Cisco Cisco IOS Software Release 12.3(11)T
Cisco Mobile Wireless Home Agent Release 2.0
Configuration Examples
97
Cisco IOS Release 12.3(11)T
OL-3235-04
VRF Configuration with HA redundancy
The following is a sample configuration on a Cisco 7200 HA with HA redundancy and VRF. The
following steps are required:
following steps are required:
Step 1
Configure normal HSRP and HA redundancy for the published HA IP address
Step 2
Rather than configuring IP addresses on the Loopback (or any other interface IP addresses for tunnel
end-point), configure them on the HSRP interface as a secondary standby IP address.
end-point), configure them on the HSRP interface as a secondary standby IP address.
Step 3
For ip mobile redundancy, add virtual network for VRF tunnel point subnet.
Step 4
Configure the VRF related commands.
Step 5
Because the binding update message from active to the standby HA contains the NAI, the standby is able
to create the binding using appropriate VRF using the domain of the NAI in the message.
to create the binding using appropriate VRF using the domain of the NAI in the message.
Active HA:
HA1#sh run
...
aaa new-model
!
!
aaa group server radius vrf-auth-grp1
server 9.15.100.1 auth-port 1645 acct-port 1646
!
aaa group server radius vrf-auth-grp2
server 10.76.86.8 auth-port 1645 acct-port 1646
!
aaa authentication ppp default local group radius
aaa authentication ppp vrf-auth-grp1 group vrf-auth-grp1
aaa authentication ppp vrf-auth-grp2 group vrf-auth-grp2
aaa authorization config-commands
aaa authorization ipmobile default group radius
aaa authorization network default group radius
aaa authorization network vrf-auth-grp1 group vrf-auth-grp1
aaa authorization network vrf-auth-grp2 group vrf-auth-grp2
aaa authorization configuration default group radius
aaa session-id common
ip subnet-zero
ip gratuitous-arps
!
!
ip cef
no ip domain lookup
!
!
ip vrf moip-vrf
rd 100:1
!
ip vrf moip-vrf1
rd 100:2
!
...
!
interface FastEthernet1/0
ip address 92.92.92.2 255.255.0.0
duplex auto
speed auto
no cdp enable