Backup interface command

if i use this command do I need to include a route for that interface ? how does it exactly work ?

hi carl,,,
i dont think u need more configuration for that...
here u just need to configure bri...and need to publish that ip address in to your routing protocol...
u can have clear picture by this link
http://www.cisco.com/en/US/tech/tk801/tk379/technologies_configuration_example09186a00800b1148.shtml
just readit it will clear you whole fundamental...
rate this post if it helps
regards
Devang

Similar Messages

Flex backup interface

hey I have cisco 2960 switch I want to ask about flex backup interface configuration on it my ask is that the STP would remove from whole switch or in the interface only !!

Setup your router interface cards such that the interface w/"physical-layer async" comes before the interface it will be used to back up. It will then get initialized before the "backup interface" command.
Implementing dial-on-demand routing (DDR) backup on a router that uses
Network Address Translation (NAT) involves more configuration than is
neccessary for regular DDR backup. This is because the router must translate packets to and from the "inside" network using different "outside" addresses depending on whether the primary or backup link is active." ... "Make sure that your Internet Service Provider (ISP) can provide you with two different IP addresses or subnets. Use one IP address or subnet for the DSL connection and the other for the backup ISDN connection. IP addresses on the two dialer interfaces need to be explicitly assigned and cannot be negotiated during PPP negotiation. This means that the ip address negotiated command is not permitted under the dialer interfaces.
For troubleshooting the 1706 router click this link.
http://www.cisco.com/en/US/products/hw/routers/ps221/prod_tech_notes_list.html

Cisco BackUp Interface Operation Failing

OK Experts,
I have made this issue very simple for you guys to help me out.
I have two routers R22 and R23. I have configured the back up interface on R22 to be interface fas 0/1. Everything appears to be working fine. I issue the command show backup and I get the following on R22
r22#show backup
Primary Interface   Secondary Interface   Status
FastEthernet0/0     FastEthernet0/1       normal operation
r22#
Also I get the following:
FastEthernet0/1            10.10.13.2      YES manual standby mode          down
However, when I shutdown interface fast 0/0 to test the back up interface fast 0/1 I get the following:
r22#show backup
Primary Interface   Secondary Interface   Status
FastEthernet0/0     FastEthernet0/1       disabled
r22#
FastEthernet0/1            10.10.13.2      YES manual standby mode/disabled down
So it doesn't work.
Attached are the configs.
I was wondering if someone could help me figure out why this won't work.
Cheers

Hello Carlton,
there are some notes about your tests:
a) the configuration of the primary interface includes two logical interfaces main interface and a vlan based subinterfaces both fail when you disable fas0/0, the secondary interface has only IP configuration at main interface level
from your log files:
interface FastEthernet0/0
backup interface FastEthernet0/1
ip address 10.10.14.2 255.255.255.0
duplex auto
speed auto
interface FastEthernet0/0.1
encapsulation dot1Q 12
ip address 10.10.12.2 255.255.255.0
You should remove the subinterface fas0/0.1 as a minimum to make interface configurations compatible,
b) the specific type of interface you would like to use for backup is LAN based Fastethernet.
The backup command had been introduced for providing a backup interface for serial interface and the secondary interface may be a serial interface or ISDN based ( in this case a DDR call is triggered over ISDN).
The dial backup command reference says that support for gigabit interfaces in C7600 has been later introduced.
see
http://www.cisco.com/en/US/docs/ios/dial/command/reference/dia_a1.html#wp1012054
The use of backup command may be supported or not for fastethernet interface on your routers.
If it is not supported, you can easily implement an alternate solution, because you are running OSPF in area 0 in all router interfaces
router ospf 1
log-adjacency-changes
>>network 0.0.0.0 255.255.255.255 area 0
So all you need to do is to increase OSPF cost on fas0/1 to create a backup path
on R22, R23:
conf t
interface fas0/1
ip ospf cost 50
Hope to help
Giuseppe

