tangerine0072000
Technical User
Hi all,
Using the 'reliable static routing' feature on a Cisco 1721. It's basically configured to poll a public address which if fails to respond, will replace the default-gateway with a floating default-gateway pointing to another comms links and ISP.
The failover works fine and the default-gateway gets replaced, but while in a failover state, every few pings fail, so my ping responces to a public address look like the following....
C:\>ping 198.6.1.4 -t
Pinging 198.6.1.4 with 32 bytes of data:
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=82ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=82ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
further investigation reveals that during the 'request timed out ' period, the original default-gateway is put back and then removed again. Strange behaviour, not very reliable.
Has anybody used this feature and got it to work ?
My config for this is below, 198.6.1.4 is simply a DNS server on the Internet.
Lab1#sh run
Building configuration...
Current configuration : 1204 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Lab1
!
boot-start-marker
boot-end-marker
enable secret 5 $1$l6b2$bNl2i74E5CFlVeRUf.K/V/
enable password cisco
no aaa new-model
resource policy
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip cef
ip sla monitor 1
type echo protocol ipIcmpEcho 198.6.1.4
timeout 1000
threshold 2
frequency 3
ip sla monitor schedule 1 life forever start-time now
track 123 rtr 1 reachability
interface Ethernet0
ip address 192.168.225.2 255.255.255.0
half-duplex
interface Ethernet1
ip address 192.168.99.66 255.255.255.0
half-duplex
interface FastEthernet0
ip address 192.168.229.2 255.255.255.0
speed auto
full-duplex
ip route 0.0.0.0 0.0.0.0 192.168.225.1 track 123
ip route 0.0.0.0 0.0.0.0 192.168.99.1 254
no ip http server
no ip http secure-server
access-list 101 permit icmp any host 198.6.1.4 echo
route-map MY_LOCAL_POLICY permit 10
match ip address 101
set interface Null0
set ip next-hop 192.168.99.1
control-plane
line con 0
line aux 0
line vty 0 4
password 123456
login
end
LAB1#
Using the 'reliable static routing' feature on a Cisco 1721. It's basically configured to poll a public address which if fails to respond, will replace the default-gateway with a floating default-gateway pointing to another comms links and ISP.
The failover works fine and the default-gateway gets replaced, but while in a failover state, every few pings fail, so my ping responces to a public address look like the following....
C:\>ping 198.6.1.4 -t
Pinging 198.6.1.4 with 32 bytes of data:
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=82ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Reply from 198.6.1.4: bytes=32 time=82ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
Reply from 198.6.1.4: bytes=32 time=81ms TTL=246
further investigation reveals that during the 'request timed out ' period, the original default-gateway is put back and then removed again. Strange behaviour, not very reliable.
Has anybody used this feature and got it to work ?
My config for this is below, 198.6.1.4 is simply a DNS server on the Internet.
Lab1#sh run
Building configuration...
Current configuration : 1204 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Lab1
!
boot-start-marker
boot-end-marker
enable secret 5 $1$l6b2$bNl2i74E5CFlVeRUf.K/V/
enable password cisco
no aaa new-model
resource policy
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip cef
ip sla monitor 1
type echo protocol ipIcmpEcho 198.6.1.4
timeout 1000
threshold 2
frequency 3
ip sla monitor schedule 1 life forever start-time now
track 123 rtr 1 reachability
interface Ethernet0
ip address 192.168.225.2 255.255.255.0
half-duplex
interface Ethernet1
ip address 192.168.99.66 255.255.255.0
half-duplex
interface FastEthernet0
ip address 192.168.229.2 255.255.255.0
speed auto
full-duplex
ip route 0.0.0.0 0.0.0.0 192.168.225.1 track 123
ip route 0.0.0.0 0.0.0.0 192.168.99.1 254
no ip http server
no ip http secure-server
access-list 101 permit icmp any host 198.6.1.4 echo
route-map MY_LOCAL_POLICY permit 10
match ip address 101
set interface Null0
set ip next-hop 192.168.99.1
control-plane
line con 0
line aux 0
line vty 0 4
password 123456
login
end
LAB1#