From: Paul Bonner (paulb@xxxxxxxxxxxx)
Date: Thu Apr 29 1999 - 07:10:41 GMT-3
All,
I am trying to setup and OSPF virtual link to connect a non backbone
connected area to the backbone.
The virtual link is between Router 1 who has two links (one in area 2 and
the other in area 1), and Router 5 who also has two links (one in area 0 and
the other in area 2). So basically, I am trying to connect area 1 to the
backbone via this virtual link.
When you configure the link with no authentication it comes up fine and
routers in area 1 (not connected to the backbone) can see all the routes. I
am keen to add authentication to the network and add a 'message-digest key'
to the end of the Virtual link statement on both router 1 and router 5, I
also add the 'area 0 authentication message-digest' to each routers OSPF
statements. When I added the authentication the virtual link still comes up
but adjacencies are not formed within area 0, so I added authentication etc.
to all other routers in area 0 and it all works fine.
I then tried to have differnt 'key-id' and 'password' values on each end of
the virtual link to see if this password authentication was actually doing
anything at all. If the 'key-id' and 'password' values on each end of the
link differ, then the link still comes up! Even if you remove
authentication from one end of the link it still comes up and all routes can
be seen all over the network!!
Can anyone tell me if this is how it is meant to work, even when you issue a
SHOW IP OSPF VIRTUAL-LINKS command the display shows you that you are using
message-digest authentication even though it doesn't matter what you set the
passwords to.
Help!!!!!
Thanks
Paul Bonner
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:21:36 GMT-3