I asked this question a few weeks ago regarding simplified VRRP. Apparently, there is a bug going back to even ipso 3.7.1 and even in IPSO 4.2. Here is a summary:
create simplified vrrp -add a new ip to an interface (without defining a vlan) -add a virtual ip for that ip address to vrrp -at this point, ifconfig -a will display both VIPs for that interface -remove the second VIP from vrrp -delete the new ip address from the interface -now if you do ifconfig -a, there is no vrrp IP and mac listed for that interface at all I tested this with IP260, and was able to recreate it. If I reboot, vrrp IP and mac did not come back, even though the VRRP IP and mac are in the /config/active file . Custoerm has an IP560, and he says that it does not come back. He has to delete VRRP altogether and redo it. This does not happen with legacy vrrp - I tested this on the IP260. He is also concerned about the vrrp limitation described on p. 70 of release notes of 4.1 build 16, and p. 72 of build 19. According to this, if VRRP is deleted in voyager and the changed is saved, VRRP reappears following a reboot. This an be avoided by doing a 'save config' on command line. I tried this with legacy vrrp and it does not happen. Customer would like us to -check if we expect it to happen with legacy vrrp -confirm that it happens with simlified VRRP He also would like to know if there are any other issues with simplified VRRP in 4.1 build 16 and 19, other than those described in the release notes. Here is the latest update from Nokia: The reported issue in this case was replicated in my lab. PR58304 is rasied, the developer will look at the issue and advise the next steps. Thanks, David Wong So to give everyone an update, it is a bug. If you decide to use simplified VRRP, be careful with it. Legacy VRRP, as Gary Scott mentioned from his previous posts, is much more stable than simplified VRRP. I always knew that simplified vrrp is just too good to be true. Now, I learned it the hard way. cisco4ng --------------------------------- Need Mail bonding? Go to the Yahoo! Mail Q&A for great tips from Yahoo! Answers users. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
