BSD Router Project

User Tools

Site Tools

Trace:
documentation:examples:simple_vrrp_lab

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

documentation:examples:simple_vrrp_lab [2017/07/07 00:23] (current)
Line 1: Line 1:
 +====== Simple VRRP lab  ======
  
 +
 +===== Network Diagram =====
 +
 +{{:​documentation:​examples:​bsdrp-simple-vrrp-lab.png|}}
 +
 +===== Starting the lab =====
 +
 +More information on these BSDRP lab scripts available on [[documentation:​examples:​How to build a BSDRP router lab]].
 +
 +Example with the bhyve lab script:
 +
 +<​code>​
 +# ./​BSDRP-lab-bhyve.sh -i /​usr/​obj/​BSDRP.amd64/​BSDRP-1.61-full-amd64-vga.img -n 4 -l 2
 +vmm module not loaded. Loading it...
 +nmdm module not loaded. Loading it...
 +if_tap module not loaded. Loading it...
 +BSD Router Project (http://​bsdrp.net) - bhyve full-meshed lab script
 +Setting-up a virtual lab with 4 VM(s):
 +- Working directory: /tmp/BSDRP
 +- Each VM have 1 core(s) and 256M RAM
 +- Switch mode: bridge + tap
 +- 2 LAN(s) between all VM
 +- Full mesh Ethernet links between each VM
 +VM 1 have the following NIC:
 +- vtnet0 connected to VM 2.
 +- vtnet1 connected to VM 3.
 +- vtnet2 connected to VM 4.
 +- vtnet3 connected to LAN number 1
 +- vtnet4 connected to LAN number 2
 +VM 2 have the following NIC:
 +- vtnet0 connected to VM 1.
 +- vtnet1 connected to VM 3.
 +- vtnet2 connected to VM 4.
 +- vtnet3 connected to LAN number 1
 +- vtnet4 connected to LAN number 2
 +VM 3 have the following NIC:
 +- vtnet0 connected to VM 1.
 +- vtnet1 connected to VM 2.
 +- vtnet2 connected to VM 4.
 +- vtnet3 connected to LAN number 1
 +- vtnet4 connected to LAN number 2
 +VM 4 have the following NIC:
 +- vtnet0 connected to VM 1.
 +- vtnet1 connected to VM 2.
 +- vtnet2 connected to VM 3.
 +- vtnet3 connected to LAN number 1
 +- vtnet4 connected to LAN number 2
 +For connecting to VM'​serial console, you can use:
 +- VM 1 : cu -l /dev/nmdm1B
 +- VM 2 : cu -l /dev/nmdm2B
 +- VM 3 : cu -l /dev/nmdm3B
 +- VM 4 : cu -l /dev/nmdm4B
 +</​code>​
 +
 +===== Configuring Routers =====
 +
 +==== Router 1 (R1) ====
 +
 +<​code>​
 +sysrc hostname=R1
 +sysrc ifconfig_vtnet3="​inet 192.168.1.1/​24"​
 +sysrc ifconfig_vtnet4="​inet 192.168.2.1/​24"​
 +sysrc freevrrpd_enable=YES
 +cat <<EOF > /​usr/​local/​etc/​freevrrpd.conf ​
 +[VRID]
 +serverid = 1
 +interface = vtnet3
 +# This router is the master
 +priority = 101
 +addr = 192.168.1.254/​24
 +# We want that this state is dependant with the state of vrid 2
 +vridsdep = 2
 +password = vrid1
 +
 +[VRID]
 +serverid = 2
 +interface = vtnet4
 +# This router is the master
 +priority = 101
 +addr = 192.168.2.254/​24
 +password = vrid2
 +# We want that this state is dependant with the state of vrid 1
 +vridsdep = 1
 +EOF
 +service netif restart
 +service freevrrpd start
 +config save
 +</​code>​
 +
 +==== Router 2 (R2) ====
 +
 +<​code>​
 +sysrc hostname=R2
 +sysrc ifconfig_vtnet3="​inet 192.168.1.2/​24"​
 +sysrc ifconfig_vtnet4="​inet 192.168.2.2/​24"​
 +sysrc freevrrpd_enable=YES
 +cat <<EOF > /​usr/​local/​etc/​freevrrpd.conf ​
 +[VRID]
 +serverid = 1
 +interface = vtnet3
 +# This router is the backup
 +priority = 100
 +addr = 192.168.1.254/​24
 +# We want that this state is dependant with the state of vrid 2
 +vridsdep = 2
 +password = vrid1
 +
 +[VRID]
 +serverid = 2
 +interface = vtnet4
 +# This router is the backup
 +priority = 100
 +addr = 192.168.2.254/​24
 +password = vrid2
 +# We want that this state is dependant with the state of vrid 1
 +vridsdep = 1
 +EOF
 +service netif restart
 +service freevrrpd start
 +config save
 +</​code>​
 +
 +==== Router 3 (R3) ====
 +
 +<​code>​
 +sysrc hostname=R3
