HSRP over L3 port-channel, switches do not ping each other

Hello guys, 
I have a L3 port-channel between 2 gigabit ethernet interfaces (one per switch Catalyst 6509), towards two giga interfaces in another two Catalyst 6509 in the other end. The port-channel is configured as follows in one of the ends (the first pair of 6509): 
interface GigabitEthernet3/37
 description Conexion 
 no ip address
 channel-group 8 mode on
interface GigabitEthernet3/38
 description Conexion 
 no ip address
 channel-group 8 mode on
For each Catalyst 6509, the port-channel 8 has a HSRP group, 254. In one of the Catalyst (Central-1) the IP assigned is 192.168.254.253/24 and in the other (Central-2), 192.168.254.254/24. Here is the conf for one Catalyst 6509 (Central-1): 
interface Port-channel8
 description CENTRALES
 ip address 192.168.254.253 255.255.255.0
 no ip redirects
 no ip unreachables
 no ip proxy-arp
 no ip route-cache
 load-interval 30
 standby delay minimum 20 reload 300
 standby preempt delay minimum 120
 standby 254 ip 192.168.254.254
 standby 254 timers 1 3
As you can see, HSRP group 254 is defined and it is answering from L3, (from any host or switch, for the 3 IPs), but my doubt is about the HSRP behaviour between both Catalyst. They can't find which one is the master and in fact, they can't ping each other. The status of the group defined for po 8 is: 
CENTRAL-1#sh standby port-channel 8
Port-channel8 - Group 254
  Local state is Active, priority 100
  Hellotime 1 sec, holdtime 3 sec
  Next hello sent in 0.865
  Virtual IP address is 192.168.254.254 configured
  Active router is local
  Standby router is unknown
  Virtual mac address is 0000.0c07.acfe
  5 state changes, last state change 2w3d
  IP redundancy name is "hsrp-Po8-254" (default)
CENTRAL-2#sh standby port-channel 8
Port-channel8 - Group 254
  Local state is Active, priority 110
  Hellotime 1 sec, holdtime 3 sec
  Next hello sent in 0.645
  Virtual IP address is 192.168.254.254 configured
  Active router is local
  Standby router is unknown
  Virtual mac address is 0000.0c07.acfe
  5 state changes, last state change 6w1d
  IP redundancy name is "hsrp-Po8-254" (default)
A "sh standby br" shows each switch considers itself the master and does not know the standby. 
The thing is both switches have not an interface to connect L3 from network 192.168.254.0/24 directly. I mean, they only have one interface connected to the other end of the etherchannel, but not between them. Is this the reason why they can't ping each other, and consequently, they can't properly use HSRP group? 
Could you tell me which could be a solution to this issue? I can't guess what can be done since the physical interfaces gi3/37 and gi3/38 exist and I think no any other interface should be configured in this network (192.168.254.0/24). 
Thank you very much in advance. 

Hello Jon, 
Thank you very much for your answer. For the 3 possibilities, I answer you: 
1) The pair are interconnected with a L2 trunk but the thing is this network, 192.168.254.0/24, is not associated to a vlan, but to a L3 etherchannel, so there is no way to associate it to a VLAN, am I right? 
2) The other end of connections I think is configured at L3 too. 
3) I am pending to know about the other end, but I think it is L3 too. 
Anyway, although you have been very clear, try to imagine just 2 switches connected towards another 2 by one interface per each: 
Central-1: gi3/37 ---> Ext1: gi1/20
Central-2: gi3/38 ---> Ext2: gi1/30
If etherchannel from Central is L3, I do not know how to include this traffic in vlan 2.... 
Well, I keep on thinking. Thank you very much. 

Similar Messages

  • My wife and I each have an apple ID and share one macbook pro. Is it possible to use the iCloud on our shared macbook pro and our two separate iPhone 5's and not get each others information confused?

    My wife and I each have an apple ID and share one macbook pro. Is it possible to use the iCloud on our shared macbook pro and our two separate iPhone 5's and not get each others information confused?

    Once you setup your wife's account you can enable fast user switching to make it easy to switch accounts:
    OT

  • One of my kids has an iphone 4, the other has an ipod.  Bluetooth is ON for both, but they are not discovering each other.  Are there any suggestions?  (They bought a simple texting app so the ipod could text the iphone.)

    One of my kids has an iphone 4, the other has an ipod.  Bluetooth is ON for both, but they are not discovering each other.  Are there any suggestions?  (They bought a simple texting app so the ipod could text the iphone.)  Thank you.

    The built in BT profiles that iOS has do not include any kind of file sharing. Does the app say that it will text over BT? If so, then the connection would most likely be handled through the app itself. What is the name of this app?