Backup interface on fiber ring

We recently installed a 100Meg MPLS fiber ring into our office, and we were given redundant connections (north loop and south loop).
The North loop is the primary interface, and will be used unless the fiber is cut.
I need to configure our router to automatically switch to the south loop in the event that the north loop goes down.
Here is the config I have so far, I just want to make sure I'm not missing anything.
interface GigabitEthernet0/0/0
description 100MB MPLS North Loop
backup delay 30 never
backup interface GigabitEthernet0/0/1
ip address X.X.X.X 255.255.255.252
media-type sfp
negotiation auto
interface GigabitEthernet0/0/1
description 100MB MPLS backup South Loop
ip address X.X.X.X 255.255.255.252
media-type sfp
negotiation auto
Am I correct in thinking that, should the North loop on Gi0/0/0 go down, it will automatically switch to Gi0/0/1 after 30 seconds of down time?
If so, how do I go about switching back to the north loop when it comes back online?

Hi,
I have see this feature configure on few ISP. For this feature to work, interface needs to go down then only RP can send UP event to standby link and make it up.
You can also go through below discussion on backup interface
https://supportforums.cisco.com/discussion/10921951/how-set-backup-delay-serial-interface-ethernet-interface
regarding backup delay , i am not sure why you want to put delay of 30 sec before standby interface becomes active and then deactivating delay is infinite, means it will always remain active even when primary interface comes up.
CCO document on backup delay
http://www.cisco.com/c/en/us/td/docs/ios/dial/command/reference/dia-cr-book/dia_a1.html#wp1011975
backup delay
To define how much time should elapse before a secondary line status changes after a primary line status has changed, use the backup delaycommand in interface configuration mode. To return to the default so that as soon as the primary fails, the secondary is immediately brought up without delay, use the no form of this command.
backup delay {enable-delay-period | never} {disable-delay-period | never}
no backup delay {enable-delay-period | never} {disable-delay-period | never}
Syntax Description
enable-delay-period
Number of seconds that elapse after the primary line goes down before the Cisco IOS software activates the secondary line.
disable-delay-period
Number of seconds that elapse after the primary line comes up before the Cisco IOS software deactivates the secondary line.
never
Secondary line is never activated or deactivated.
--Pls rate helpful posts--
Regards,
Akash

How are Windows Server Backup and Command Line Tools used in vCSHB installation?

How are Windows Server Backup and Command Line Tools used during the installation of vCSHB? Is it required in all types of deployments (PtoV, VtoV, PtoP)? Is it used to create the files that are put in the file share for the second node to use during vCSHB installation or is it only used during a vCSHB clone operation of a Physical to Physical deployment? Are these tools not used in some deployments?

You need Windows Server Backup installed on source and destination, and during the installation of vCSHB the installer will invoke the wbadmin (Windows Server Backup Utility) and will backup configuration and application data (application data is optimal but can decrease the sync time after installation of secondary node). On the secondary node you will need only run the vCSHB installer and everything will be restored.
Check this blog entry for some more info about some problems in P2P deployment: http://www.vcoportal.de/2013/12/vmware-vcenter-server-heartbeat-restore-on-a-second-node-a-journey/

VLAN Interface Command

Ok, I thought I had the reason for the VLAN interface command down. I thought it was either used for switch management or routing between VLANS? However, now I realized that some communication wont work with out this command which doesnt make sense. If I have a VLAN, then the switch will only switch packets to ports on the same VLAN. The only way, communication would work between VLANS is if I either enabled routing between VLANs with the VLAN Interface command, connected the switch to another multi-layer switch that did do routing between VLANS, or connected the switch to a router which routed between the VLANs.
However, I just got this new 3550 switch in, configured the correct ports with the assigned VLANs, and the only way my cisco ip phone would work is if the VLAN Interface for my voice-ip VLAN was configured. The 3550 is connected to a 4507. Now, can someone tell my why this is? You shouldnt have to configure the VLAN Interface, right?(unless I wanted to route between VLANs, which could be done by the 4507)

