Virtual Router Authentication - HP Cisco MDS 9020 - Fabric Switch Configuration Manual
Cisco mds 9000 family cli configuration guide, release 3.x (ol-16184-01, april 2008)
Hide thumbs
Also See for Cisco MDS 9020 - Fabric Switch:
- Service manual (242 pages) ,
- Configuration manual (1384 pages) ,
- Handbook (141 pages)
Table of Contents
Advertisement
Chapter 43
Configuring IP Services
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
To enable or disable preempting when using IPv4, follow these steps:
Command
Step 1
switch# config t
Step 2
switch(config)# interface vsan 10
switch(config-if)#
Step 3
switch(config-if)# vrrp 250
switch(config-if-vrrp)#
Step 4
switch(config-if-vrrp)# preempt
switch(config-if-vrrp)# no preempt
To enable or disable preempting when using IPv6, follow these steps:
Command
Step 1
switch# config t
Step 2
switch(config)# interface vsan 12
switch(config-if)#
Step 3
switch(config-if)# vrrp ipv6 200
switch(config-if-vrrp-ipv6)#
Step 4
switch(config-if-vrrp-ipv6)# preempt
switch(config-if-vrrp-ipv6)# no preempt
Virtual Router Authentication
VRRP security provides three options, including simple text authentication, MD5 authentication, and no
authentication.
•
•
•
You can configure the key using the authentication option in the VRRP submode and distribute it using
the configuration file. The security parameter index (SPI) settings assigned in this option should be
unique for each VSAN.
All VRRP configurations must be duplicated.
Note
OL-16184-01, Cisco MDS SAN-OS Release 3.x
Simple text authentication uses a unique, 1 to 8 character password that is used by all switches
participating in the same virtual router. This password should be different from other security
passwords.
MD5 authentication uses a unique, 16 character key that is shared by all switches participating in
the same virtual router. This secret key is shared by all switches in the same virtual router.
No authentication is the default option.
Purpose
Enters configuration mode.
Configures a VSAN interface (VSAN 10).
Creates a virtual router.
Enables the higher priority backup virtual router to preempt
the lower priority master virtual router.
This preemption does not apply to the primary IP
Note
address.
Disables (default) the preempt option and allows the master
to keep its priority level.
Purpose
Enters configuration mode.
Configures a VSAN interface (VSAN 12).
Creates a virtual router.
Enables the higher priority backup virtual router to
preempt the lower priority master virtual router.
Note
This preemption does not apply to the primary
IP address.
Disables (default) the preempt option and allows the
master to keep its priority level.
Cisco MDS 9000 Family CLI Configuration Guide
Virtual Router Redundancy Protocol
43-23
Advertisement
Chapters
Table of Contents
Troubleshooting
