Hi
I was just reading abit about VRRP and LMS. I have used this for years and it seems to be working quite well.
But i'm a bit puzzled over the LMS claim, that AP's open 2 tunnels. I know this is true if you do HA or have a cluster. You can easily see that AP's have a anchor and a standby anchor WLC in GUI, and you can verify this on CLI with crypto ipsec commands.
But if you setup LMS IP and backup LMS IP, there is no tunnel to the backup as far as i can see.
Roar
------------------------------
------------------------------
| ACMP | ACSP | ACCP | ACEP | ACNT |
-Just your regular airhead-
------------------------------
------------------------------
Original Message:
Sent: Apr 02, 2019 01:10 AM
From: Florian_Baaske
Subject: VRRP vs LMS
another important difference between VRRP and LMS backup LMS. If you use the VRRP IP and the controller being the VRRP master fails, the AP needs to bootstrap in order to connect to the new VRRP Master. which will result in clients being disconnected.
If you use LMS and Backup LMS, the AP already have two tunnels, one to the LMS, which is active and one to the Backup LMS, which is in standby mode.
If the controller, being the LMS for the AP, fails, the AP instantly switched over the Backup LMS using the standby tunnel. No disconnects or loss of clients.
From my point of view, this is the main difference in using VRRP or LMS, Backup LMS
Just my 2 cents