From: Jaeheon Yoo (kghost@xxxxxxxxxxxx)
Date: Thu Feb 07 2002 - 11:22:05 GMT-3
Hi, Martin
In IS-IS, area-passwords are effective only within a single area, because area-
wide passwords regulate the exchange of L1 LSPs, CSNPs, PSNPs. But in your conf
igurations, R1 and R2 are in different areas.
(R1 is in area '47.001' and R2 is in area '47.002')
So this area-wide passwords have no effect.
If you want to regulate the exchange of L2 LSPs, CSNPs, PSNPs between these two
routers, you have to configure the same domain-password like this.
R1
router isis
net 47.0001.1111.1111.1111.00
domain-password cisco
<============================>
R2
router isis
net 47.0002.2222.2222.2222.00
domain-password cisco
Or if they are adjacent, you can configure the same L2 interface password for t
he authentication of L2 IIHs.
R1
interface ethernet 0
isis password cisco level-2
R2
interface ethernet0
isis password cisco level-2
(Routing TCP/IP, Vol 1, pp.668-670)
Hope this helps,
Jaeheon,
----- Original Message -----
From: "martin abelli" <jamescollia@yahoo.co.kr>
To: <ccielab@groupstudy.com>
Sent: Thursday, February 07, 2002 9:11 PM
Subject: ISIS passwords
>
> Has anyone notice that the password features in ISIS
> is broken? Meaning if you have the following....
>
> R1
> router isis
> net 47.0001.1111.1111.1111.00
> area-password cisco
> <============================>
> R2
> router isis
> net 47.0002.2222.2222.2222.00
> area-password sun
>
> Even with the passwords changed, once I clear the
> routing tables, the adjacencies still form.
>
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 13:46:14 GMT-3