  • Need Help Connecting (2) 2950 switches together, cant see each other

    Can anyone please help me get my switches talking?  I am currently in training for entry level certs and can't continue until i get these talking. 
    I have two 2950 switches connected via port 0/1 on both switches.  (tried both crossover and regular cat5 connections)
    I have both ports active and both VLAN 1s active and both ports set to switchport mode trunk
    There is no port security enabled.  Both switches have IP's assigned in the respective default VLAN 1.   
    IP address 10.1.10.10 for switch 1
    IP address 10.1.10.11 for switch 2
    VTP is set to server on both, ( I tried transparent on both as well )
    I cant get these switches to ping each other and or access telnet from each other.  If i connect an outside connection i can telnet individually to each but they wont see each other through ping or CDP Neighbors. 
    Any ideas?? Please help as i am trying to get my CCENT in a few weeks!
    THANK YOU!

     ******* SWITCH 1 LOGIN *******
    User Access Verification
    Password:
    SW1>en
    Password:
    SW1#show run
    SW1#show running-config
    Building configuration...
    Current configuration : 1884 bytes
    version 12.1
    no service pad
    service timestamps debug uptime
    service timestamps log uptime
    no service password-encryption
    hostname SW1
    enable secret 5 $1$TIuw$zBOptQNhwsRgZ6Frv.PVx.
    ip subnet-zero
    ip ssh time-out 120
    ip ssh authentication-retries 3
    spanning-tree mode pvst
    no spanning-tree optimize bpdu transmission
    spanning-tree extend system-id
    interface FastEthernet0/1
     switchport mode trunk
    interface FastEthernet0/2
     switchport mode access
    interface FastEthernet0/3
     switchport mode access
    interface FastEthernet0/4
     switchport mode access
    interface FastEthernet0/5
     switchport mode access
    interface FastEthernet0/6
     switchport mode access
    interface FastEthernet0/7
     switchport mode access
    interface FastEthernet0/8
     switchport mode access
    interface FastEthernet0/9
     switchport mode access
    interface FastEthernet0/10
     switchport mode access
    interface FastEthernet0/11
     switchport mode access
    interface FastEthernet0/12
     switchport mode access
    interface FastEthernet0/13
     switchport mode access
    interface FastEthernet0/14
     switchport mode access
    interface FastEthernet0/15
     switchport mode access
    interface FastEthernet0/16
     switchport mode access
    interface FastEthernet0/17
     switchport mode access
    interface FastEthernet0/18
     switchport mode access
    interface FastEthernet0/19
     switchport mode access
    interface FastEthernet0/20
     switchport mode access
    interface FastEthernet0/21
     switchport mode access
    interface FastEthernet0/22
     switchport mode access
    interface FastEthernet0/23
     switchport mode access
    interface FastEthernet0/24
     switchport mode access
    interface Vlan1
     ip address 10.1.10.10 255.255.255.0
     no ip route-cache
    ip http server
    banner motd ^C ******* SWITCH 1 LOGIN ******* ^C
    line con 0
     logging synchronous
     login
    line vty 0 4
     password vty
     login
    line vty 5 15
     password vty
     login
    end
    SWITCH 2 BELOW
     ****** SWITCH 2 LOGIN ******
    banner motd
    User Access Verification
    Password:
    SW2>en
    Password:
    SW2#show run
    SW2#show running-config
    Building configuration...
    Current configuration : 1894 bytes
    version 12.1
    no service pad
    service timestamps debug uptime
    service timestamps log uptime
    no service password-encryption
    hostname SW2
    enable secret 5 $1$nSFY$umNCHgrkLGTwHyI.dkbJf.
    ip subnet-zero
    ip ssh time-out 120
    ip ssh authentication-retries 3
    spanning-tree mode pvst
    no spanning-tree optimize bpdu transmission
    spanning-tree extend system-id
    interface FastEthernet0/1
     switchport mode trunk
    interface FastEthernet0/2
     switchport mode access
    interface FastEthernet0/3
     switchport mode access
    interface FastEthernet0/4
     switchport mode access
    interface FastEthernet0/5
     switchport mode access
    interface FastEthernet0/6
     switchport mode access
    interface FastEthernet0/7
     switchport mode access
    interface FastEthernet0/8
     switchport mode access
    interface FastEthernet0/9
     switchport mode access
    interface FastEthernet0/10
     switchport mode access
    interface FastEthernet0/11
     switchport mode access
    interface FastEthernet0/12
     switchport mode access
    interface FastEthernet0/13
     switchport mode access
    interface FastEthernet0/14
     switchport mode access
    interface FastEthernet0/15
     switchport mode access
    interface FastEthernet0/16
     switchport mode access
    interface FastEthernet0/17
     switchport mode access
    interface FastEthernet0/18
     switchport mode access
    interface FastEthernet0/19
     switchport mode access
    interface FastEthernet0/20
     switchport mode access
    interface FastEthernet0/21
     switchport mode access
    interface FastEthernet0/22
     switchport mode access
    interface FastEthernet0/23
     switchport mode access
    interface FastEthernet0/24
     switchport mode access
    interface Vlan1
     ip address 10.1.10.11 255.255.255.0
     no ip route-cache
    ip http server
    banner motd ^C ****** SWITCH 2 LOGIN ******
    banner motd ^C
    line con 0
     logging synchronous
     login
    line vty 0 4
     password vty
     login
    line vty 5 15
     password vty
     login
    end

