Hello all, I was doing some test with HSRP and I came across this specific question: When I configure the standby for authentication, but use different "keys/words" on the routers, HSRP still works (although I can see the BAD AUTHENTICATION messages). If I do a debug standby, I can see that both router still understand and accept the messages from each other. When I change the priority in of them to be the Active (both are using preempt), it also works. My question, is: is this expected? If so, what is the reason on having authentication??? Since I was suspecting of an IOS bug, I looked over the Cisco Bug Toolkit but couldn't find anything that matched. Here is what I have: cisco 4000 -----------------cross over ethernet --------------- cisco 4000 Both running 11.3(11a). Here is the config and some output from the debug standby: r2 CONFIG: interface Ethernet0 ip address 172.20.0.1 255.255.255.0 no ip redirects standby 1 priority 200 standby 1 preempt standby 1 authentication aaa standby 1 ip 172.20.0.3 r1 CONFIG: interface Ethernet0 ip address 172.20.0.2 255.255.255.0 no ip redirects no ip directed-broadcast media-type 10BaseT standby 1 priority 150 standby 1 preempt standby 1 authentication gui standby 1 ip 172.20.0.3 THE DEBUG FROM r2 WHEN I CHANGE THE CONFIG FROM PRIORITY 200 TO PRIORITY 1: 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Active pri 200 hel 3 hol 10 ip 172.20. 0.3 r2# 6d05h: %STANDBY-3-BADAUTH: Bad authentication from 172.20.0.2, remote state Stan dby 6d05h: SB1:Ethernet0 Hello in 172.20.0.2 Standby pri 150 hel 3 hol 10 ip 172.20. 0.3 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Active pri 200 hel 3 hol 10 ip 172.20. 0.3 6d05h: SB1:Ethernet0 Hello in 172.20.0.2 Standby pri 150 hel 3 hol 10 ip 172.20. 0.3 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Active pri 200 hel 3 hol 10 ip 172.20. 0.3conf t Enter configuration commands, one per line. End with CNTL/Z. r2(config)#int e0 r2(config-if)#standby 1 priority 1 r2(config-if)#exit r2(config)#exit 6d05h: SB1:Ethernet0 Hello in 172.20.0.2 Standby pri 150 hel 3 hol 10 ip 172.20. 0.3 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Active pri 1 hel 3 hol 10 ip 172.20.0. 3 6d05h: SB1:Ethernet0 Coup in 172.20.0.2 Standby pri 150 hel 3 hol 10 ip 172.20.0 .3 6d05h: %STANDBY-6-STATECHANGE: Standby: 1: Ethernet0 state Active -> Spea k 6d05h: SB1:Ethernet0 Resign out 172.20.0.1 Speak pri 1 hel 3 hol 10 ip 172.20.0. 3 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Speak pri 1 hel 3 hol 10 ip 172.20.0.3 6d05h: SB1:Ethernet0 Hello in 172.20.0.2 Active pri 150 hel 3 hol 10 ip 172.20.0 .3 r2# 6d05h: %SYS-5-CONFIG_I: Configured from console by console 6d05h: SB1:Ethernet0 Hello out 172.20.0.1 Speak pri 1 hel 3 hol 10 ip 172.20.0.3 6d05h: SB1:Ethernet0 Hello in 172.20.0.2 Active pri 150 hel 3 hol 10 ip 172.20.0 .3u all All possible debugging has been turned off r2# 6d05h: %STANDBY-6-STATECHANGE: Standby: 1: Ethernet0 state Speak -> Stan dby Thanks. _________________________________ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
