Manualshelf

Install guide

ManualsBrandsAllied Telesis ManualsComputer equipmentRapier 8
21222324252627282930
30 Release Note
Software Release 2.6.4
C613-10404-00 REV A
Adopting the VRRP IP Address
Benefits of VRRP IP Address Adoption
The VRRP master router can adopt the IP address of the virtual router (VR), and
respond to the following packets destined for the VR IP address, even if it does
not own this IP address on any of its interfaces:
ICMP echo requests (pings)
Telnet and SSH connection requests
HTTP and SSL GUI management requests
SNMP requests, and
DNS relay requests
VRRP IP Address Adoption allows continuous accessibility of the VR IP
address even as the VR master changes. Using this feature:
You can easily tell whether the VR is functioning, by pinging the single VR
IP address.
You can easily monitor the performance of the VR, regardless of which
participating router is acting as master.
DNS relay can continue functioning via the same IP address at all times.
Risks of VRRP IP Address Adoption
When VRRP IP Address Adoption is used, the master router accepts packets
destined for the virtual router, even though it may not own this IP address.
This does not conform to RFC 2338. Because the same IP address refers to
different devices at different times, there is a risk of confusion arising. This risk
can be reduced by a suitable network management policy.
Recommendations
Before using VR IP address adoption, consider the following guidelines to
avoid confusion:
Ensure that the VR has an IP address that is different from the interface IP
addresses of any of the individual routers in the VR.
Ensure that all routers in the virtual router use VRRP IP Address Adoption
(or that none do).
Use the VRRP IP address to monitor the VR master. Be aware that this does
not give information about one particular participating router, but about
the current VR master, whichever participating router is acting as the
master at the time.
Table 8: Parameters displayed in the output of the show tacplus telnet command.
Parameter Meaning
TACACS+ telnet privilege level The level of TACACS+ privilege required for using telnet on
the switch; a number in the range 0 to 15, or none. None
indicates that no TACACS+ authenticated user can use
telnet.