Sounds to me like you either dont have the dot1q trunk interface between your 4506 and 3550 working properly, or your 3550 is running the enhanced image which allows routing.
It would be nice to see your config on both the 3550 and the 4500 to determine the reason. Just a stab at how it should be configured is that on your 4506, you have it running VTP server or transparent with the defined Data and Voice Vlan's. You have a port configured for trunking (which connects to the 3550). On your 3550, you have configured it as a vtp client or transparent and have verified that it has received (or if transparent VTP you have configured) the appropriate VLAN's. You than specified "interface VLAN #" or whatever number for switch management and configured the port that connects to the 4500 as a trunk. Your port connected to the port has the auxillary or voice vlan configured. If this is how your equipment is configured and it still does not work, than look for the line "ip routing" in your 3550 and negate it with "no ip routing".
If still no worky worky, post your config.
Cheers,

Passive interface command on RIP

Hi all,
This command below
passive-interface command give additional information to RIP, that it can't send updates via this particular interface ---
As per my understanding is this if we have 2 routers that are directly connected with each other and we enable this command on the interface of one of
routers then that router will not send any RIP updates to other router right?
secondly if these 2 routers are point to point connection we can ping directly conencted interfaces IP of routers because they are directly connected even though there is no routing protocol running between these two right?
3rd thing when i run sh ip protocols on one of router it shows
Routing Protocol is "rip"
Sending updates every 30 seconds, next due in 1 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Redistributing: rip
Default version control: send version 2, receive version 2
    Interface             Send Recv Triggered RIP Key-chain
    FastEthernet0/0       2     2
Automatic network summarization is in effect
Maximum path: 4
Routing for Networks:
    192.168.4.0
Routing Information Sources:
    Gateway         Distance      Last Update
    192.168.4.2          120      00:23:38 ****************************************************
here last update time keeps on incrementing but sh ip route does not show now that rip is running.
so this line means
Invalid after 180 seconds, hold down 180, flushed after 240
that after 240 secs router will flush the rip routes fron the routing table right?
but sh ip protocol will always show rip as routing protocol as we have config the rip and last update time will keep on incrementing right?
thanks
mahesh

Hi Mahesh,
From the config guide:
To control the set of interfaces with which you want to exchange routing updates, you can disable the sending of routing updates on specified interfaces by configuring the
passive-interface
here is the link:
http://www.cisco.com/en/US/docs/ios/12_0/np1/configuration/guide/1crip.html
Correct, you do not need a routing protocol. The interfaces are directly connected. Now, if for example you add a loopback address to each router, you need a routing protocol or static router to reach the opposite router's loopback address.
The reason the interfaces/IPs do not show up in the RIP routing table is because they are directly connected and directly connected routes have a lower admin distance (1) which is preferred over rip which is 120.
yes
HTH

We wanted to perform backup from command prompt but we want

OS: :Linux
DB version: 10.2
I am doing weekly hot backup.
I used rman for my backup.
No issue on backup.
I just ran the backup succesufully (on 070307).
But Enterprise Manager is not updated.
Its still showing last backup performed on 07 Nov 2006.
But from command prompt by using rman its showing current backup (on 070307).
I think EM shown backup status only
if user used EM to perform backup.
Is it correct?
If yes how to fix this issue, we wanted to perform backup from command prompt but we want backup status should be updated in the EM simultaneously.
D

Hi,
Within EM it is assumed that a control file backup will take place unless you specifically ask it to perform through a recovery catalog. I can't remember at the moment how to do this as I am at home but when you go into the admin/maintenance side of EM there will be an option to chose recvoery catalog. However saying that, EM should still report back even if a control file backup has been carried out.
also i think if you are using a comand prompt then EM will not know about it. You will have to define the job from EM for it to register.
rgds
alan

Loopback0 vs. "Backup interface GigabitEthernetx/x" for redundance

Hi,
I am a voice engineer. To configure MGCP gateways I have used the Cisco standard method of creating a loopback interface specially when there are redundant switch connections, e.g. GigabitEthernet0/0 and GigabitEthernet0/0. Can anybody please explain if I use "backup interface" method, would it work same way. The backup interface method also has a backup delay, not sure what is default, but secondary interface won't be active until the delay elapses. If I configure "no backup delay" would there still be an event for MGCP? Can somebody please share their experience?

