How to configure HSRP in Cisco IOS Routers

Posted on Mar 25, 2008 under Cisco | 14 Comments

Tags:active-standby Cisco hsrp ios redundancy router virtual-ip

HSRP stands for Hot Standy Routing Protocol which provides Automatic Router backup when an active router in the group fails. HSRP allows building resiliency in the network gateways wherein should an Active Router fail in a HSRP group, the standby router assumes the role of the active router and continue routing packets.

HSRP works by sending multicast "Hello" messages (default: every 3 secs). If the Standby router do not receive any Hello packets from the active router for a preset time (default 10secs) then it assumes the active router is down and becomes the active router. Also, if we are tracking an interface and if the tracked interface is down, the Active Router reduces its priority so a Standby Router can assume to role of Primary Router.

A realtime example would be access to a service providers servers at a remote location. Lets say there are two distinct routes to the same server(s), each through individual routers. The clients on the internal network segment are configured to send the traffic through a gateway. The gateway being the HSRP Address. Then the Server is accessible through one service provider always (based on the active router). However, in a disaster situation when the active router goes down, the standby router assumes the active router role and continues to serve connection to the remote servers but using the other service provider. This way routing redundancy is provided to a remote resource.

HSRP Config

To setup HSRP on a pair of routers,

Router 1:

From the Interface Configuration Mode add the IP Address of the Interface

hsrp-router1#conf t

hsrp-router1(config)# int fa0/0

hsrp-router1(config-if)# ip address 192.168.0.2 255.255.255.0

Set the Virtual IP Address

Sets the Virtual IP Address for the interface where "1" is the HSRP group and "92.168.0.1" is the Virtual IP for the HSRP group.

hsrp-router1(config-if)# standby 1 ip 192.168.0.1

Enable Preempt

This is required to make the router from being a Standby Router to an Active Router when it finds the Active Router is down or if it has become the higher priority router in the group

hsrp-router1(config-if)# standby 1 preempt

Set Router Priority

The default priority is "100". We set here as "110" to make the Router 1 as active.

hsrp-router1(config-if)# standby 1 priority 110

Set Authentication String

This is an optional plain text 8 character string that can be used in the multicast "hello" packets to authenticate the HSRP group.

hsrp-router1(config-if)# standby 1 authentication LocalLAN

Set Timers

Sets the time period between the "hello" packets and the hold time before assuming an active router is down. Default is 3seconds and 10 seconds respectively.

hsrp-router1(config-if)# standby 1 timers 5 15

Track Interface

If you track interface to check link status then the following command will track an interface and when the tracked link is down, the active router will mark its priority low so as to allow a Standby router to take over.

hsrp-router1(config-if)# standby 1 track se0/0

Repeat the procedure altering the IP Address of the Local interface and the priority and the tracked interface.

Router 2:

hsrp-router2#conf t

hsrp-router2(config)# int fa0/0

hsrp-router2(config-if)# ip address 192.168.0.3 255.255.255.0

hsrp-router2(config-if)# standby 1 ip 192.168.0.1

hsrp-router2(config-if)# standby 1 preempt

hsrp-router2(config-if)# standby 1 priority 100

hsrp-router2(config-if)# standby 1 authentication LocalLAN

hsrp-router2(config-if)# standby 1 timers 5 15

hsrp-router2(config-if)# standby 1 track se0/0

Thats it. HSRP configuration is complete. You may test the connectivity to a remote route and see for yourself the redudancy in place.

Unable to delete Stale/Obsolete statc routes in Cisco IOS (Jul 03, 2008)
How to create VLAN Interfaces for InterVLAN Routing in Cisco IOS (Jul 01, 2008)
High CPU usage when SNMP is enabled in Cisco Routers (Jun 19, 2008)
Configure MD5 encrypted passwords for users on Cisco IOS (May 20, 2008)
Enable/Configure DHCP Snooping in Cisco Catalyst Switches (IOS) (May 15, 2008)

14 Comments so far »

by Nawazish Khan, on August 28 2008 @ 9:00 am

I have checked this config it works fine, But i dont understand the user of track command. As without the track command the goal is achieved.

If really the track command is required than pls revert with explanation on my mail address.

Thanks for the information.
by admin, on August 28 2008 @ 3:04 pm

The tracker can help when the tracked interface go down to trigger an HSRP failover. Ideal in instances where you have multiple external interfaces connecting to an external network. here while u HSRP the FA interfaces, u r triggering a failover should ur primary serial interface goes down
by srinivas, on September 6 2008 @ 10:41 am

Hi
please give me a example for ip track
by Ciscozine, on November 18 2008 @ 5:32 am

The Hot Standby Router Protocol (HSRP) is a Cisco proprietary first-hop redundancy protocol (FHRP) designed to allow for transparent fail-over of the first-hop IP router, and has been described in detail in RFC 2281.

http://www.ciscozine.com/2008/10/29/implementing-high-availability-with-hsrp/
by Ciscozine, on November 18 2008 @ 5:33 am

For srinivas:
an example of tracking interface is present on http://www.ciscozine.com/2008/11/01/how-to-optimize-hsrp/
by sriman, on April 10 2009 @ 6:17 am

thank u for ur detail example of hsrp.
by Mohamed, on May 16 2009 @ 4:08 am

Hi,
Fantastic explaination of HSRP, I didn’t understand in my lecture or even in notes but I got it here.
Many Thanks
by Gagan Garg, on May 17 2009 @ 5:08 am

this configuration fails in case you are having ethernet link because ethernet port never goes down whenever you link is down due to lastmile problem. So traffic will never shift to standby router. To avoid this we can use track default route command. So what ever the type of link (Serial, ethernet) you are using, traffic will shift to standby router.

track 0.0.0.0 0.0.0.0
by Ade Ajibade, on June 2 2009 @ 6:28 am

What is the track default route command? what if my default route is on the LAN interface and not on the WAN/SERIAL/ETHERNET port as described here?
by Ryan Vrbas, on November 27 2009 @ 12:12 am

I have implemented HSRP and it works great!! I have tested it and when the active router goes down, the standby kicks in with no problems. But I noticed that when the standby router goes down, how come all data stops? Has anyone else encountered this problem and if so, is this issue a configuration mishap?
by Vincent, on December 3 2009 @ 4:38 am

How does the hold timer work? In case the active router1 has been reset successfully, will it return to be the active one? If yes, how long will this revertive time take?
Does it work similar in case of active router1 port down/up?
Thanks!
by Otakoya Oluwatosin, on February 16 2010 @ 12:29 pm

Hi, I tried the steps and got stuck at configuring ip address on my LAN interface fa 0/1/0. The router gave me an error message “IP address may not be configured on L2 links”. What do I do? Please help.
by Mishal, on March 3 2010 @ 5:20 am

configure gig0/1/0 it will accept IP.

all the best.
by rajendra, on March 3 2010 @ 2:44 pm

Hi Folks
I have the below scenario.

A.I have two routers at remote office forming tunnels to two routers at head office.(remote1 to HO1 and remote2 to HO2 respectively).

B.Remote 1 router forms GRE tunnels and remote 2 router forms IPsec tunnel.

If I configure HSRP between them and track tunnel interface on remote 1(which I want to be primary) will it work smooth?
Awaiting replies.