Vrrp non-owner accessibility, Non-owner access ping reply, Non-owner access telnet – Alcatel-Lucent 7750 SR OS User Manual

VRRP Non-Owner Accessibility

Page 188

7750 SR OS Router Configuration Guide

VRRP Non-Owner Accessibility

Although RFC 2338 and draft-ietf-vrrp-spec-v2-06.txt states that only VRRP owners can respond
to ping and other management-oriented protocols directed to the VRID IP addresses, 7750 SR OS
allows an override of this restraint on a per VRRP virtual router instance basis.

Non-Owner Access Ping Reply

When non-owner access ping reply is enabled on a virtual router instance, ICMP echo request
messages destined to the non-owner virtual router instance IP addresses are not discarded at the IP
interface when operating in master mode. ICMP echo request messages are always discarded in
backup mode.

When non-owner access ping reply is disabled on a virtual router instance, ICMP echo request
messages destined to the non-owner virtual router instance IP addresses are silently discarded in
both the master and backup modes.

Non-Owner Access Telnet

When non-owner access Telnet is enabled on a virtual router instance, authorized Telnet sessions
may be established that are destined to the virtual router instance IP addresses when operating in
master mode. Telnet sessions are always discarded at the IP interface when destined to a virtual
router IP address operating in backup mode. Enabling non-owner access Telnet does not guarantee
Telnet access, proper management and security features must be enabled to allow Telnet on this
interface and possibly from the given source IP address.

When non-owner access Telnet is disabled on a virtual router instance, Telnet sessions destined to
the non-owner virtual router instance IP addresses are silently discarded in both master and backup
modes.