If your primary interface fails, is there an event for MGCP? What happens to active calls?
Update: I just found that the default delay is 0 seconds (that means "no backup delay" is not required to be explicitly added, so I assume the MGCP gateway should not experience any impact at all. If you done this testing in your environment, please confirm.
And thanks a lot for quick reply!

How to check backup interface

I want to rsh to all my machines,
1. check if the backup interface is up if it is not bring it up. The problem is backup interface is named differently on every machines ie. eth1, bge1 etc.
2. check if the back up netmask and IP is setup properly if not set it up
How can I achieve this using a script?
Thanks ever so much for your help.

I am not able to do that. Do you have any suggestions on how i can achieve the above? Thanks

I can send multiline interface commands but not data commands

hi
i am using a gpib controller.I cannot seem to find a way to switch between multiline commads and data commands.the key is the ATN bit as to send a DAB command the atn bit must be low. I cannot make the controller distinguish when a command is a adta command and not a multiline command,

sorry bit i did not know i could answer you directly.
i am using the measurement computing gpib controller cb7210.2 which is nearly ni compatabile.i am interfacing it with a microcontroller connected to the pc.Then i am trying to use a monitor program that is embedded in the microcontroller to perform remote access of instruments.i am using assembly. i have managed to communicate with the instrument.now the problem is that i cannot make the distinction between data commands and interface commands.for eg if i send 3Fh and atn happens to be 1 this is interpreted as UNL if atn is 0 then it is interpreted as data command.i need to be able to have control of the atn bit so that i can send either at will. so to problem is how to control the atn bit.
thanks
again

Global vs interface command on switch

Hello,
If I have a command globally which applies on all switch ports but then I want to configure one port with a different command not apply the global command on the switch. When i configure that port will it take effect the new command configure for that port and disregard the global command that was apply on all ports or the global command still take effect and interface command not take effect?

Some of the most common commands that are used on a per-interface level (which overrides the global commands) are:
1. STP;
2. UDLD;
3. PoE control;
4. Auto Switch Port macro (ASP)

CBWFQ: Question about the output of "show policy-map interface" command

Hi everyone,
I have a question about the output of "show policy-map interface" command.
The following is the output of this command and lower side of the output shows
(total queued/total drops/no-buffer drops) 0/342/0
If the packets drop occur due to the situation of no enough buffer,
"no-buffer drops" counted up. But "no-buffer drops" has not been counted up.
The "no-buffer drops" is 0 (zero) but "total drops" are counted as 342.
I guess there are other factors except "no-buffer drops" to add "total drops".
But I can not find any information about "other factors".
So I would like to know the "other factors" added to "total drops".
reserch-3725#sh policy-map interface fastethernet0/1
FastEthernet0/1
Service-policy output: shaping
Class-map: kdpc (match-all)
146956873 packets, 115209221595 bytes
5 minute offered rate 156000 bps, drop rate 0 bps
Match: access-group name YOKOHAMA_to_CHINO
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
9360000/9360000 58500 234000 234000 25 29250
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 0 146956724 3539850811 2960247 3851843541 no
Class-map: class-default (match-any)
552458414 packets, 249687580329 bytes
5 minute offered rate 242000 bps, drop rate 0 bps
Match: any
Traffic Shaping
Target/Average Byte Sustain Excess Interval Increment
Rate Limit bits/int bits/int (ms) (bytes)
3072000/3072000 19200 76800 76800 25 9600
Adapt Queue Packets Bytes Packets Bytes Shaping
Active Depth Delayed Delayed Active
- 0 552453209 573909865 30358216 2926188156 no
Service-policy : policy1
Class-map: dlsw (match-all)
979578 packets, 264843255 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: access-group name acl-dlsw
Queueing
Output Queue: Conversation 137
Bandwidth 128 (kbps) Max Threshold 64 (packets)
(pkts matched/bytes matched) 20922/17371500
(depth/total drops/no-buffer drops) 0/0/0
Class-map: telnet (match-all)
29938 packets, 1806058 bytes
5 minute offered rate 0 bps, drop rate 0 bps
Match: access-group name acl-telnet
Queueing
Output Queue: Conversation 138
Bandwidth 64 (kbps) Max Threshold 64 (packets)
(pkts matched/bytes matched) 639/38900
(depth/total drops/no-buffer drops) 0/0/0
Class-map: class-default (match-any)
551448911 packets, 249420939729 bytes
5 minute offered rate 242000 bps, drop rate 0 bps
Match: any
Queueing
Flow Based Fair Queueing
Maximum Number of Hashed Queues 128
(total queued/total drops/no-buffer drops) 0/342/0
Your information would be appreciated.