 +sysrc ifconfig_vtnet3="​inet 192.168.1.3/​24"​
 +sysrc defaultrouter="​192.168.1.254"​
 +sysrc gateway_enable=NO
 +sysrc ipv6_gateway_enable=NO
 +service netif restart
 +service routing restart
 +config save
 +</​code>​
 +
 +==== Router 4 (R4) ====
 +
 +<​code>​
 +sysrc hostname=R4
 +sysrc ifconfig_vtnet4="​inet 192.168.2.4/​24"​
 +sysrc defaultrouter="​192.168.2.254"​
 +sysrc gateway_enable=NO
 +sysrc ipv6_gateway_enable=NO
 +service netif restart
 +service routing restart
 +config save
 +</​code>​
 +
 +===== Checking configuration =====
 +
 +==== VRRP state ====
 +
 +On R1:
 +
 +<​code>​
 +[root@R1]~# grep vrrp /​var/​log/​messages
 +Nov  5 11:37:15 R1 freevrrpd[1177]:​ launching daemon in background mode
 +Nov  5 11:37:15 R1 freevrrpd[1178]:​ initializing threads and all VRID
 +Nov  5 11:37:15 R1 freevrrpd[1178]:​ reading configuration file /​usr/​local/​etc/​freevrrpd.conf
 +Nov  5 11:37:15 R1 freevrrpd[1178]:​ monitored circuits engine initialized
 +Nov  5 11:37:16 R1 freevrrpd[1178]:​ server state vrid 1: backup
 +Nov  5 11:37:17 R1 freevrrpd[1178]:​ server state vrid 2: backup
 +Nov  5 11:37:20 R1 freevrrpd[1178]:​ server state vrid 1: master
 +Nov  5 11:37:21 R1 freevrrpd[1178]:​ server state vrid 2: master
 +</​code>​
 +
 +//R1 is VRRP master for vrid 1 and 2.//
 +
 +On R2:
 +
 +<​code>​
 +[root@R2]~# ​ grep vrrp /​var/​log/​messages
 +Nov  5 11:41:37 R2 freevrrpd[2091]:​ launching daemon in background mode
 +Nov  5 11:41:37 R2 freevrrpd[2092]:​ initializing threads and all VRID
 +Nov  5 11:41:37 R2 freevrrpd[2092]:​ reading configuration file /​usr/​local/​etc/​freevrrpd.conf
 +Nov  5 11:41:37 R2 freevrrpd[2092]:​ monitored circuits engine initialized
 +Nov  5 11:41:38 R2 freevrrpd[2092]:​ server state vrid 1: backup
 +Nov  5 11:41:39 R2 freevrrpd[2092]:​ server state vrid 2: backup
 +</​code>​
 +
 +//R2 is the VRRP backup for vrid 1 and 2.//
 +
 +==== Forwarding and ARP entry ====
 +
 +Pinging R4 from R3:
 +<​code>​
 +[root@R3]~# ping 192.168.2.4
 +PING 192.168.2.4 (192.168.2.4):​ 56 data bytes
 +64 bytes from 192.168.2.4:​ icmp_seq=0 ttl=63 time=0.669 ms
 +64 bytes from 192.168.2.4:​ icmp_seq=1 ttl=63 time=0.749 ms
 +64 bytes from 192.168.2.4:​ icmp_seq=2 ttl=63 time=0.718 ms
 +</​code>​
 +And checking ARP cache for a VRRP MAC address (00:​00:​5e:​00:​01:​xx)
 +
 +<​code>​
 +[root@R3]~#​arp -na | grep 192.168.1.254
 +? (192.168.1.254) at 00:​00:​5e:​00:​01:​01 on vtnet3 expires in 709 seconds [ethernet]
 +
 +</​code>​
 +
 +==== Testing VRRP swap ====
 +
 +Disable one interface on R1 for changing the VRRP states:
 +<​code>​
 +
 +[root@R1]~# ifconfig vtnet3 down
 +Nov  5 11:48:40 R1 freevrrpd[1178]:​ can't write to socket: Network is down
 +Nov  5 11:48:40 R1 freevrrpd[1178]:​ There is a big problem here !
 +Nov  5 11:48:42 R1 freevrrpd[1178]:​ interface vtnet3 is faulty, deactivated from VRRP VRIDs
 +Nov  5 11:48:42 R1 freevrrpd[1178]:​ VRID 2 (interface vtnet4) has been deactivated due to dependance
 +</​code>​
 +
 +And check that R2 became the master:
 +
 +<​code>​
 +[root@R2]~#​tail -f /​var/​log/​messages
 +Nov  5 11:48:45 R2 freevrrpd[2092]:​ server state vrid 1: master
 +Nov  5 11:48:48 R2 freevrrpd[2092]:​ server state vrid 2: master
 +</​code>​
 +
 +And check that R3 still can reach R4:
 +
 +<​code>​
 +[root@R3]~#​ping 192.168.2.4
 +PING 192.168.2.4 (192.168.2.4):​ 56 data bytes
 +64 bytes from 192.168.2.4:​ icmp_seq=0 ttl=63 time=0.571 ms
 +64 bytes from 192.168.2.4:​ icmp_seq=1 ttl=63 time=0.795 ms
 +</​code>​
documentation/examples/simple_vrrp_lab.txt ยท Last modified: 2017/07/07 00:23 (external edit)

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: BSD 2-Clause
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki