Knowledge Search
Assigning ports or interfaces for the HA link (NSRP)
|
|
[KB11296] Show Article Properties
[KB11296] Hide Article Properties
Summary:
Symptoms:
Solution:
Symptoms:
Solution:
A. Some devices have a predefined interface assigned to the HA zone so you can use that. Some do not, so you have to assign an interface to the HA zone. Refer to the specifics below:
B. Based on the type of NSRP setup you are configuring, you can bind 1 or 2 physical Ethernet interfaces to the HA zone. An additional interface is assigned to the HA zone with the command:
Refer to the following link for additional information on which HA interfaces will become the control and data channel for NSRP: KB11468 and KB9955.
The interfaces assigned to the HA zone are dedicated for NSRP; they cannot be additionally used for passing traffic (except on the NS-5GT).
Related Links: - ISG-1000 and ISG-2000 devices
An interface is not assigned by default to the HA Zone (shown with the 'get interface' command). Therefore, an interface is assigned to the HA zone with the command:
set interface <interface_name> zone ha
- SSG-300 and SSG-500 devices
By default, theeth0/3interface is assigned to the HA Zone (shown with the 'get interface' command).
- SSG-5, SSG-20, and SSG-140 devices
An interface is not assigned by default to the HA Zone (shown with the 'get interface' command). Therefore, an interface is assigned to the HA zone the following command:
set nsrp interface <interface>
- NS-50, NS-204, NS-208
By default, the highest interface number is assigned to the HA Zone (shown with the 'get interface' command). For example,ethernet8is assigned to the HA zone on the NS-208.
- NS-5GT
An interface is not assigned by default to the HA Zone (shown with the 'get interface' command). Therefore, an interface is assigned to the HA zone with the command:
set nsrp interface <interface_name>
B. Based on the type of NSRP setup you are configuring, you can bind 1 or 2 physical Ethernet interfaces to the HA zone. An additional interface is assigned to the HA zone with the command:
set interface <interface_name> zone ha
Below are the guidelines.
- NSRP Active/Passive: Minimum one port in HA zone to carry Control messages (like VSD heartbeats Configuration & RTO messages)
- NSRP Active/Passive: Binding 2 ports will provide redundancy between the HA ports, each port can be as a backup for another port. One HA link (HA1) will support Control messages only (VSD heartbeats), and the other HA link (HA2) handles (Configuration & RTO messages)
- NSRP Active/Active: Minimum one port in HA zone to carry Control messages like (VSD heartbeats Configuration & RTO messages)
- NSRP Active/Active: Binding 2 ports will provide redundancy between the HA ports, each port can be as a backup for another port . One HA link (HA1) will support Control messages only (VSD heartbeats), and the other HA link (HA2) handles (Configuration & RTO messages)
- NSRP Active/Active with data path forwarding enabled:
Minimum one gigabit port either copper or fiber in HA zone to carry both control messages and to forward real-time data traffic between the VSD groups
Binding 2 gigabit ports to the HA zone, one will carry control messages and the other will forward real-time data traffic between the VSD groups and both will be acting as backup to each other
Binding 2 copper 10/100 port to the HA zone one will carry control messages and the other port will forward real-time data traffic between the VSD groups. In the event one port fails control messages are still passed thru the interface which is UP and the data path forwarding will be disabled until the second interface is UP
Binding 2 gigabit ports to the HA zone, one will carry control messages and the other will forward real-time data traffic between the VSD groups and both will be acting as backup to each other
Binding 2 copper 10/100 port to the HA zone one will carry control messages and the other port will forward real-time data traffic between the VSD groups. In the event one port fails control messages are still passed thru the interface which is UP and the data path forwarding will be disabled until the second interface is UP
Refer to the following link for additional information on which HA interfaces will become the control and data channel for NSRP: KB11468 and KB9955.
The interfaces assigned to the HA zone are dedicated for NSRP; they cannot be additionally used for passing traffic (except on the NS-5GT).