Details infomatiuon regarding show policy-map interface
http://www.cisco.com/en/US/tech/tk543/tk545/technologies_tech_note09186a008010dd6a.shtml
http://www.cisco.com/en/US/tech/tk543/tk760/technologies_tech_note09186a0080108e2d.shtml
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/qos_r/qos_s2g.htm#wp1146884

ASA 5505 backup interface

Hello,
I have setup ASA 5505 with 2 ISP, named outside (primary) and backup, the scenario is if outside down, then backup will take over, it works now.
But it is not working when the primary connection cannot reach the gateway with the interface still up.
Is it possible when the primary connection cannot reach the gateway then backup automatically take over?
Thanks before..
My configuration is:
ASA Version 8.2(1)
hostname cisco
domain-name default_domain
enable password ********* encrypted
passwd ********* encrypted
names
interface Vlan1
nameif inside
security-level 100
ip address 192.168.1.254 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address 172.10.10.10 255.255.255.0
interface Vlan3
no forward interface Vlan2
nameif backup
security-level 0
ip address 172.20.10.10 255.255.255.0
interface Ethernet0/0
switchport access vlan 1
interface Ethernet0/1
switchport access vlan 2
interface Ethernet0/2
switchport access vlan 3
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
ftp mode passive
dns server-group DefaultDNS
domain-name default domain
same-security-traffic permit intra-interface
pager lines 24
logging asdm informational
mtu inside 1500
mtu outside 1500
mtu backup 1500
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
global (inside) 1 interface
global (outside) 1 interface
global (backup) 1 interface
nat (inside) 1 192.168.1.0 255.255.255.0
access-group inside_out in interface inside
access-group outside_in in interface outside
access-group backup_in in interface backup
route outside 0.0.0.0 0.0.0.0 172.10.10.1 1
route backup 0.0.0.0 0.0.0.0 172.20.10.1 254
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-record DfltAccessPolicy
http server enable
http 192.168.1.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
telnet 192.168.1.0 255.255.255.0 inside
telnet timeout 5
ssh timeout 5
console timeout 0
dhcpd lease 1048575
dhcpd auto_config outside
dhcpd address 192.168.1.100-192.168.1.200 inside
dhcpd dns 8.8.8.8 8.8.4.4 interface inside
dhcpd enable inside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
class-map inspection_default
match default-inspection-traffic
policy-map global_policy
class inspection_default
inspect icmp
service-policy global_policy global
prompt hostname context
Cryptochecksum:24af050f332deab3e38eb578f8081d05
: end

Hi Amrin,
you can configure SLA monitoring on ASA and that woudl work fine for you:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml
Hope that helps.
Thanks,
Varun

Cisco ASA 5510 Backup Interface configuration

Hi Experts,
I am a newbie with Cisco Firewalls, pls help.
We have a BSNL Leased Line of 2MBPS with few Static IP's of Which 2 IP's are configured in Firewall 1 For the Outside Interface and one for publishing the DMZ server. Most of the times due to some reasons or the other the BSNL line is going down. so now I need to configure one another TATA Broadband 1MBPS Dialup Line as a Backup for the BSNL Line so as to provide a uninterupted Internet to our users.
Pls guide me the Steps
Thank in Advance.
Anish N

Hi Anish,
Check the below mentioned link for configuration.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00806e880b.shtml

Backup interface command

Similar Messages

Maybe you are looking for