  • Is it okay to home share with my roommate who is not related to me if we do not import each other's music?

    Is it okay to home share with my roommate who is not related to me if we do not import each other's music?

    Thanks I will try that . . . . the issue became worse when we recently updated to IOS6 - now all three of us get everything . . . . I was trying to avoid separate Apple ID's and emails but that might be the solution based on what I have read on here . . . .

  • How to connect iphone 5 with ipad 2 using Bluetooth? When  I activate Bluetooth both devices search but not listing each other to pair or connect.

    How to connect iphone 5 with ipad 2 using Bluetooth? When  I activate Bluetooth both devices search but not listing each other to pair or connect.

    You can use Photo Transfer App to transfer photos from iPhone to iPad or vice versa using Bluetooth or WiFi
    http://i1224.photobucket.com/albums/ee374/Diavonex/Album%205/3dd129795daebebc4b8 741b057f5f70d.jpg
    http://i1224.photobucket.com/albums/ee374/Diavonex/Album%205/3af5c541040e15e3f6b 3356e4c55cbfc.jpg

  • 2 Mac can not see each other via airdrop under the same airport/timecapsule.

    I have 2 iMac in my home with a TImeCapsule (gen4).
    The wifi is on both 2.4G and 5G with the same SSID.
    iMac A is working on 2.4GHz, iMac B is working on 5GHz.
    So they can not see each other via airdrop, meanwhile they can see each other  in the left panel of Finder.app
    Is it a known issue of AirDrop?

    Hi Kirby Zhou,
    Welcome to the Apple Support Communities!
    It sounds like you would like to utilize file sharing between computers, not necessarily AirDrop. Please refer to the attached article for information on the file sharing process. If this is not what you are looking for, please let me know. 
    Share your files with other Mac users - Mac Help
    Best regards,
    Joe

  • DMZ hosts are not comminicating each other.

    Dear All,
    I have a problem with my DMZ nodes communication. When i try to ping each other getting only one reply and then drops. What can be the issue ?
    Same security intra interface is enable.
    Please help.
    Thanks in advance.
    Shijo.

    Without seeing the configuration, I would go through the following checklist:
    1- Can you ping both DMZ hosts from the ASA?
    2- Is the ASA DMZ interface address set as default GW on DMZ hosts?
    3- Do you have any filtering/security enabled on your DMZ switch?
    4- Do you see the target host's MAC address in the ARP table of the source host?

  • Multiple vsan traffic over single port-channel

    Hi -
    Scenario - 2 interface uplink (port-channel - Po10 ) from NetApp FAS-A to N5548-A & B. Po10 is currently configured with vPC10 and vFC10 at N5k end. single vfc currently mapped with a single vsan (vfc10 with vsan 1011).
    Q - Is it possible to make the Port-channel to pass multiple vsan (vsan 1011 & 1012). If yes, then how (over same vfc or by separate vfc on same port-channel)
    Subhankar      

    This router’s capability is only limited and dependent on the services that your ISP has given or allowed for you to use. I think it really has to be a one is to one configuration, not only with this router because I haven’t noticed any router that has this feature so far. This is really another idea for Linksys can work on.

