AAA, NAC, Guest Access & BYOD

Does ClearPass implement VRRP for redundancy?

by on ‎04-08-2015 04:57 AM

Environment : Applicable for all Clearpass Servers running 6.1 and above versions where Virtual IP is configured

 

Clearpass doesn’t implement VRRP as the redundancy protocol instead we use UCARP(http://www.ucarp.org) which is a portable implementation of the CARP protocol for redundancy.

We don’t use multicast address for VIP although that’s the default with UCARP/VRRP instead we use Broadcast address ff:ff:ff:ff:ff:ff in our implementation. Note that the target IP address will still be multicast but the L2 address (target MAC) will be broadcast MAC.

UCARP uses the host's MAC address itself for the virtual IP addresses.

Please note that Wireshark decodes these packets as VRRP packets due to the same protocol number being shared by these 2 protocols which gives misleading information.

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.