Courseiva
RedundancyCCNA 200-301

VRRP Group Not Forming Between Routers

Presenting Symptom

The VRRP group is not forming between two routers; both routers remain in the Initialize state and do not transition to Master or Backup.

Network Context

Two Cisco routers (R1 and R2) are configured for VRRP in a small branch office to provide gateway redundancy for VLAN 10. Both routers run IOS 15.9(3)M and are connected via a Layer 2 switch. The VRRP group ID is 10, and the virtual IP is 192.168.10.1.

Diagnostic Steps

1

Check VRRP status on both routers

show vrrp
FastEthernet0/0 - Group 10
  State is Initialize
  Virtual IP address is 192.168.10.1
  Priority 100
  Advertisement interval 1 sec
  Preemption enabled

If both routers show 'State is Initialize', VRRP is not forming. This indicates a failure to exchange VRRP advertisements, possibly due to Layer 2 connectivity issues or misconfiguration.

2

Verify VLAN and interface configuration

show running-config interface FastEthernet0/0
interface FastEthernet0/0
 ip address 192.168.10.2 255.255.255.0
 vrrp 10 ip 192.168.10.1
 vrrp 10 priority 100

Ensure both routers have the same VRRP group number and virtual IP. Also check that the interface is not shutdown and has an IP address in the same subnet.

3

Check Layer 2 connectivity between routers

ping 192.168.10.3 (other router's IP)
!!!!!

If ping fails, there is a Layer 2 issue (e.g., VLAN mismatch, port not in trunk, or access VLAN misconfiguration). VRRP requires IP connectivity between routers.

4

Examine VRRP packet exchange using debug

debug vrrp packets
VRRP: Group 10: Advertisement from 192.168.10.2 (on FastEthernet0/0)
VRRP: Group 10: Received advertisement with priority 100

If no debug output appears, VRRP packets are not being sent or received. This confirms a Layer 2 or IP connectivity problem. Stop debug with 'undebug all'.

Root Cause

The VRRP group is not forming because the two routers are in different VLANs or the switch ports connecting them are not configured correctly (e.g., one port is in access VLAN 10 and the other in access VLAN 20, or the trunk is missing VLAN 10). This prevents VRRP advertisements from reaching the peer.

Resolution

1. On the switch, configure both router-facing ports in the same VLAN (VLAN 10) or ensure the trunk allows VLAN 10. - For access ports: switchport mode access, switchport access vlan 10 - For trunk ports: switchport mode trunk, switchport trunk allowed vlan 10 2. Verify the router interfaces are in the same subnet and can ping each other. 3. No changes needed on the routers if VRRP configuration is correct.

Verification

Run 'show vrrp' on both routers. Expected output: FastEthernet0/0 - Group 10 State is Master (or Backup) Virtual IP address is 192.168.10.1 Priority 100 Advertisement interval 1 sec Preemption enabled Also verify ping between router IPs succeeds.

Prevention

1. Standardize VLAN assignments for router uplinks in the network design. 2. Use consistent VRRP configuration templates to avoid group number or IP mismatches. 3. Implement Layer 2 connectivity checks as part of the deployment process.

CCNA Exam Relevance

On the CCNA 200-301 exam, this scenario may appear as a troubleshooting question where you must identify why VRRP is not forming. The exam tests understanding that VRRP requires Layer 2 adjacency and IP connectivity. A common multiple-choice question might ask: 'Which issue prevents VRRP from forming?' with options like mismatched VRRP group numbers, different VLANs, or incorrect priority.

Exam Tips

1.

Remember that VRRP routers must be in the same broadcast domain (same VLAN) to exchange advertisements.

2.

The 'show vrrp' command is critical; if state is Initialize, check Layer 2 connectivity first.

3.

Be aware that VRRP uses multicast address 224.0.0.18; ensure switches forward this multicast if IGMP snooping is enabled.

Test Your CCNA Knowledge

Practice with scenario-based questions to prepare for the CCNA 200-301 exam.

Practice CCNA Questions