Example for Configuring MSTP + VRRP Network

S12700 V200R010C00 Configuration Guide - Ethernet Switching

This document describes the configuration of Ethernet services, including configuring link aggregation, VLANs, Voice VLAN, VLAN mapping, QinQ, GVRP, MAC table, STP/RSTP/MSTP, SEP, and so on.

About This Document
Ethernet Switching Overview
- Introduction to Ethernet Switching
- Basic Concepts of Ethernet
- Switching on the Ethernet
  - Layer 2 Switching
  - Layer 3 Switching
- Application Environment
  - Building an Enterprise Network
MAC Address Table Configuration
- Introduction to the MAC Address
- Principles
- Application
- Configuration Task Summary
- Licensing Requirements and Limitations for MAC Address Tables
- Default Configuration
- Configuring a MAC Address Table
- Configuring MAC Address Flapping Prevention
  - Configuring a MAC Address Learning Priority for an Interface
  - Preventing MAC Address Flapping Between Interfaces with the Same Priority
- Configuring MAC Address Flapping Detection
- Configuring the Switch to Discard Packets with an All-0 MAC Address
- Configuring the Switch to Discard Packets That Do Not Match Any MAC Address Entry
- Enabling MAC Address-Triggered ARP Entry Update
- Enabling Port Bridge
- Configuring Re-marking of Destination MAC Addresses
- Maintaining the MAC Address Table
- Configuration Examples
- Common Misconfigurations
  - MAC Address Entries Failed to Be Learned on an Interface
- FAQs
Link Aggregation Configuration
- Introduction to Link Aggregation
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for Link Aggregation
- Default Settings
- Configuring Link Aggregation in Manual Mode
- Configuring Link Aggregation in LACP Mode
- Configuring Preferential Forwarding of Local Traffic in a CSS
- Creating an Eth-Trunk Sub-interface
- Configuring an E-Trunk
- Maintaining Link Aggregation
- Configuration Examples
- Common Configuration Errors
  - Traffic Is Unevenly Load Balanced Among Eth-Trunk Member Interfaces Because the Load Balancing Mode Is Incorrect
  - Eth-Trunk at Both Ends Cannot Be Up Because the Lower Threshold for the Number of Active Interfaces Is Incorrect
- FAQ
VLAN Configuration
- VLAN Overview
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for VLANs
- Default Configuration
- Configuring VLAN Technology
- Maintaining VLANs
- Configuration Examples
- Common Misconfigurations
- FAQ
VLAN Aggregation Configuration
- Introduction to VLAN Aggregation
- Principles
- Application Scenario
- Licensing Requirements and Limitations for VLAN Aggregation
- Default Configuration
- Configuring VLAN Aggregation
- Configuration Examples
  - Example for Configuring VLAN Aggregation
- FAQ
  - How Do I Implement Communication Between Specific Sub-VLANs in a Super-VLAN
  - How Should a Traffic Policy Be Configured in a Super-VLAN or Sub-VLAN to Make the Traffic Policy Take Effect
VLAN Switch Configuration
- Introduction to VLAN Switch
- Application Scenario
- Licensing Requirements and Limitations for VLAN Switch
- Default Configuration
- Configuring VLAN Switch
- Maintaining VLAN Switch
- Configuration Examples
  - Example for Implementing Inter-VLAN Communication Using VLAN Switch
MUX VLAN Configuration
- Introduction to MUX VLAN
- Licensing Requirements and Limitations for MUX VLANs
- Default Configuration
- Configuring the MUX VLAN
- Configuration Examples
  - Example for Configuring MUX VLAN on the Access Device
  - Example for Configuring MUX VLAN on the Aggregation Device
VLAN Termination Configuration
- Introduction to VLAN Termination
- Application Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for VLAN Termination
- Default Configuration
- Using a Dot1q Termination Sub-interface to Implement Inter-VLAN Communication
- Configuring a Dot1q Termination Sub-interface and Connecting It to an L2VPN
- Configuring a Dot1q Termination Sub-interface and Connecting It to an L3VPN
- Configuring a QinQ Termination Sub-interface and Connecting It to an L2VPN
- Configuring a QinQ Termination Sub-interface and Connecting It to an L3VPN
- Configuration Examples
Voice VLAN Configuration
- Introduction to Voice VLAN
- Typical Networking
- Principles
- Applicable Scenario
- Licensing Requirements and Limitations for Voice VLAN
- Default Configuration
- Configuring a MAC Address-based Voice VLAN
- Configuring a VLAN ID-based Voice VLAN
- Configuration Examples
  - Example for Configuring a MAC Address-based Voice VLAN (IP Phones Send Untagged Voice Packets)
  - Example for Configuring a VLAN ID-based Voice VLAN (IP Phones Send Tagged Voice Packets)
QinQ Configuration
- Introduction to QinQ
- Principles
- Applications
  - Public User Services on a Metro Ethernet Network
  - Enterprise Network Connection Through Private Lines
- Configuration Task Summary
- Licensing Requirements and Limitations for QinQ
- Configuring Basic QinQ
- Configuring Selective QinQ
- Configuring the TPID Value in an Outer VLAN Tag
- Configuring the Device to Add Double VLAN Tags to Untagged Packets
- Configuring QinQ Mapping
  - Configuring 1-to-1 QinQ Mapping
  - Configuring 2-to-1 QinQ Mapping
- Maintaining QinQ
  - Displaying VLAN Translation Resource Usage
- Configuration Examples
- Common Misconfigurations
  - QinQ Traffic Forwarding Fails Because the Outer VLAN Is Not Created
