From: Jude Servi (jservi@cisco.com)
Date: Tue Dec 24 2002 - 20:35:34 GMT-3
Don't forget to add authentication to a virtual link if needed. Example
for md5 auth:
router ospf 1
area # virtual-link <neighbor ip addr> authentication message-digest
message-digest-key # <key>
Jude
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Robert Slaski
Sent: Saturday, December 21, 2002 11:16 AM
To: Manish Gupta
Cc: Lysyuk Andrew; ccielab@groupstudy.com
Subject: Re: Help me pls with OSPF authentication.
Manish Gupta wrote:
> I always prefer
>
> Under router ospf x
> area x authentication (plain or MD5)
>
> Under interface:
> ip opsf authetication <password> if plain
You meant 'ip ospf authentication-key' I think, but this does not answer
the Andrew's question.
There are two authentication types available in OSPF: per area and per
interface, if both are configured then per interface authentication
takes precedence. Both have plain-text and MD5 checksum variants.
Per area:
1. enable area authentication
(config-router)# area <area> authentication [message-digest]
2. setup keys (this should be done on each area interface)
(config-if)# ip ospf authentication-key <text> # for plain text
or
(config-if)# ip ospf message-digest-key <key_id> md5 0 <text> # for MD5
Per interface:
1. enable interface authentication
(config-if)# ip ospf authentication [message-digest | null]
2. setup keys (same as above)
mikrobi,
-- .
This archive was generated by hypermail 2.1.4 : Fri Jan 17 2003 - 17:21:52 GMT-3