VRRP Master.
Priority State The current VRRP priority, which can be influenced by IP SLA rules.
Preemption Leave this selected/enabled so that after a failure, the appliance with the highest priority comes back online and again assumes primary responsibility.
Authentication String Clear text password for authenticating VRRP version 2 group members. You cannot use an authentication string if you are using VRRP version 3.
Description Free-form text field where you can enter a description of the VRRP instance.
Details Click the info icon in this column to view the following details about the VRRP instance.

Master IP – The interface or local IP address of the current VRRP Master.

Virtual MAC Address – MAC Address that the VRRP instance is using. On a hardware appliance, this is in 00-00-5E-00-01-{VRID} format. On virtual appliances, the VRRP instance uses the MAC Address assigned to the interface (for example, the MAC address that the hypervisor assigned to wan0).

State Uptime – Time elapsed since the VRRP instance entered the state it is in.

Master State Transitions – Number of times the VRRP instance went from Master to Backup and vice versa. A high number of transitions indicates a problematic VRRP configuration or unstable network. In this case, check the configuration of all local appliances and routers, and then review the log files.

IP Address Owner – An EdgeConnect appliance cannot use one of its own IP addresses as the VRRP IP, so this will always be No.
Segment Name of the segment, if enabled.

Back to top

© Copyright 2023 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. Aruba Networks and the Aruba logo are registered trademarks of Aruba Networks, Inc. Third-party trademarks mentioned are the property of their respective owners. To view the end-user software agreement, go to Aruba EULA.