From: Praveen Bahethi (pbahethi@xxxxxxxxxxxxxxxxxxx)
Date: Wed Feb 13 2002 - 13:00:38 GMT-3
Gregg,
I not run into the problem you are having, but I when using keychains and
time you need to ensure everyone is in the same timezone. I got crushed by
this one on using CA for IPSEC, where the CA was in one timezone and the
routers were using GMT. Thus, I'd look at my time on the routers thinking
it was the same as the time on the CA, but they was an 8 hour difference.
I found about the timezone issue after getting the tunnels up 8 hours later.
Check your timezones and make sure everyone is in the same timezone, or take
out NTP commands and set time across the devices and make sure it works,
than re-institue the NTP server. You may have problems in receiving proper
time from NTP, though I doubt it.
V/R,
Praveen
----- Original Message -----
From: "Gregg Malcolm" <greggm@sbcglobal.net>
To: <ccielab@groupstudy.com>
Sent: Tuesday, February 12, 2002 9:10 PM
Subject: Auth Problem w/ RIP V2
> I'm experiencing a problem with MD5 auth and RIP v2. I've config'ed NTP
> between to 2 routers that I'm using to test RIP V2 auth. Both routers
have
> key chains and identical accept and send start and infinite end times.
Both
> also have 'ip rip auth mode MD5' and ip rip auth key-chain text'
configured.
> Debug of 'ip rip' returns "invalid authentication" message. Can't find
any
> additional debugs to shed more light on the problem.
>
> Has anyone experienced this ? Does it matter if the key chain is
config'ed
> before the int cmds?
>
> Any help appreciated.
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 13:46:21 GMT-3