I'm trying to setup a redundant route link for our internal network using brocade layer 3 switches. I have setup up VRRP on both the green/blue and red/black networks. The reason for doing this is to simulate an active passive pairing.
I thought about it and noticed one issue. If the red connection fails VRRP will work and switch over to the black network but the green network doesn't know this fail over occurred and could be the default path for network traffic.
I'm not sure what things I could do to prevent this issue from occurring. Is there a better way to implement them being an active passive pair?
The simple diagram of how the network is setup.
EDIT 2013-11-05
All connected or reconnected
SSH@R1(config-vif-70)#show ip vrrp-extended bri
Inte- VRID Current Flags State Master IP Backup IP Virtual IP Short-
rface Priority Address Address Address Path-Fwd
------------------------------------------------------------------------------------------
v3 3 105 P2 Master Local Unknown 172.31.0.254
v70 70 105 P2 Master Local Unknown 10.64.1.53
SSH@R2(config-vif-3)#show ip vrrp-e bri
Inte- VRID Current Flags State Master IP Backup IP Virtual IP Short-
rface Priority Address Address Address Path-Fwd
------------------------------------------------------------------------------------------
v3 3 100 P2 Backup 172.31.0.1 Local 172.31.0.254
v70 70 100 P2 Backup 10.64.1.51 Local 10.64.1.53
Connection Broken at R1b(v3)
SSH@R1(config-vif-70)#show ip vrrp-extended bri
Inte- VRID Current Flags State Master IP Backup IP Virtual IP Short-
rface Priority Address Address Address Path-Fwd
------------------------------------------------------------------------------------------
v3 3 105 P2 Init Unknown Unknown 172.31.0.254
v70 70 95 P2 Backup 10.64.1.52 Local 10.64.1.53
SSH@R2(config-vif-3)#show ip vrrp-e bri
Inte- VRID Current Flags State Master IP Backup IP Virtual IP Short-
rface Priority Address Address Address Path-Fwd
------------------------------------------------------------------------------------------
v3 3 100 P2 Master Local Unknown 172.31.0.254
v70 70 100 P2 Master Local Unknown 10.64.1.53
Best Answer
This is the logical view of what you're trying to achieve:
Configure the router priorities for both VRRP 'a' and VRRP 'b' as follows:
The configure interface tracking as follows:
If interface R1b goes down, Router 1 will change its VRRP 'a' priority to 90. This priority is now less than the VRRP 'a' priority that Router 2 has, so it will preempt and take over mastership for VRRP 'a'.
In addition, because interface R1b has gone down, then the VRRP hello packets will fail across VLAN 'b'. This will be detected by Router 2 (after failing to receive a hello packet within the dead timer interval), at which point it will take over mastership for VRRP 'b'.
If interface R1a goes down, then in a similar fashion, Router 2 will take over mastership for both VRRP groups (Router 1 VRRP 'b' priority = 90, and the VRRP hello packets will fail across VLAN 'a').
If either interface R2a or R2b goes down, then Router 1 will continue to be master for both VRRP groups.
Note that the priority value I've chosen above are quite arbitrary -- you may want to choose different values. Also, if the VIP address of a particular VRRP group is the same as the interface address for one of the routers in that VRRP group, then that router will automatically take a priority of 255 (i.e. it will always be the master unless that interface goes down).
As a side note, to get the above logical architecture, you will need a physical architecture similar to the following:
You can read up on VRRP on Wikipedia here:
http://en.wikipedia.org/wiki/Virtual_Router_Redundancy_Protocol
Brocade's VRRP documentation is here:
http://www.brocade.com/support/Product_Manuals/ServerIron_SwitchRouterGuide/VRRP.7.2.html
Brocade also have some VRRP configuration examples here:
http://www.brocade.com/support/Product_Manuals/ServerIron_SwitchRouterGuide/VRRP.7.11.html
Hope this helps! :)