  - QinQ Traffic Forwarding Fails Because the Interface Does Not Transparently Transmit the Outer VLAN ID
- FAQ
VLAN Mapping Configuration
- Introduction to VLAN Mapping
- Principles
- Applications
- Licensing Requirements and Limitations for VLAN Mapping
- Configuring VLAN ID-based VLAN Mapping
- Configuring 802.1p Priority-based VLAN Mapping
- Configuring MQC-based VLAN Mapping
- Maintaining VLAN Mapping
  - Displaying VLAN Translation Resource Usage
- Configuration Examples
- Common Configuration Errors
  - Communication Failure After VLAN Mapping Configuration
GVRP Configuration
- Introduction to GVRP
- Principles
- Applications
- Licensing Requirements and Limitations for GVRP
- Default Configuration
- Configuring GVRP
- Maintaining GVRP
  - Clearing GVRP Statistics
- Configuration Examples
  - Example for Configuring GVRP
- FAQ
  - Why Is the CPU Usage High When VLANs Are Created or Deleted Through GVRP in Default Configuration?
VCMP Configuration
- Introduction to VCMP
- Principles
  - VCMP Concepts
  - Implementation
- Applicable Scenario
- Licensing Requirements and Limitations for VCMP
- Default Configuration
- Configuring VCMP
- Maintaining VCMP
  - Displaying VCMP Running Information
  - Clearing VCMP Running Information
- Configuration Examples
  - Example for Configuring VCMP to Implement Centralized VLAN Management
STP/RSTP Configuration
- Introduction to STP/RSTP
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for STP/RSTP
- Default Configuration
- Configuring Basic STP/RSTP Functions
- Setting STP Parameters that Affect STP Convergence
- Setting RSTP Parameters that Affect RSTP Convergence
- Configuring RSTP Protection Functions
- Setting Parameters for Interoperation Between Huawei and Non-Huawei Devices
- Maintaining STP/RSTP
  - Clearing STP/RSTP Statistics
  - Monitoring STP/RSTP Topology Change Statistics
- Configuration Examples
  - Example for Configuring Basic STP Functions
  - Example for Configuring Basic RSTP Functions
- FAQ
MSTP Configuration
- Introduction to MSTP
- MSTP Principles
- Application Environment
- Configuration Task Summary
- Licensing Requirements and Limitations for MSTP
- Default Configuration
- Configuring Basic MSTP Functions
- Configuring MSTP Multi-Process
- Configuring MSTP Parameters on an Interface
- Configuring MSTP Protection Functions
- Configuring MSTP Interoperability Between Huawei and Non-Huawei Devices
- Maintaining MSTP
  - Clearing MSTP Statistics
  - Monitoring the Statistics on MSTP Topology Changes
- Configuration Examples
- FAQ
VBST Configuration
- Introduction to VBST
- Principles
- Applicable Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for VBST
- Default Configuration
- Configuring Basic VBST Functions
- Setting VBST Parameters That Affect VBST Convergence
- Configuring Protection Functions of VBST
- Setting Parameters for Interworking Between a Huawei Datacom Device and a Non-Huawei Device
- Maintaining VBST
  - Displaying VBST Running Information and Statistics
  - Clearing VBST Statistics
- Configuration Examples
  - Example for Configuring VBST
SEP Configuration
- Introduction to SEP
- Principles
- Applications
- Configuration Task Summary
- Licensing Requirements and Limitations for SEP
- Configuring Basic SEP Functions
- Specifying an Interface to Block
- Configuring SEP Multi-Instance
- Configuring the Topology Change Notification Function
- Maintaining SEP
  - Clearing SEP Statistics
- Configuration Examples
RRPP Configuration
- Introduction to RRPP
- Principles
- Application Scenarios
- Configuration Task Summary
- Licensing Requirements and Limitations for RRPP
- Default Configuration
- Configuring RRPP
- Configuring RRPP Snooping
- Maintaining RRPP
  - Clearing RRPP Statistics
- Configuration Examples
- Common Configuration Errors
  - A Loop Occurs After the RRPP Configuration is Complete
  - After the Primary Port of a Transit Node on an RRPP Ring Network Becomes Down and Then Recovers, the Transit Node and Other Transit Nodes Cannot Register With the Master Node
- FAQ
ERPS (G.8032) Configuration
- Introduction to ERPS
- Principles
- Applicable Scenario
- Configuration Task Summary
- Licensing Requirements and Limitations for ERPS
- Default Settings
- Configuring ERPSv1
- Configuring ERPSv2
- Maintaining ERPS
  - Clearing ERPS Statistics
- Configuration Examples
  - Example for Configuring ERPS Multi-instance
  - Example for Configuring Intersecting ERPS Rings
- Common Configuration Errors
  - Traffic Forwarding Fails in an ERPS Ring
LDT and LBDT Configuration
- Introduction to LBDT and LDT
- Principles
- Applicable Scenario
- Licensing Requirements and Limitations for LDT and LBDT
- Default Configuration
- Configuring LDT to Detect Loops
- Configuring Automatic LBDT
- Configuring Manual LBDT
- Configuration Examples
Layer 2 Protocol Transparent Transmission Configuration
- Introduction to Layer 2 Protocol Transparent Transmission
- Principles
- Application Environment
- Configuration Task Summary
- Licensing Requirements and Limitations for Layer 2 Protocol Transparent Transmission
- Configuring Interface-based Layer 2 Protocol Transparent Transmission
- Configuring VLAN-based Layer 2 Protocol Transparent Transmission
- Configuring QinQ-based Layer 2 Protocol Transparent Transmission
- Configuration Examples
- FAQ

Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).

Example for Configuring MSTP + VRRP Network

Networking Requirements

In Figure 15-19, hosts connect to Switch C, and Switch C connects to the Internet through Switch A and Switch B. To improve access reliability, the user configures redundant links. The redundant links cause a network loop, which leads to broadcast storms and MAC address damaging.

It is required that the network loop be prevented when redundant links are deployed, traffic be switched to another link when one link fails, and network bandwidth be effectively used.

MSTP can be configured on the network to prevent loops. MSTP blocks redundant links and prunes a network into a tree topology free from loops. In addition, VRRP needs to be configured on Switch A and Switch B. Host A connects to the Internet by using Switch A as the default gateway and Switch B as the secondary gateway. Host B connects to the Internet by using Switch B as the default gateway and Switch A as the secondary gateway. This allows traffic to be load balanced and communication reliability improved.

Figure 15-19 MSTP + VRRP network

Device	Interface	VLANIF Interface	IP Address
SwitchA	GE1/0/1 and GE1/0/2	VLANIF 2	10.1.2.102/24
	GE1/0/1 and GE1/0/2	VLANIF 3	10.1.3.102/24
	GE1/0/3	VLANIF 4	10.1.4.102/24
SwitchB	GE1/0/1 and GE1/0/2	VLANIF 2	10.1.2.103/24
	GE1/0/1 and GE1/0/2	VLANIF 3	10.1.3.103/24
	GE1/0/3	VLANIF 5	10.1.5.103/24

Configuration Roadmap

The configuration roadmap is as follows:

Configure basic MSTP on the switches, including:
1. Configure MST and create multi-instance, map VLAN 2 to MSTI 1, and map VLAN 3 to MSTI 2 to load balance traffic.
2. Configure the root bridge and backup bridge in the MST region.
3. Configure the path cost on an interface so that the interface can be blocked.
4. Enable MSTP to prevent loops:
  - Enable MSTP globally.
  - Enable MSTP on all interfaces except the interfaces connecting to hosts.
  Because the interfaces connecting to hosts do not participate in MSTP calculation, configure these ports as edge ports.
Enable the protection function to protect devices or links. For example, enable the protection function on the root bridge of each instance to protect roots.
Configure Layer 2 forwarding.
Assign an IP address to each interface and configure the routing protocol on each device to ensure network connectivity.
Create VRRP group 1 and VRRP group 2 on Switch A and Switch B. Configure Switch A as the master device and Switch B as the backup device of VRRP group 1. Configure Switch B as the master device and Switch A as the backup device of VRRP group 2.

Procedure

Configure basic MSTP functions.

Add Switch A, Switch B, and Switch C to region RG1, and create instances MSTI 1 and MSTI 2.

# Configure an MST region on Switch A.

<HUAWEI> system-view
[HUAWEI] sysname SwitchA
[SwitchA] stp region-configuration
[SwitchA-mst-region] region-name RG1
[SwitchA-mst-region] instance 1 vlan 2
[SwitchA-mst-region] instance 2 vlan 3
[SwitchA-mst-region] active region-configuration
[SwitchA-mst-region] quit

# Configure an MST region on Switch B.

<HUAWEI> system-view
[HUAWEI] sysname SwitchB
[SwitchB] stp region-configuration
[SwitchB-mst-region] region-name RG1
[SwitchB-mst-region] instance 1 vlan 2
[SwitchB-mst-region] instance 2 vlan 3
[SwitchB-mst-region] active region-configuration
[SwitchB-mst-region] quit

# Configure an MST region on Switch C.

<HUAWEI> system-view
[HUAWEI] sysname SwitchC
[SwitchC] stp region-configuration
[SwitchC-mst-region] region-name RG1
[SwitchC-mst-region] instance 1 vlan 2
[SwitchC-mst-region] instance 2 vlan 3
[SwitchC-mst-region] active region-configuration
[SwitchC-mst-region] quit

Configure the root bridges and backup bridges for MSTI 1 and MSTI 2 in RG1.
- Configure the root bridge and backup bridge for MSTI 1.
  
  # Set Switch A as the root bridge of MSTI 1.
```
[SwitchA] stp instance 1 root primary
```
  # Set Switch B as the backup bridge of MSTI 1.
```
[SwitchB] stp instance 1 root secondary
```
- Configure the root bridge and backup bridge for MSTI 2.
  
  # Set Switch B as the root bridge of MSTI 2.
```
[SwitchB] stp instance 2 root primary
```
  # Set Switch A as the backup bridge of MSTI 2.
```
[SwitchA] stp instance 2 root secondary
```
Set the path costs of the interfaces that you want to block on MSTI 1 and MSTI 2 to be greater than the default value.
- The path cost range is determined by the calculation method. The Huawei calculation method is used as an example. Set the path costs of the interfaces to 20000.
- The switches on the same network must use the same calculation method to calculate path costs.
# Set the path cost calculation method on Switch A to Huawei calculation method.
```
[SwitchA] stp pathcost-standard legacy
```
# Set the path cost calculation method on Switch B to Huawei calculation method.
```
[SwitchB] stp pathcost-standard legacy
```
# Set the path cost calculation method on Switch C to Huawei calculation method. Set the path cost of GE1/0/1 in MSTI 2 to 20000; set the path cost of GE1/0/4 in MSTI 1 to 20000.
```
[SwitchC] stp pathcost-standard legacy
[SwitchC] interface gigabitethernet 1/0/1
[SwitchC-GigabitEthernet1/0/1] stp instance 2 cost 20000
[SwitchC-GigabitEthernet1/0/1] quit
[SwitchC] interface gigabitethernet 1/0/4
[SwitchC-GigabitEthernet1/0/4] stp instance 1 cost 20000
[SwitchC-GigabitEthernet1/0/4] quit
```
Enable MSTP to prevent loops.
- Enable MSTP globally.
  
  # Enable MSTP on Switch A.
```
[SwitchA] stp enable
```
  # Enable MSTP on Switch B.
```
[SwitchB] stp enable
```
  # Enable MSTP on Switch C.
```
[SwitchC] stp enable
```
- Configure the ports connected to hosts as edge ports.
  
  # Configure GE1/0/2 and GE1/0/3 of Switch C as an edge port.
```
[SwitchC] interface gigabitethernet 1/0/2
[SwitchC-GigabitEthernet1/0/2] stp edged-port enable
[SwitchC-GigabitEthernet1/0/2] quit
[SwitchC] interface gigabitethernet 1/0/3
[SwitchC-GigabitEthernet1/0/3] stp edged-port enable
[SwitchC-GigabitEthernet1/0/3] quit
```
  (Optional) Configure BPDU protection on SwitchC.
```
[SwitchC] stp bpdu-protection
```
- Configure the ports connected to Router as edge ports.
  
