RE: OSPF Encrypted Authentication w/virtual links

From: Padhu (LFG) (padhu@xxxxxxxxxxxx)
Date: Fri Jun 08 2001 - 12:49:52 GMT-3

• Next message: Dean, Justin: "NSSA Labs"
• Previous message: John Huston: "Route Maps with EIGRP"
• Maybe in reply to: Luke: "OSPF Encrypted Authentication w/virtual links"
• Next in thread: Erick B.: "RE: OSPF Encrypted Authentication w/virtual links"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
I don't think you need authentication on the virtual link itself. However
you need area 0 authentication command on the router where the virtual link
is originating towards area 0.

Cheers,Padhu

-----Original Message-----
From: sanjay [mailto:ccienxtyear@hotmail.com]
Sent: Thursday, June 07, 2001 5:56 PM
To: Luke; Ccie (E-mail)
Subject: Re: OSPF Encrypted Authentication w/virtual links

As far as I know, the Virtual Link is part of AREA 0, since you have
authentication running on AREA 0 routers, you also need to implement
authentication on the Virtual link with the area 0 authentication. I
practiced on a similar lab couple of weeks ago and had to configure
authentication on the virtual link to get the routers to recieve routes.

sanjay

----- Original Message -----
From: "Luke" <luke.mendoza@home.com>
To: "Ccie (E-mail)" <ccielab@groupstudy.com>
Sent: Thursday, June 07, 2001 2:31 PM
Subject: OSPF Encrypted Authentication w/virtual links

> Ok here is the scenario:
>
>
>
> r1 --------------- r2 ----------------
> r3 -----------------r4 ---------------r5
> area 1 area 2 area 0 area 0
>
> So I have R1 and R2 in Area 1
> R2 and R3 in Area 2
> R3 and R4 in Area 0
> R4 and R5 in Area 0
>
>
> I configure virtual link for area 2 between R2 and R3.
>
> I also configure Area 0 Authentication MD5 for R3/R4/R5
>
> Router ospf 1
> area 0 authentication message-digest
>
> interface S.x
> ip ospf authentication message-digest
> ip ospf message-digest-key 1 md5 7 cisco
>
> that's basically the configs for R3/R4/R5. Ok this works
>
> I guess I remember seeing some post sometime ago about backbone routers
> (Area 0 Routers) with virtual links and Area 0 authentication requirements
> will also require authentication on the Virtual-links. So here is what I
> did...
>
> I hopped on R2 :
>
> router ospf 1
> area 0 authentication message-digest
> area 2 virtual-link 3x.3x.3x.3x message-digest-key 1 md5 7 cisco
>
>
> On R3
> area 2 virtual-link 2x.2x.2x.2x message-digest-key 1 md5 7 cisco
>
>
> This seems to work but I am not entirely sure that this is correct. Will
> someone please comment?
>
>
> Thanks,
>
> Luke
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Dean, Justin: "NSSA Labs"
• Previous message: John Huston: "Route Maps with EIGRP"
• Maybe in reply to: Luke: "OSPF Encrypted Authentication w/virtual links"
• Next in thread: Erick B.: "RE: OSPF Encrypted Authentication w/virtual links"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:20 GMT-3