+ Reply to Thread
Results 1 to 23 of 23

Thread: HSRP vs VRRP

  1. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #1

    Default HSRP vs VRRP

    HSRP vs VRRP

    Is there a significant difference between HSRP and VRRP? The seem to be almost the same to me. Am I missing something?
    Reply With Quote Quote  

  2. SS -->
  3. Cisco Moderator mikej412's Avatar
    Join Date
    May 2005
    Location
    Chicago
    Posts
    10,190

    Certifications
    CCNP CCIP CCSP CCVP CCDP CCDA CCNA CS-CIPSS CS-CIPTDS CS-CIPTOS CS-CIPCSS CS-CFWS CS-CVPNS CS-CISecS ISSP 4013 4011
    #2
    VRRP is "standards based" (IETF) while HSRP is Cisco proprietary. Similiar, but they do not interoperate.

    RFC 2281 - CISCO Hot Standby Router Protocol (HSRP)

    RFC 3768 - Virtual Router Redundancy Protocol (VRRP)
    Reply With Quote Quote  

  4. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #3
    Sheesh, you'd think I would catch on to something like that....

    Thanks Mike.
    Reply With Quote Quote  

  5. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #4
    From a configuration standpoint I think HSRP is a bit easier to work with.
    Reply With Quote Quote  

  6. Village Idiot dtlokee's Avatar
    Join Date
    Mar 2007
    Location
    NJ
    Posts
    2,389

    Certifications
    CCIE #19991 R+S, CCNA, CCNP, CCIP, CCVP, CCSP, CCSI, MCSE NT4.0, 2000, 2003, + Messaging and Security, MCDBA, MCSD, MCAD
    #5
    I like VRRP because you can use the same IP address that the interface already has as the virtual IP address where HSRP does not, you need to allocate an additional address. VRRP also already supports preemption (I know big deal, right?) where as HSRP needs it configured. Needing to cinfigure a tracked object instead of just specifying the interface to track is a bit more cumbersome though.
    Reply With Quote Quote  

  7. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #6
    Quote Originally Posted by dtlokee
    I like VRRP because you can use the same IP address that the interface already has as the virtual IP address where HSRP does not, you need to allocate an additional address. VRRP also already supports preemption (I know big deal, right?) where as HSRP needs it configured. Needing to cinfigure a tracked object instead of just specifying the interface to track is a bit more cumbersome though.

    Yeah I noticed in an example they had the physical interface IP as the virtual address. I was used to seeing HSRP so I was thinking there was a mistake. Cool deal. Keeps you from wasting an IP.
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Oct 2007
    Posts
    135

    Certifications
    CCNA, BCMSN, BSCI on the way
    #7
    well, there are some differences. e.g. they use different multicast mac and ip address, different default settings, different udp port, ... etc

    But the more important are these :

    1. In Vrrp all none-master routers in the group are in backup state. Whereas In HSRP, one router is active, on is standby and the rest rest are in listening state. this is if more than 3 routers are in the group.
    2. The most important, VRRP have no tracking on interfaces as HSRP.
    3. in vrrp, if a router uses virtual ip as an interface ip, this router becomes the active. If the priorities are default. In HSRP the highest interface address wins the election.


    This was just a short list, And i'm sure there are some more differences.
    Reply With Quote Quote  

  9. Village Idiot dtlokee's Avatar
    Join Date
    Mar 2007
    Location
    NJ
    Posts
    2,389

    Certifications
    CCIE #19991 R+S, CCNA, CCNP, CCIP, CCVP, CCSP, CCSI, MCSE NT4.0, 2000, 2003, + Messaging and Security, MCDBA, MCSD, MCAD
    #8
    Quote Originally Posted by CCIE_2011
    2. The most important, VRRP have no tracking on interfaces as HSRP.
    Not really true, you can create a tracked object then use that in the vrrp configuration.

    Code:
    track 10 interface FastEthernet0/1 line-protocol
    
    interface fa0/0
    vrrp 1 ip 10.10.10.1
    vrrp 1 track 10 decrement 50
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Oct 2007
    Posts
    135

    Certifications
    CCNA, BCMSN, BSCI on the way
    #9
    Quote Originally Posted by dtlokee
    Quote Originally Posted by CCIE_2011
    2. The most important, VRRP have no tracking on interfaces as HSRP.
    Not really true, you can create a tracked object then use that in the vrrp configuration.