  • Right way of configuring higher MTU over a Port Channel

    Hi guys,
    I have a running critical Port-Channel between two locations.
    Here's the config
    SW1:
    interface Port-channel2
     switchport
     switchport trunk encapsulation dot1q
     switchport mode trunk
    end
    interface GigabitEthernet1/45
     switchport trunk encapsulation dot1q
     switchport mode trunk
     channel-protocol lacp
     channel-group 2 mode active
    end
    interface GigabitEthernet1/46
     switchport trunk encapsulation dot1q
     switchport mode trunk
     channel-protocol lacp
     channel-group 2 mode active
    end
    SW2
    interface GigabitEthernet1/1
     switchport trunk encapsulation dot1q
     switchport mode trunk
     channel-protocol lacp
     channel-group 2 mode passive
    end
    interface GigabitEthernet1/2
     switchport trunk encapsulation dot1q
     switchport mode trunk
     channel-protocol lacp
     channel-group 2 mode passive
    end
    interface Port-channel2
     switchport
     switchport trunk encapsulation dot1q
     switchport mode trunk
    end
    Now I need to increase the MTU from default value to 9198. What the right way to do it and avoid any connectivity loss, PortChannel restart.
    Does it matter what switch I start first?
    Thanks!
    L.E. both SW are WS-C4948

    Hi,
    Because you are using layer 2 interfaces - there is no fragmentation support at layer 2, and interfaces receiving frames which have an unsupported size will be dropped.
    I think the best way for you to proceed is to lab this up; and verify what happens - it may be that you need to make changes on switches at either end of the channel within a very short time frame to prevent too large an outage.
     When you are ready to maike your change - think the best way to do this is to use the interface range command, and apply the 'mtu' command to all the interfaces in this range. I don't think it matters which switch you apply this change to first, and I don't believe if you are hinting at the 802.3ad (controlled by system-priority) decision maker, that it makes any difference.
    HTH
    Mike

  • How can my bf and I share are itunes on our computer together but with separate apple ID's so we DO NOT receive each others iMessages all the time?

    My boyfriend and I both share an itunes together on my mac book pro, is there away to have seperate apple ID's but both are connected to the shared itunes and have access to all of our purchases? I am asking this becaue since my boyfriend and I both have iphones, we keep revieving each others messages and conversations, and not only is it annoying, but it is an invashion of privacy both ways, on his side and mine. What do we do?
    Can you even change your apple ID on your iphone without losing your contacts, apps, music etc..? Can you even have two apple ID's on one shared itunes? Some help me out here, I am so confused.

    All apps and purchases are linked to your apple ID, so you can't share them across 2 devices that are using different apple id's, it won't work. the purchases that are on your mac at the moment will only work with the apple id they were brought with.
    the only thing thats possible to share is purchased music. you have to first covert it to mp3 within itunes, then your bf can import it into his own itunes library and sync with his phone.

  • Spry and Flash not liking each other

    I'm currently working on a small site for a commercial
    director and the client wants it where when you rollover the
    thumbnail images for his commercials, they grow a bit and that's a
    perfect use for Spry's Grow/Shrink effect. Only problem is once I
    add this effect, the Flash movie completely disappears from the
    page and the rest of the contents moves up. So you don't even get a
    blank square.
    Here's what I'm talking about:
    http://www.josephimartinez.com/commercials/index.html
    and here's a page without Spry where the video shows up:
    http://www.josephimartinez.com/commercials/index2.html
    I know there are problems with Flash and JavaScript not
    playing nice with each other. Especially on pages that utilize
    Javascript dropdown menus and they can collide with Flash movies.
    Is this similar? Seems even worse to me.

    Does it stop you from loading and playing the game? I get similar errors every time I start anything wine related. The exact same messages come up when I have a MIDI to USB device plugged in on one machine and for some reason again on another because wine confuses my internal modem as a sound card. I ignore it and everything still works fine so it might not be something to worry about.
    Quite honestly, their probably just a result of a hack in there alsa code. They probably don't properly differentiate sound devices and just assume that everything detected as sound related is a sound card. So wine gets a little confused when things don't, say, support mixing.
    If its preventing you from playing the game, I don't think this is the show stopper.

  • WLS 5.1 SP8 clustered machines do not acknowledge each other on startup

              I have made this posting in In-Memory-replication group also.
              We are trying to setup a cluster with two machines A & B. These
              are Solaris boxes with WLS 5.1 and SP8. The servers are multi-homed.
              When the two Weblogic servers are started concurrently, their logs
              show that they joined at the designated multicast IP 225.225.225.225.
              But at the end of startup process they do not give the usual "Adding
              server .....................to cluster view" message.
              I am able to ping each machine from the other.
              I have also run MulticastTest utility and the message packets are
              exchanged by the two machines successfully.
              nslookup for the cluster name returns the IP of both A & B.
              But still the machines don't recognize each other.
              What could be the reason?
              

