Manualshelf

F3215-HP Load Balancing Module High Availability Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
11121314151617181920
15
therefore the packet TTL value will not be changed. When the master of a VRRP group advertises VRRP
packets, it sets the packet TTL to 255. After you configure to check the VRRP packet TTL. When the
backups of the VRRP group receive VRRP packets, they check the packet TTL and drop the VRRP packets
whose TTL is smaller than 255 to prevent attacks from other network segments.
Because devices from different vendors might implement VRRP in a different way, when the device is
interoperating with devices of other vendors, VRRP packet TTL check might result in dropping packets that
should not be dropped. In this situation, use the vrrp un-check ttl command to disable TTL check on VRRP
packets.
Examples
# Disable TTL check on VRRP packets.
<Sysname> system-view
[Sysname] interface gigabitethernet0/1
[Sysname-GigabitEthernet0/1] vrrp un-check ttl
vrrp vrid authentication-mode
Use vrrp vrid authentication-mode to configure authentication mode and authentication key for a VRRP
group to send and receive VRRP packets.
Use undo vrrp vrid authentication-mode to restore the default.
Syntax
vrrp vrid virtual-router-id authentication-mode { md5 | simple } [ cipher ] key
undo vrrp vrid virtual-router-id authentication-mode
Default
Authentication is disabled.
Views
Interface view
Default command level
2: System level
Parameters
virtual-router-id: VRRP group number, which ranges from 1 to 255.
md5: Specifies the MD5 authentication mode.
simple: Specifies the simple authentication mode.
cipher: Sets a ciphertext authentication key.
key: Sets the authentication key. This argument is case sensitive.
When md5 authentication applies, it must be a plaintext string of 1 to 8 characters or a ciphertext
string of 24 characters if the cipher keyword is not specified, or a ciphertext string of 1 to 41
characters if the cipher keyword is specified.
When simple authentication applies, it must be a plaintext string of 1 to 8 characters if the cipher
keyword is not specified, or a ciphertext string of 1 to 41 characters if the cipher keyword is
specified.
Usage guidelines
For secrecy, all keys, including keys configured in plain text, are saved in cipher text.