Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

VRRP on Meraki devices

CarlT
Here to help
‎Aug 9 2023 8:28 AM
‎Aug 9 2023 8:28 AM

VRRP on Meraki devices

Hi All

Can anyone tell me how the VRRP fails over on a Meraki MX device.

 

1.If we have say 3 vlans configured on each Meraki, if one of the vlans goes down on one of them, does this trigger a failover? if not why can't they have it like a normal Cisco switch so you can have individual gateways active on different vlans?

 

2.What if say we have 2 physical interfaces configured on each Meraki, both in different networks, in what scenario would a failover occur? as long as the Meraki sees at least one heartbeat on 1 network, does the primary always stay active?

 

cheers

Labels:
0 Kudos
Subscribe
10 Replies 10
DarrenOC
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 8:42 AM
‎Aug 9 2023 8:42 AM

VRRP will only failover should the secondary not receive a response from the primary.  So in your scenario won’t failover if a single vlan fails

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Subscribe
In response to DarrenOC
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 1:16 PM
‎Aug 9 2023 1:16 PM

I'm not sure on this - but I think if VRRP fails on any VLAN it causes a failover - but I am not confident about this.

0 Kudos
Subscribe
In response to PhilipDAth
DarrenOC
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 1:39 PM
‎Aug 9 2023 1:39 PM

Surely not @PhilipDAth !  What if an Admin shut down/deleted a VLAN interface on an MX the devices wouldn’t reload?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
0 Kudos
Subscribe
In response to DarrenOC
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 1:45 PM
‎Aug 9 2023 1:45 PM

It would shut down on both in a warm spare pair.

 

A failover does not cause an MX reboot.  It is just a question of how is the VRRP master.  Whatever is the primary MX is the VRRP master for all VLANs.  So if it can not be the VRRP master for even one VLAN, a failover has to happen so that the other unit can take over the role for all VLANs.

0 Kudos
Subscribe
RaphaelL
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 8:48 AM
‎Aug 9 2023 8:48 AM

Just like Darren said : https://documentation.meraki.com/MX/Deployment_Guides/MX_Warm_Spare_-_High_Availability_Pair

 

LAN failover: The two appliances share health information over the network via the VRRP protocol. These VRRP heartbeats occur at layer two and are performed on all configured VLANs. If no advertisements reach the spare on any VLAN, it will trigger a failover.

Subscribe
GreenMan
Meraki Employee
Meraki Employee
‎Aug 9 2023 9:26 AM
‎Aug 9 2023 9:26 AM

I'm wondering what could cause a VLAN to fail?    (as opposed to a link or a device)

0 Kudos
Subscribe
In response to GreenMan
RaphaelL
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 9:30 AM
‎Aug 9 2023 9:30 AM

Let's say you have 2 MXs connected to a switch and someone remove that specific vlan on the allowed vlans on one of the trunks. I think that could be one case.

0 Kudos
Subscribe
In response to RaphaelL
GreenMan
Meraki Employee
Meraki Employee
‎Aug 9 2023 9:34 AM
‎Aug 9 2023 9:34 AM

OK but that would be a reconfiguration, not a failure (which is what such setups are designed to protect against).    In that example, VRRP packets would continue to be received via the other (allowed) VLANs and there'd be no failover.

Subscribe
In response to GreenMan
DarrenOC
Kind of a big deal
Kind of a big deal
‎Aug 9 2023 9:48 AM
‎Aug 9 2023 9:48 AM

@GreenMan , are you saying that Meraki devices aren’t Layer8 proof?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Subscribe
In response to DarrenOC
GreenMan
Meraki Employee
Meraki Employee
‎Aug 9 2023 10:07 AM
‎Aug 9 2023 10:07 AM

Well - we do try very hard, along those lines!   But it's a bit of a moving target...  😁

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.