Authentication data, Virtual mac address – Alcatel-Lucent 7750 SR OS User Manual

Page 180

Advertising
background image

VRRP Components

Page 180

7750 SR OS Router Configuration Guide

Authentication Failure

Any received VRRP advertisement message that fails authentication must be silently discarded
with an invalid authentication counter incremented for the ingress virtual router instance.

Authentication Data

This feature is different than the VRRP advertisement message field with the same name. This is
any required authentication information that is pertinent to the configured authentication type. The
type of authentication data used for each authentication type is as follows:

Authentication Type

Authentication Data

0

None, authentication is not performed

1

Simple text password consisting of 8 octets

Virtual MAC Address

The MAC address can be used instead of an IP address in ARP responses when the virtual router
instance is master. The MAC address configuration must be the same for all virtual routers
participating as a virtual router or indeterminate connectivity by the attached IP hosts will result.
All VRRP advertisement messages are transmitted with ieee-mac-addr as the source MAC.

The command can be configured in both non-owner and owner VRRP contexts.

VRRP Advertisement Message IP Address List Verification

VRRP advertisement messages contain an IP address count field that indicates the number of IP
addresses listed in the sequential IP address fields at the end of the message. The 7750 SR OS
implementation always logs mismatching events. The decision on where and whether to forward
the generated messages depends on the configuration of the event manager.

To facilitate the sending of mismatch log messages, each virtual router instance keeps the
mismatch state associated with each source IP address in the VRRP master table. Whenever the
state changes, a mismatch log message is generated indicating the source IP address within the
message, the mismatch or match event and the time of the event.

With secondary IP address support, multiple IP addresses may be found in the list and it should
match the IP address on the virtual router instance. Owner and non-owner virtual router instances

Advertising
Popular Brands
Popular manuals