From: Jon CCIE-study Account (cciestudy@xxxxxxxxxxxxxxx)
Date: Mon Oct 29 2001 - 18:10:26 GMT-3
Hi Eric
If you have tried to enable MD authentication on BOTH routers could you
provide us with the configurations and debugs from both routers from the
non-working example?
best regard,
Jon
----- Original Message -----
From: "Eric Sarraf" <esarraf@cisco.com>
To: <ccielab@groupstudy.com>
Sent: Monday, October 29, 2001 6:50 PM
Subject: Virtual Link Authentication
> I have enabled message-digest authentication on area 0. There is also
> virtual link between my two routers R4 and R5 residing on area 45 (R5
also
> resides on area 0). I have also enabled authentication on the virtual link
> . Things work fine with below configurations. However, if I replace "area
> 45 virtual-link 4.4.4.4 authentication" with "area 45 virtual-link 4.4.4.4
> authentication message digest" I get the following error on both routers:
>
> 1w1d: OSPF: Rcv pkt from 160.5.54.5, Ethernet0 : Mismatch Authentication
> Key - Message Digest Key 1
>
> Why can not I have "message-digest" on my viurtual link statement?
>
> Thanks, Eric
>
> R5 router:
>
> router ospf 1
> log-adjacency-changes
> area 0 authentication message-digest
> area 45 virtual-link 4.4.4.4 authentication
> area 45 virtual-link 4.4.4.4 message-digest-key 1 md5 cisco
> area 55 range 160.5.64.0 255.255.248.0
> redistribute connected subnets
> network 160.5.1.0 0.0.0.255 area 0
> network 160.5.53.0 0.0.0.255 area 5
> network 160.5.54.0 0.0.0.255 area 45
> network 160.5.64.0 0.0.7.255 area 55
> neighbor 160.5.1.1
> neighbor 160.5.1.3
>
>
> R4 router:
>
> router ospf 1
> area 45 virtual-link 160.5.68.1 authentication
> area 45 virtual-link 160.5.68.1 message-digest-key 1 md5 cisco
> redistribute connected subnets
> redistribute rip subnets
> network 150.100.1.5 0.0.0.0 area 4
> network 160.5.14.2 0.0.0.0 area 14
> network 160.5.54.0 0.0.0.255 area 45
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:28 GMT-3