From: Frank B (frank@buff-net.com)
Date: Wed May 07 2003 - 06:37:44 GMT-3
Here's what I'm seeing...while the virtual-link shows "up" pay attention
to the last line of output below:
Rack03_r7#sh ip os virtual-links
Virtual Link OSPF_VL1 to router 5.5.5.5 is up
Run as demand circuit
DoNotAge LSA allowed.
Transit area 2, via interface Ethernet0, Cost of using 10
Transmit Delay is 1 sec, State POINT_TO_POINT,
Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
Hello due in 00:00:01
Adjacency State INIT (Hello suppressed)
...the virtual-link stays up while the adjacency stays in an INTIT
state. It remained in that state until I entered the following two
commands:
area 0 authentication message-digest
area 2 virtual-link 5.5.5.5 message-digest-key 1 md5 SECRET
Here's what I see now:
Rack03_r7#sh ip os virtual-links
Virtual Link OSPF_VL1 to router 5.5.5.5 is up
Run as demand circuit
DoNotAge LSA allowed.
Transit area 2, via interface Ethernet0, Cost of using 10
Transmit Delay is 1 sec, State POINT_TO_POINT,
Timer intervals configured, Hello 10, Dead 40, Wait 40, Retransmit 5
Hello due in 00:00:01
Adjacency State FULL (Hello suppressed)
Message digest authentication enabled
Youngest key id is 1
Much better wouldn't you say? Hope this helps...aloha, Frank
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
frank.yu@japan.bnpparibas.com
Sent: Tuesday, May 06, 2003 10:06 PM
To: huntl@webcentral.com.au
Cc: ohiohondo@columbus.rr.com; gitsyoung@yahoo.co.jp;
ccielab@groupstudy.com
Subject: RE: authentication of virtul-link
Hi,
I understand the concept of treating virtual link as part of Area0.
But
how can we explain the virtual link is up and runnig without
authentication
even if area0 does the authentication?
Thanks.
Frank
Internet
huntl@webcentral.com.au@groupstudy.com - 05/07/2003 03:52 PM
Please respond to huntl@webcentral.com.au
Sent by: nobody@groupstudy.com
To: Frank Yu, ohiohondo
cc: gitsyoung, ccielab
Subject: RE: authentication of virtul-link
Hello,
If your Area 0 is using authentication, then your Virtual LInk must be
authenticated as well... just treated the Virtual Link as an extension
of
Area 0.
Please correct me if I'm wrong ;)
Regards,
Hunt
-----Original Message-----
From: frank.yu@japan.bnpparibas.com
[mailto:frank.yu@japan.bnpparibas.com]
Sent: Wednesday, 7 May 2003 3:32 PM
To: ohiohondo@columbus.rr.com
Cc: gitsyoung@yahoo.co.jp; ccielab@groupstudy.com
Subject: RE: authentication of virtul-link
I remember we had this discussion before where comes a conclution that
virtual link authentication has nothing to do with area0 authentication.
Not sure if it is right or not.
Internet
ohiohondo@columbus.rr.com@groupstudy.com - 05/07/2003 12:52 PM
Please respond to ohiohondo@columbus.rr.com
Sent by: nobody@groupstudy.com
To: gitsyoung, ccielab
cc:
Subject: RE: authentication of virtul-link
You have to authenticate. I do not believe you have to use the same
level
of
authentication!!!
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Tom
Young
Sent: Tuesday, May 06, 2003 8:16 PM
To: ccielab@groupstudy.com
Subject: authentication of virtul-link
Somebody said if the area 0 of ospf using authentication,
you have to have the virtul-link also use the same
authentication so that it could come into area 0 , like
the command below
area 5 virtual authentication-key 1 cisco
(for the md5 authentication)
But I tired to use the command withOUT authentication
parameter, it also connected with area 0 ,WHY?
Thanks alot
This archive was generated by hypermail 2.1.4 : Mon Jun 02 2003 - 15:13:38 GMT-3