    Code:
    track 10 interface FastEthernet0/1 line-protocol
    
    interface fa0/0
    vrrp 1 ip 10.10.10.1
    vrrp 1 track 10 decrement 50
    My book didn't tell me this .... Thanks for the new information. Plus the correction
    Reply With Quote Quote  

  11. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #10
    I actually like having a separate IP for HSRP but I've never had IP constraints so I'm sure I'm partially jaded by that.
    Reply With Quote Quote  

  12. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #11
    Quote Originally Posted by Paul Boz
    I actually like having a separate IP for HSRP but I've never had IP constraints so I'm sure I'm partially jaded by that.
    Heh. Try working for a multinational organization. We have several people who do NOTHING BUT keep track of and plan IP address assignments....
    Reply With Quote Quote  

  13. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #12
    I work for an ISP. Our IP assignments are pretty gruesome as well.
    Reply With Quote Quote  

  14. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #13
    A Top Tier Wireless Carrier here....
    Reply With Quote Quote  

  15. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #14
    I'm glad that we mutually understand each other's pain
    Reply With Quote Quote  

  16. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #15
    I knew I'd read an article about this at some point..

    http://tcpmag.com/qanda/article.asp?EditorialsID=306

    [edit]

    I apologize for the double post, I meant to edit my last one.
    Reply With Quote Quote  

  17. Senior Member
    Join Date
    Jun 2005
    Location
    NJ
    Posts
    635

    Certifications
    A+,N+,I-net+,S+ Subject Matter Expert, CCNP,DP,SP, OSWP, CISSP#30711,CRISC,OSWP,GSEC,GCIH
    #16
    hsrp cisco proprietary
    vrrp standards based
    Reply With Quote Quote  

  18. Senior Member
    Join Date
    Oct 2007
    Posts
    277

    Certifications
    Check the Sig
    #17
    Quote Originally Posted by cisco_trooper
    A Top Tier Wireless Carrier here....
    Telco's are know for their incompetence...

    I bet you the guys who track and assign IP's all day probably screw that up! haha
    Reply With Quote Quote  

  19. The Colosus of Clout Paul Boz's Avatar
    Join Date
    Oct 2006
    Location
    Baton Rouge, LA
    Posts
    2,607

    Certifications
    CCNP, CCIP, CCDP, CCDA, CCNA, CCNA Security, NSTISSI 4011, GSEC, GCFW, GCIH, GCIA
    #18
    Quote Originally Posted by Goldmember
    Quote Originally Posted by cisco_trooper
    A Top Tier Wireless Carrier here....
    Telco's are know for their incompetence...

    I bet you the guys who track and assign IP's all day probably screw that up! haha
    Talking out of your ass is more incompetent than any telco that I'm associated with.
    Reply With Quote Quote  

  20. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #19
    Quote Originally Posted by Paul Boz View Post
    Talking out of your ass is more incompetent than any telco that I'm associated with.
    Yeah, this is old, BUT...

    It's amazing to go back and look at some of your old posts and realize where you've been, how much you've learned, and how far you've come.
    Reply With Quote Quote  

  21. APA
    APA is offline
    Senior Member APA's Avatar
    Join Date
    Jun 2006
    Location
    Sydney, Australia
    Posts
    956

    Certifications
    CompTIA, Microsoft, Juniper & Cisco (Check Signature)
    #20
    Quote Originally Posted by Paul Boz View Post
    Talking out of your ass is more incompetent than any telco that I'm associated with.
    I was in major need of a laugh...... and you sir have now provided that!!!

    Gold!
    Reply With Quote Quote  

  22. Member
    Join Date
    Jul 2006
    Posts
    69

    Certifications
    CCNA, MCP 70-290, BSCI, BCMSN
    #21
    Quote Originally Posted by CCIE_2011 View Post
    My book didn't tell me this .... Thanks for the new information. Plus the correction
    For the BCMSN, every question that I have studied DID say that VRRP could NOT track interfaces. I knew that to be wrong because the IOS I was running on my 3550 did allow me to track an inteface using VRRP. However, every time I listed this an answer I scored it incorrectly, and this was the Cisco Press material.
    Reply With Quote Quote  

  23. Netlurker cisco_trooper's Avatar
    Join Date
    Aug 2007
    Posts
    1,420

    Certifications
    CCNP Security, ASA Specialist, Firewall Security Specialist, IOS Security Specialist, IPS Specialist, VPN Security Specialist
    #22
    Quote Originally Posted by Grigsby View Post
    For the BCMSN, every question that I have studied DID say that VRRP could NOT track interfaces. I knew that to be wrong because the IOS I was running on my 3550 did allow me to track an inteface using VRRP. However, every time I listed this an answer I scored it incorrectly, and this was the Cisco Press material.

    Look at the CCNP Prep Center. They have lab topologies and such in there for test preparation. They get pretty specific about the IOS versions so while you may know it to be possible on equipment you are used to working with, it is entirely possible that the IOS they list actually does NOT support the feature. Not saying that is the case here because I don't feel like looking up those IOS and going through the features, just saying we all need to keep that in mind when using devices that differ from what they recommend.
    Reply With Quote Quote  

  24. Junior Member
    Join Date
    Aug 2009
    Posts
    1
    #23

    Default Diff b/w HSRP & VRRP

    Hi All,

    I dont think there is a big difference b/e HSRP and VRRP. a small diff. is that in VRRP, a back up VRRP Router does not send advertisments.

    Regards
    Amit
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks