From: Volkov, Dmitry (Toronto - BCE) (dmitry_volkov@ca.ml.com)
Date: Mon Sep 09 2002 - 17:33:30 GMT-3
Hello,
I have to subj fo clarificationj:
A) If the Lab requirements: "Configure strongest authent for Area 0"
and there are virt links exist in design.
We MUST configure authentication for virtual links as well, because Virt
links are considered to be as part of Area 0.
The following must be done under OSPF process on the routers where virt
links terminated :
1) "area 0 authentication message-digest"
OR
2)
"area 1 virtual-link a.b.c.d authentication message-digest"
command:
" area 1 virtual-link a.b.c.d message-digest-key 1 md5 ccie" can be added in
both cases,
if it's not added - OSPF will still work but without authentication, we
will get in this case
Message digest authentication enabled
No key configured, using default key id 0
B) If the Lab requirements: Don't use ospf neigbors command and we have FR
cloud as one subnet, we have two choices using multipoint subs ot physical
int:
1) to use "ip ospf network point-to-multipoint" - drawback - we get /32
routes
OR
2) to use "ip ospf network broadcast" - drawback - we have to put "ip ospf
priority 0" under interfaces/subint on spokes to force HUB to be DR.
Please add something or disprove if i'm wrong.
Thank You,
Dmitry
This archive was generated by hypermail 2.1.4 : Mon Oct 07 2002 - 07:43:47 GMT-3