| Description |
This article describes that per RFC Standard, the VRRP priority of the device is set to 255 (highest) if the Virtual IP and Interface IP are the same.
If VIP and Interface IP are the same, the interface becomes the primary virtual router for the group.
Priority set on the FortiGate is overridden in the above situation.
|
| Solution |
Illustration:
- Virtual IP is the same as Interface IP:
FW1 # show sys interface VLAN1500
config system interface
edit "VLAN1500"
set vdom "root"
set ip 10.10.15.1 255.255.255.0
set allowaccess ping
set device-identification enable
config vrrp
edit 1
set vrgrp 360
set vrip 10.10.15.1
set priority 90
next
end
set role lan
set snmp-index 19
set interface "fortilink"
set vlanid 1500
next
end
FW1 # get route info vrrp
Interface: VLAN1500, primary IP address: 10.10.15.1
UseVMAC: 0, SoftSW: 0, BrPortIdx: 0, PromiscCount: 0
HA mode: primary (0:0:2) VRRP master number: 1
VRID: 1 verion: 2
vrip: 10.10.15.1, priority: 255 (255,0), state: MASTER
adv_interval: 1, preempt: 1, ignore_dft: 0 start_time: 3
master_adv_interval: 100, accept: 1
vrmac: 50:00:00:01:00:01
vrdst:
vrgrp: 360
- Virtual IP is NOT the same as Interface IP:
FW1 # show sys interface VLAN1500
config system interface
edit "VLAN1500"
set vdom "root"
set ip 10.10.15.1 255.255.255.0
set allowaccess ping
set device-identification enable
config vrrp
edit 1
set vrgrp 360
set vrip 10.10.15.3
set priority 90
next
end
set role lan
set snmp-index 19
set interface "fortilink"
set vlanid 1500
next
end
FW1 # get router info vrrp
Interface: VLAN1500, primary IP address: 10.10.15.1
UseVMAC: 0, SoftSW: 0, BrPortIdx: 0, PromiscCount: 0
HA mode: primary (0:0:2) VRRP master number: 0
VRID: 1 verion: 2
vrip: 10.10.15.3, priority: 90 (90,0), state: BACKUP
adv_interval: 1, preempt: 1, ignore_dft: 0 start_time: 3
master_adv_interval: 100, accept: 1
vrmac: 50:00:00:01:00:01
vrdst:
vrgrp: 360
|