  # Configure GE1/0/3 of Switch A as an edge port.
```
[SwitchA] interface gigabitethernet 1/0/3
[SwitchA-GigabitEthernet1/0/3] stp edged-port enable
[SwitchA-GigabitEthernet1/0/3] quit
```
  (Optional) Configure BPDU protection on SwitchA.
```
[SwitchA] stp bpdu-protection
```
  # Disable STP on GE1/0/3 of Switch B as an edge port.
```
[SwitchB] interface gigabitethernet 1/0/3
[SwitchB-GigabitEthernet1/0/3] stp edged-port enable
[SwitchB-GigabitEthernet1/0/3] quit
```
  (Optional) Configure BPDU protection on SwitchB.
```
[SwitchB] stp bpdu-protection
```
  If edge ports are connected to network devices that have STP enabled and BPDU protection is enabled, the edge ports will be shut down and their attributes remain unchanged after they receive BPDUs.

Enable the protection function on the designated interfaces of each root bridge.

# Enable root protection on GE1/0/1 of Switch A.

[SwitchA] interface gigabitethernet 1/0/1
[SwitchA-GigabitEthernet1/0/1] stp root-protection
[SwitchA-GigabitEthernet1/0/1] quit

# Enable root protection on GE1/0/1 of Switch B.

[SwitchB] interface gigabitethernet 1/0/1
[SwitchB-GigabitEthernet1/0/1] stp root-protection
[SwitchB-GigabitEthernet1/0/1] quit

Configure Layer 2 forwarding on the switches in the ring.

Create VLANs 2 and 3 on Switch A, Switch B, and Switch C.

# Create VLANs 2 and 3 on Switch A.
```
[SwitchA] vlan batch 2 to 3
```
# Create VLANs 2 and 3 on Switch B.
```
[SwitchB] vlan batch 2 to 3
```
# Create VLANs 2 and 3 on Switch C.
```
[SwitchC] vlan batch 2 to 3
```

Add the interfaces connecting to the loops to VLANs.

# Add GE1/0/1 of Switch A to VLANs.

[SwitchA] interface gigabitethernet 1/0/1
[SwitchA-GigabitEthernet1/0/1] port link-type trunk
[SwitchA-GigabitEthernet1/0/1] port trunk allow-pass vlan 2 to 3
[SwitchA-GigabitEthernet1/0/1] quit

# Add GE1/0/2 of Switch A to VLANs.

[SwitchA] interface gigabitethernet 1/0/2
[SwitchA-GigabitEthernet1/0/2] port link-type trunk
[SwitchA-GigabitEthernet1/0/2] port trunk allow-pass vlan 2 to 3
[SwitchA-GigabitEthernet1/0/2] quit

# Add GE1/0/1 of Switch B to VLANs.

[SwitchB] interface gigabitethernet 1/0/1
[SwitchB-GigabitEthernet1/0/1] port link-type trunk
[SwitchB-GigabitEthernet1/0/1] port trunk allow-pass vlan 2 to 3
[SwitchB-GigabitEthernet1/0/1] quit

# Add GE1/0/2 of Switch B to VLANs.

[SwitchB] interface gigabitethernet 1/0/2
[SwitchB-GigabitEthernet1/0/2] port link-type trunk
[SwitchB-GigabitEthernet1/0/2] port trunk allow-pass vlan 2 to 3
[SwitchB-GigabitEthernet1/0/2] quit

# Add GE1/0/1 of Switch C to VLANs.

[SwitchC] interface gigabitethernet 1/0/1
[SwitchC-GigabitEthernet1/0/1] port link-type trunk
[SwitchC-GigabitEthernet1/0/1] port trunk allow-pass vlan 2 to 3
[SwitchC-GigabitEthernet1/0/1] quit

# Add GE1/0/2 of Switch C to VLAN 2.

[SwitchC] interface gigabitethernet 1/0/2
[SwitchC-GigabitEthernet1/0/2] port link-type access
[SwitchC-GigabitEthernet1/0/2] port default vlan 2
[SwitchC-GigabitEthernet1/0/2] quit

# Add GE1/0/3 of Switch C to VLAN 3.

[SwitchC] interface gigabitethernet 1/0/3
[SwitchC-GigabitEthernet1/0/3] port link-type access
[SwitchC-GigabitEthernet1/0/3] port default vlan 3
[SwitchC-GigabitEthernet1/0/3] quit

# Add GE1/0/4 of Switch C to VLANs.

[SwitchC] interface gigabitethernet 1/0/4
[SwitchC-GigabitEthernet1/0/4] port link-type trunk
[SwitchC-GigabitEthernet1/0/4] port trunk allow-pass vlan 2 to 3
[SwitchC-GigabitEthernet1/0/4] quit

Verify the configuration.