              I managed to get the problem sorted out with help from Weblogic
              support.
              These machines have multiple network interfaces. I was told that
              the IP, for which Weblogic license has been granted, should be
              the first entry in the /etc/hosts file.
              Besides, SP8 should be installed and configured correctly for the
              communication to be established.
              My original problem was that I was not able to see the "Adding
              server" line when both the machines in the cluster were brought
              up simultaneously. Both the machines would come up and would give
              a message "Joined at 225.225.225.225" message and end the startup
              process with "WebLogic Server started". The usual message acknowledging
              the presence of the other machine is missing!
              The cluster was not running when I ran the MulticastTest utility.
              The curious thing was that MulticastTest ran successfully on both
              the machines in the cluster and I could see the message packets
              being exchanged correctly on the specific multicast IP that I was
              using. But the machines in the cluster couldn't communicate with
              each other!
              Thanks for your responses!
              Regards,
              Mahesh Rajan
              Prasad Peddada <[email protected]> wrote:
              >If you see the message "Adding server ... " means that
              >servers are in a
              >cluster.
              >
              >You shouldn't run multicast test when servers are running.
              >
              >So, I don't understand what your problem is.
              >
              >-- Prasad
              >
              >Rajan wrote:
              >
              >> I have made this posting in In-Memory-replication group
              >also.
              >>
              >> We are trying to setup a cluster with two machines A
              >& B. These
              >> are Solaris boxes with WLS 5.1 and SP8. The servers
              >are multi-homed.
              >>
              >> When the two Weblogic servers are started concurrently,
              >their logs
              >> show that they joined at the designated multicast IP
              >225.225.225.225.
              >> But at the end of startup process they do not give the
              >usual "Adding
              >> server .....................to cluster view" message.
              >>
              >> I am able to ping each machine from the other.
              >>
              >> I have also run MulticastTest utility and the message
              >packets are
              >> exchanged by the two machines successfully.
              >>
              >> nslookup for the cluster name returns the IP of both
              >A & B.
              >>
              >> But still the machines don't recognize each other.
              >>
              >> What could be the reason?
              >
              >--
              >Cheers
              >
              >- Prasad
              >
              >
              

  • Airport express and extreme not recognizing each other

    i have an existing airport extreme wireless working.
    dsl modem to airport extreme hardwired to mac g4 (with 200 gigs of music) streaming to new dell laptop from work.
    just purchased airport express to stream music to home stereo via laptop utilizing the media from the desktop mac.
    but i cannot get the 2 airports to see each other. the airport express keeps blinking amber. the manual says to open airport assisstant to add express to existing network but i have no such option listed.
    i know there must be an easy solution but for the life of me i cannot figure out what it is.
    any suggestions?
    thanks,
    gord
    power mac g4 dual 450, 1 gig ram   Mac OS X (10.4.7)  

    Try the following:
    - Perform a "factory default" reset of the AX. (ref: http://docs.info.apple.com/article.html?artnum=108044_
    - To facilitate setting up the remote/relay base stations, place them in near proximity of each other during the set up phase.
    - Then perform the WDS setup as follows:
    Set up the AirPort Extreme Base Station (AEBS) as the WDS Main Base Station, by connecting directly, using an Ethernet cable, to the LAN port of the AEBS, and then use the AirPort Admin Utility, located in /Applications/Utilities, to make the following settings.
    WDS Tab
    - Enable this base station as a WDS: main base station (checked)
    - Enable wireless clients on this base station (optional)
    - Click "+" to add Remote/Relay Base Stations.
    -- Select the Base Station that you want to be the WDS Remote/Relay.
    -- AirPort ID: <verify that this is the correct wireless MAC address for the Base Station you are adding as a Remote/Relay.
    -- Auto configure as a WDS remote base station (checked)
    -- Click "OK."
    - Verify that the Remote/Relay Base Station has been added to the list.
    - Click "Update," and then verify the settings for the Remote/Relay.
    -- Allow wireless clients on this base station (checked)
    -- New network name: <verify that this is the same as the network name for the AEBS>
    -- TCP/IP: Configure using DHCP
    -- Base Station Password: <the Remote/Relay Base Station password>
    -- Confirm: <same as previous step>
    -- Click "OK."

  • Firefox will not let me use any version over 3.5.14 it does not access any other web sites if I use any other version of firefox?

    If I update firefox to the new version 18 and then try to use any websites that don't have anything to do with firefox it says "Problem loading screen" and it does the same with any version past 3.5.14 exept if I update to version 3.6.24 then all the screens are just white and at the bottom it says "Updating Add: Codec-V".
    So basically I'm stuck in a old version of firefox and I can't get out/

    Please update to Firefox 18.0.1, then reset Firefox [[Reset Firefox – easily fix most problems]]
    Then read [[Server Not Found - Troubleshoot connection problems]]
    and [[Firefox can't load websites but other browsers can]]

Maybe you are looking for