Import the latest iso to both the active and standby bigip Install latest iso on standby bigip On command line: [root@bigip2:Standby:In Sync] config # tmsh root@(bigip2)(cfg-sync In Sync)(Standby)(/Common)(tmos)# /sys software image root@(bigip2)(cfg-sync In Sync)(Standby)(/Common)(tmos.sys.software.image)# install BIGIP-12.1.0.0.0.1434.iso volume HD1.1 HD1.1 currently has the base version 12 image, we will want to overwrite this. Activate the new … Continue reading Upgrade bigip image in active/standby HA
Category: High Availability
Topics related to high availability techniques such as HSRP, VRRP, GLBP, REP, HiPer Ring.
BIGIP virtual server status
Virtual server is enabled but is unavailable Although the virtual server is enabled, is unavailable. This is because a pool member has reached its connection limit. In this scenario two virtual servers were marked down by health monitor, and the only available virtual server has reached its connection limit. Virtual server is enabled and ready … Continue reading BIGIP virtual server status
Bigip Active/Standby HA
Summary step Create high availability VLAN and self ip on both bigip1 and bigip2. Create HA configuration on both bigip1 and bigip2 such as config sync and failover network. HA cluster setup such as include peer into trust domain and include trusted peer into the same device group. Create vlan and self ip on bigip1 … Continue reading Bigip Active/Standby HA
Palo Alto Networks: Active/Active High Availability
Scenario The pair of PA5050 firewalls are at the edge of the network, the downstream of PA5050 pairs has a pair of Cisco Catalyst 6506 and a pair of Cisco Catalyst 4506 switches. The diagram is illustrated as below. The pair of Cisco Catalyst 6506 is configured as a virtual switching system, which unifies the … Continue reading Palo Alto Networks: Active/Active High Availability
Cisco Systems: Virtual Switching System
Virtual Switching System If you have used Cisco catalyst 3750 stackwise technology you will grasp this VSS concept quickly. VSS is supported on the 6500 series switch platform that uses Sup720-10GE, the lab I did however is based on Cisco Catalyst 6509 Sup2T-10GE. The virtual switch link must be run on 10GE port which the … Continue reading Cisco Systems: Virtual Switching System
Hot standby router protocol (HSRP): Recovery / failover time test
Diagram for HSRP test plan Test objective and test procedures Both 1841 routers were configured HSRPv2 for redundancy. Vlan 10 is tested in this test plan to demonstrate the failover time when a link failed between router and switch. Catalyst 3750 switches were stacked together as a single entity, two links were connected to different … Continue reading Hot standby router protocol (HSRP): Recovery / failover time test
Stackwise
Stack master election criteria The criteria is in order, if the first criteria does not meet the second criteria will be the tie breaker. 1. The switch that is configured with the highest stack priority. 2. The switch that is not using the default configuration. 3. The switch that is using a higher priority IOS, … Continue reading Stackwise
Multiple Spanning Tree Protocol (802.1s)
This protocol is inspired by Cisco proprietary Per-Vlan Spanning tree plus (PVST+). Cisco PVST+ creates an STP instance for each Vlan. MSTP has more flexibility than PVST+, MSTP instances can map unlimited number of Vlans. MSTP supports 16 STP instances. When MSTP is enabled, RSTP is essentially enabled as well. The disadvantage of PVST+ is … Continue reading Multiple Spanning Tree Protocol (802.1s)
Rapid Spanning Tree Protocol (802.1w)
Port roles 1. Root port - STP path that is "shortest" to root bridge. 2. Designated port - Port that is forwarding and is not a root port. 3. Alternate port - Backup root port. Present the alternate path to the root bridge. 4. Backup port - Backup designated port. Bridge Protocol Data Unit 1. … Continue reading Rapid Spanning Tree Protocol (802.1w)
Spanning Tree Protocol (802.1D)
This protocol prevents bridging loop created by redundant links within switch network. STP calculation will make switch/es block its own port so that the switch path is one straight line and not a loop. This is perhaps the most confusing concept in switch, it is not extremely difficult but many terminologies and the method on … Continue reading Spanning Tree Protocol (802.1D)
cyruslab 