After the preceding configurations are complete and the network topology becomes stable, perform the following operations to verify the configuration.

MSTI 1 and MSTI 2 are used as examples. You do not need to check the interface status in MSTI 0.

# Run the display stp brief command on Switch A to view the status and protection mode on ports. Output similar to the following is displayed

[SwitchA] display stp brief
 MSTID      Port                        Role  STP State       Protection
   0        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   0        GigabitEthernet1/0/2        DESI  FORWARDING      NONE
   1        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   1        GigabitEthernet1/0/2        DESI  FORWARDING      NONE
   2        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   2        GigabitEthernet1/0/2        ROOT  FORWARDING      NONE

In MSTI 1, GE1/0/2 and GE1/0/1 of Switch A are set as designated interfaces because Switch A is the root bridge of MSTI 1. In MSTI 2, GE1/0/1 of Switch A is set as the designated interface and GE1/0/2 is set as the root interface.

# Run the display stp brief command on Switch B. Output similar to the following is displayed

[SwitchB] display stp brief
 MSTID      Port                        Role  STP State       Protection
   0        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   0        GigabitEthernet1/0/2        ROOT  FORWARDING      NONE
   1        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   1        GigabitEthernet1/0/2        ROOT  FORWARDING      NONE
   2        GigabitEthernet1/0/1        DESI  FORWARDING      ROOT
   2        GigabitEthernet1/0/2        DESI  FORWARDING      NONE

In MSTI 2, GE1/0/1 and GE1/0/2 of Switch B are set as designated interfaces because Switch B is the root bridge of MSTI 2. In MSTI 1, GE1/0/1 of Switch B is set as the designated interface and GE1/0/2 is set as the root interface.

# Run the display stp interface brief command on Switch C. Output similar to the following is displayed

[SwitchC] display stp interface gigabitethernet 1/0/1 brief
 MSTID      Port                        Role  STP State       Protection
   0        GigabitEthernet1/0/1        ROOT  FORWARDING      NONE
   1        GigabitEthernet1/0/1        ROOT  FORWARDING      NONE
   2        GigabitEthernet1/0/1        ALTE  DISCARDING      NONE

[SwitchC] display stp interface gigabitethernet 1/0/4 brief
 MSTID      Port                        Role  STP State       Protection
   0        GigabitEthernet1/0/4        ALTE  DISCARDING      NONE
   1        GigabitEthernet1/0/4        ALTE  DISCARDING      NONE
   2        GigabitEthernet1/0/4        ROOT  FORWARDING      NONE

GE1/0/1 of Switch C is the root interface of MSTI 1, and is blocked in MSTI 2. GE1/0/4 of Switch C is the root interface of MSTI 2, and is blocked in MSTI 1.

Connect devices.

# Assign an IP address to each interface, for example, the interfaces on SwitchA. The configuration on SwitchB is similar to the configuration on SwitchA. For details, see the configuration files.

[SwitchA] vlan batch 4
[SwitchA] interface gigabitethernet 1/0/3
[SwitchA-GigabitEthernet1/0/3] port link-type trunk
[SwitchA-GigabitEthernet1/0/3] port trunk allow-pass vlan 4
[SwitchA-GigabitEthernet1/0/3] quit
[SwitchA] interface vlanif 2
[SwitchA-Vlanif2] ip address 10.1.2.102 24
[SwitchA-Vlanif2] quit
[SwitchA] interface vlanif 3
[SwitchA-Vlanif3] ip address 10.1.3.102 24
[SwitchA-Vlanif3] quit
[SwitchA] interface vlanif 4
[SwitchA-Vlanif4] ip address 10.1.4.102 24
[SwitchA-Vlanif4] quit

# Run OSPF on SwitchA, SwitchB, and routers. The configuration on SwitchA is used as an example. The configuration on SwitchB is similar to the configuration on SwitchA. For details, see the configuration files.

[SwitchA] ospf 1
[SwitchA-ospf-1] area 0
[SwitchA-ospf-1-area-0.0.0.0] network 10.1.2.0 0.0.0.255
[SwitchA-ospf-1-area-0.0.0.0] network 10.1.3.0 0.0.0.255
[SwitchA-ospf-1-area-0.0.0.0] network 10.1.4.0 0.0.0.255
[SwitchA-ospf-1-area-0.0.0.0] quit
[SwitchA-ospf-1] quit

Configure VRRP groups.

# Create VRRP group 1 on SwitchA and SwitchB. Set SwitchA as the master device, priority to 120, and preemption delay to 20 seconds. Set SwitchB as the backup device and retain the default priority.

[SwitchA] interface vlanif 2
[SwitchA-Vlanif2] vrrp vrid 1 virtual-ip 10.1.2.100
[SwitchA-Vlanif2] vrrp vrid 1 priority 120
[SwitchA-Vlanif2] vrrp vrid 1 preempt-mode timer delay 20
[SwitchA-Vlanif2] quit

[SwitchB] interface vlanif 2
[SwitchB-Vlanif2] vrrp vrid 1 virtual-ip 10.1.2.100
[SwitchB-Vlanif2] quit

# Create VRRP group 2 on SwitchA and SwitchB. Set SwitchB as the master device, priority to 120, and preemption delay to 20 seconds. Set SwitchA as the backup device and retain the default priority.

[SwitchB] interface vlanif 3
[SwitchB-Vlanif3] vrrp vrid 2 virtual-ip 10.1.3.100
[SwitchB-Vlanif3] vrrp vrid 2 priority 120
[SwitchB-Vlanif3] vrrp vrid 2 preempt-mode timer delay 20
[SwitchB-Vlanif3] quit

[SwitchA] interface vlanif 3
[SwitchA-Vlanif3] vrrp vrid 2 virtual-ip 10.1.3.100
[SwitchA-Vlanif3] quit

# Set the virtual IP address 10.1.2.100 of VRRP group 1 as the default gateway of Host A, and the virtual IP address 10.1.3.100 of VRRP group 2 as the default gateway of Host B.

Verify the configuration.

# After completing the preceding configurations, run the display vrrp command on SwitchA. SwitchA's VRRP status is master in VRRP group 1 and backup in VRRP group 2.

[SwitchA] display vrrp
  Vlanif2 | Virtual Router 1
    State : Master
    Virtual IP : 10.1.2.100
    Master IP : 10.1.2.102
    PriorityRun : 120
    PriorityConfig : 120                                                        
    MasterPriority : 120                                                        
    Preempt : YES   Delay Time : 20 s                                           
    TimerRun : 1 s                                                              
    TimerConfig : 1 s                                                           
    Auth type : NONE                                                            
    Virtual MAC : 0000-5e00-0101                                                
    Check TTL : YES                                                             
    Config type : normal-vrrp                                                   
    Backup-forward : disabled
    Create time : 2012-05-11 11:39:18                                           
    Last change time : 2012-05-26 11:38:58

  Vlanif3 | Virtual Router 2
    State : Backup
    Virtual IP : 10.1.3.100
    Master IP : 10.1.3.103
    PriorityRun : 100
    PriorityConfig : 100                                                        
    MasterPriority : 120                                                        
    Preempt : YES   Delay Time : 0 s                                            
    TimerRun : 1 s                                                              
    TimerConfig : 1 s                                                           
    Auth type : NONE                                                            
    Virtual MAC : 0000-5e00-0102                                                
    Check TTL : YES                                                             
    Config type : normal-vrrp                                                   
    Backup-forward : disabled
    Create time : 2012-05-11 11:40:18                                           
    Last change time : 2012-05-26 11:48:58

# Run the display vrrp command on SwitchB. SwitchB's VRRP status is backup in VRRP group 1 and master in VRRP group 2.

[SwitchB] display vrrp
  Vlanif2 | Virtual Router 1
    State : Backup
    Virtual IP : 10.1.2.100
    Master IP : 10.1.2.102
    PriorityRun : 100
    PriorityConfig : 100                                                        
    MasterPriority : 120                                                        
    Preempt : YES   Delay Time : 0 s                                            
    TimerRun : 1 s                                                              
    TimerConfig : 1 s                                                           
    Auth type : NONE                                                            
    Virtual MAC : 0000-5e00-0101                                                
    Check TTL : YES                                                             
    Config type : normal-vrrp                                                   
    Backup-forward : disabled
    Create time : 2012-05-11 11:39:18                                           
    Last change time : 2012-05-26 11:38:58

  Vlanif3 | Virtual Router 2
    State : Master
    Virtual IP : 10.1.3.100
    Master IP : 10.1.3.103
    PriorityRun : 120
    PriorityConfig : 120                                                        
    MasterPriority : 120                                                        
    Preempt : YES   Delay Time : 20 s                                            
    TimerRun : 1 s                                                              
    TimerConfig : 1 s                                                           
    Auth type : NONE                                                            
    Virtual MAC : 0000-5e00-0102                                                
    Check TTL : YES                                                             
    Config type : normal-vrrp                                                   
    Backup-forward : disabled
    Create time : 2012-05-11 11:40:18                                           
    Last change time : 2012-05-26 11:48:58

Configuration Files

SwitchA configuration file

#
sysname SwitchA
#
vlan batch 2 to 4
#
stp bpdu-protection
stp instance 1 root primary
stp instance 2 root secondary
stp pathcost-standard legacy
#
stp region-configuration
 region-name RG1
 instance 1 vlan 2
 instance 2 vlan 3
 active region-configuration  
#
interface Vlanif2
 ip address 10.1.2.102 255.255.255.0
 vrrp vrid 1 virtual-ip 10.1.2.100
 vrrp vrid 1 priority 120
 vrrp vrid 1 preempt-mode timer delay 20
#
interface Vlanif3
 ip address 10.1.3.102 255.255.255.0
 vrrp vrid 2 virtual-ip 10.1.3.100
#
interface Vlanif4
 ip address 10.1.4.102 255.255.255.0
#
interface GigabitEthernet1/0/1
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
 stp root-protection
#
interface GigabitEthernet1/0/2
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
#
interface GigabitEthernet1/0/3
 port link-type trunk
 port trunk allow-pass vlan 4
 stp edged-port enable 
#
ospf 1
 area 0.0.0.0
  network 10.1.2.0 0.0.0.255
  network 10.1.3.0 0.0.0.255
  network 10.1.4.0 0.0.0.255
#
return

SwitchB configuration file

#
sysname SwitchB
#
vlan batch 2 to 3 5
#
stp instance 1 root secondary
stp instance 2 root primary
stp bpdu-protection
stp pathcost-standard legacy
#
stp region-configuration
 region-name RG1
 instance 1 vlan 2
 instance 2 vlan 3
 active region-configuration  
#
interface Vlanif2
 ip address 10.1.2.103 255.255.255.0
 vrrp vrid 1 virtual-ip 10.1.2.100
#
interface Vlanif3
 ip address 10.1.3.103 255.255.255.0
 vrrp vrid 2 virtual-ip 10.1.3.100
 vrrp vrid 2 priority 120
 vrrp vrid 2 preempt-mode timer delay 20
#
interface Vlanif5
 ip address 10.1.5.103 255.255.255.0
#
interface GigabitEthernet1/0/1
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
 stp root-protection
#
interface GigabitEthernet1/0/2
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
#
interface GigabitEthernet1/0/3
 port link-type trunk
 port trunk allow-pass vlan 5
 stp edged-port enable 
#
ospf 1
 area 0.0.0.0
  network 10.1.2.0 0.0.0.255
  network 10.1.3.0 0.0.0.255
  network 10.1.5.0 0.0.0.255
#
return

SwitchC configuration file

#
sysname SwitchC
#
vlan batch 2 to 3
#
stp bpdu-protection
stp pathcost-standard legacy
#
stp region-configuration
 region-name RG1
 instance 1 vlan 2
 instance 2 vlan 3
 active region-configuration  
#
interface GigabitEthernet1/0/1
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
 stp instance 2 cost 20000
#
interface GigabitEthernet1/0/2
 port link-type access
 port default vlan 2
 stp edged-port enable 
#
interface GigabitEthernet1/0/3
 port link-type access
 port default vlan 3
 stp edged-port enable 
#
interface GigabitEthernet1/0/4
 port link-type trunk
 port trunk allow-pass vlan 2 to 3
 stp instance 1 cost 20000
#
return

Translation

简体中文

Download

Updated: 2022-05-23

Document ID: EDOC1000142081

Downloads: 901

Average rating:

This Document Applies to these Products

Related Version

Digital Signature File

Digital Signature Authentication Mode

Enterprise

Huawei Cloud

Carrier

Consumer

Corporate