From: Chris Larson (clarson52@xxxxxxxxxxx)
Date: Sun Apr 21 2002 - 13:00:34 GMT-3
I have a question on the virtual-link authentication command. I have configured
a virtual link with authentication to area 0 by stating area 0 authentication
under the ospf process and ip ospf authentication-key cisco under the interface
. I am getting all routes from R8 on R7 but not in the backbone, however I am n
ot getting any authentication or adjency errors.
CCO, states that not only do you put it on the interface but you must also do
a
area 1 virtual-link 200.0.0.5 authentication-key cisco
When I put it in the config to test the command I get errors on R5, when I take
it out I do not get errors. This is from IPexpert lab 20-1. Does anyone know w
hat the problem is???
P.S. If IPExpert ppl are reading, it would be nice if your solutions matched w
hat you asked for in the tasks. Why are the labs always good but the answer key
s always lack an attention to detail. You asked for simple authentication yet y
ou have md5 in the solution. C'mon.
hostname R8
!
!
ip subnet-zero
no ip finger
no ip domain-lookup
!
!
!
!
!
interface Loopback0
ip address 200.0.0.8 255.255.255.255
no ip directed-broadcast
!
interface Ethernet0
description Backbone #2
ip address 150.50.4.8 255.255.255.0
no ip directed-broadcast
!
interface Serial0
description Connection to R7 INT S1/0 IP:150.50.5.68/27
ip address 150.50.5.69 255.255.255.224
no ip directed-broadcast
ip ospf authentication-key cisco
no ip mroute-cache
no fair-queue
!
interface Serial1
no ip address
no ip directed-broadcast
shutdown
!
interface TokenRing0
description Ring 2
ip address 150.50.3.8 255.255.255.0
no ip directed-broadcast
ring-speed 16
!
router ospf 1
area 0 authentication
area 1 virtual-link 200.0.0.5
network 150.50.3.0 0.0.0.255 area 2
network 150.50.5.64 0.0.0.31 area 1
network 200.0.0.8 0.0.0.0 area 2
!
ip nat translation timeout never
ip nat translation tcp-timeout never
ip nat translation udp-timeout never
ip nat translation finrst-timeout never
ip nat translation syn-timeout never
ip nat translation dns-timeout never
ip nat translation icmp-timeout never
ip classless
!
!
!
line con 0
login
transport input none
line aux 0
line vty 0 4
password ipexpert
login
!
end
hostname r5
!
!
!
!
!
!
ip subnet-zero
no ip finger
no ip domain-lookup
!
cns event-service server
!
!
!
!
!
interface Loopback0
ip address 200.0.0.5 255.255.255.255
!
interface Ethernet0
ip address 150.50.7.5 255.255.255.128
media-type 10BaseT
!
interface Serial0
ip address 150.50.100.5 255.255.255.224
encapsulation frame-relay
ip ospf authentication
ip ospf authentication-key cisco
ip ospf network non-broadcast
ip ospf priority 0
frame-relay map ip 150.50.100.2 501 broadcast
frame-relay map ip 150.50.100.6 501 broadcast
no frame-relay inverse-arp
frame-relay lmi-type cisco
frame-relay qos-autosense
!
interface Serial1
no ip address
shutdown
!
interface Serial2
no ip address
shutdown
!
interface Serial3
no ip address
shutdown
!
interface BRI0
ip address 150.50.9.5 255.255.255.192
shutdown
!
interface BRI1
no ip address
shutdown
!
interface BRI2
no ip address
shutdown
!
interface BRI3
no ip address
shutdown
!
router ospf 1
log-adjacency-changes
area 0 authentication
area 1 virtual-link 200.0.0.8
network 150.50.7.0 0.0.0.127 area 1
network 150.50.9.0 0.0.0.63 area 0
network 150.50.100.0 0.0.0.31 area 0
network 200.0.0.5 0.0.0.0 area 0
!
ip classless
ip http server
!
!
!
line con 0
exec-timeout 0 0
logging synchronous
transport input none
line aux 0
line vty 0 4
exec-timeout 0 0
password ipexpert
logging synchronous
login
!
end
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:15 GMT-3