Re: Area 1 virtual-link authentication IPExpert 20-1

From: Chris Larson (clarson52@xxxxxxxxxxx)
Date: Sun Apr 21 2002 - 15:57:16 GMT-3

• Next message: hong tony: "FLSM has longer mask than VLSM Probl."
• Previous message: Krucker, Louis: "RE: Distance change of Eigrp"
• Maybe in reply to: Chris Larson: "Area 1 virtual-link authentication IPExpert 20-1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
P.S. After I added the virtual-link authentication that is. In other words I
added it to both ends like it should be, was still getting errors so I
restarted the ospf process and everything came back fine. I have had to do
reloads several time on my 2500's when things get piled on (and in this case
when there isn't much going on). I had to do it a couple times in my first
attempt as well (bri and something else). Just so as you know, you may have
it configured right. If your sure you do, then try a reload. I have wasted
much time in practice second guessing myself those times when the bugger
simply needed a reload.

----- Original Message -----
From: "Chris Larson" <clarson52@comcast.net>
To: <ccielab@groupstudy.com>
Sent: Sunday, April 21, 2002 12:14 PM
Subject: Re: Area 1 virtual-link authentication IPExpert 20-1

> Never mind. Took a hint from Ying Chang's post on the BGP stuff and did a
clear ip ospf process on both routers and everything is fine now!!
> When in doubt reload.
>
>
> ----- Original Message -----
> From: Chris Larson
> To: ccielab@groupstudy.com
> Sent: Sunday, April 21, 2002 12:00 PM
> Subject: Area 1 virtual-link authentication IPExpert 20-1
>
>
> I have a question on the virtual-link authentication command. I have
configured a virtual link with authentication to area 0 by stating area 0
authentication under the ospf process and ip ospf authentication-key cisco
under the interface. I am getting all routes from R8 on R7 but not in the
backbone, however I am not getting any authentication or adjency errors.
>
>
> CCO, states that not only do you put it on the interface but you must
also do a
> area 1 virtual-link 200.0.0.5 authentication-key cisco
>
> When I put it in the config to test the command I get errors on R5, when
I take it out I do not get errors. This is from IPexpert lab 20-1. Does
anyone know what the problem is???
>
> P.S. If IPExpert ppl are reading, it would be nice if your solutions
matched what you asked for in the tasks. Why are the labs always good but
the answer keys always lack an attention to detail. You asked for simple
authentication yet you have md5 in the solution. C'mon.
>
>
> hostname R8
> !
> !
> ip subnet-zero
> no ip finger
> no ip domain-lookup
> !
> !
> !
> !
> !
> interface Loopback0
> ip address 200.0.0.8 255.255.255.255
> no ip directed-broadcast
> !
> interface Ethernet0
> description Backbone #2
> ip address 150.50.4.8 255.255.255.0
> no ip directed-broadcast
> !
> interface Serial0
> description Connection to R7 INT S1/0 IP:150.50.5.68/27
> ip address 150.50.5.69 255.255.255.224
> no ip directed-broadcast
> ip ospf authentication-key cisco
> no ip mroute-cache
> no fair-queue
> !
> interface Serial1
> no ip address
> no ip directed-broadcast
> shutdown
> !
> interface TokenRing0
> description Ring 2
> ip address 150.50.3.8 255.255.255.0
> no ip directed-broadcast
> ring-speed 16
> !
> router ospf 1
> area 0 authentication
> area 1 virtual-link 200.0.0.5
> network 150.50.3.0 0.0.0.255 area 2
> network 150.50.5.64 0.0.0.31 area 1
> network 200.0.0.8 0.0.0.0 area 2
> !
> ip nat translation timeout never
> ip nat translation tcp-timeout never
> ip nat translation udp-timeout never
> ip nat translation finrst-timeout never
> ip nat translation syn-timeout never
> ip nat translation dns-timeout never
> ip nat translation icmp-timeout never
> ip classless
> !
> !
> !
> line con 0
> login
> transport input none
> line aux 0
> line vty 0 4
> password ipexpert
> login
> !
> end
>
>
>
> hostname r5
> !
> !
> !
> !
> !
> !
> ip subnet-zero
> no ip finger
> no ip domain-lookup
> !
> cns event-service server
> !
> !
> !
> !
> !
> interface Loopback0
> ip address 200.0.0.5 255.255.255.255
> !
> interface Ethernet0
> ip address 150.50.7.5 255.255.255.128
> media-type 10BaseT
> !
> interface Serial0
> ip address 150.50.100.5 255.255.255.224
> encapsulation frame-relay
> ip ospf authentication
> ip ospf authentication-key cisco
> ip ospf network non-broadcast
> ip ospf priority 0
> frame-relay map ip 150.50.100.2 501 broadcast
> frame-relay map ip 150.50.100.6 501 broadcast
> no frame-relay inverse-arp
> frame-relay lmi-type cisco
> frame-relay qos-autosense
> !
> interface Serial1
> no ip address
> shutdown
> !
> interface Serial2
> no ip address
> shutdown
> !
> interface Serial3
> no ip address
> shutdown
> !
> interface BRI0
> ip address 150.50.9.5 255.255.255.192
> shutdown
> !
> interface BRI1
> no ip address
> shutdown
> !
> interface BRI2
> no ip address
> shutdown
> !
> interface BRI3
> no ip address
> shutdown
> !
> router ospf 1
> log-adjacency-changes
> area 0 authentication
> area 1 virtual-link 200.0.0.8
> network 150.50.7.0 0.0.0.127 area 1
> network 150.50.9.0 0.0.0.63 area 0
> network 150.50.100.0 0.0.0.31 area 0
> network 200.0.0.5 0.0.0.0 area 0
> !
> ip classless
> ip http server
> !
> !
> !
> line con 0
> exec-timeout 0 0
> logging synchronous
> transport input none
> line aux 0
> line vty 0 4
> exec-timeout 0 0
> password ipexpert
> logging synchronous
> login
> !
> end

• Next message: hong tony: "FLSM has longer mask than VLSM Probl."
• Previous message: Krucker, Louis: "RE: Distance change of Eigrp"
• Maybe in reply to: Chris Larson: "Area 1 virtual-link authentication IPExpert 20-1"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:15 GMT-3