Re: RIP MD5 Authentication

From: Ron (id353@singnet.com.sg)
Date: Thu Jun 05 2003 - 04:08:37 GMT-3

• Next message: ¼B³Õ¤¯: "RE: OSPF with secondary IP's"
• Previous message: Scott Morris: "RE: Documentation CD usage and influence to score"
• Maybe in reply to: Danny.Andaluz@triaton-na.com: "RIP MD5 Authentication"
• Next in thread: Danny.Andaluz@triaton-na.com: "RE: RIP MD5 Authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I do encountered this problem at times on my routers. Try deleting the previous key chain and configuring another with a simple password phase such as "123" on both end and try again.

From CCIE <ccie@nc.rr.com> on 4 Jun 2003:

> Try adding send lifetime and accept lifetime to the key. Make sure date
> &
> time is lower value than your router clock
>
> key chain ccie
> key 1
> key-string test
> accept-lifetime 00:00:00 Jan 1 1993 infinite
> send-lifetime 00:00:00 Jan 1 1993 infinite
>
>
> ----- Original Message -----
> From: <Danny.Andaluz@triaton-na.com>
> To: <ccielab@groupstudy.com>
> Sent: Wednesday, June 04, 2003 8:22 PM
> Subject: RIP MD5 Authentication
>
>
> > Hello, Group. I thought I learned something from my last post on
> EIGRP
> authentication, but apparently not. I checked for spaces and there are
> none. The key chain names on each router are the same as well as the
> string
> between the two. I still get the routes from R2 but R1 keeps telling me
> invalid authentication from 2. How can I get routes from 2 if the
> authentication is failing???? See the output of the debug.
> >
> > R2#debug ip rip event
> > RIP event debugging is on
> > R2#
> > 02:09:47: RIP: received v2 update from 1.1.1.2 on Tunnel1
> > 02:09:47: RIP: Update contains 8 routes
> > 02:09:47: RIP: ignored v2 packet from 1.1.1.2 (invalid authentication)
> > R2#
> >
> > R1
> >
> > key chain cisco
> > key 1
> > key-string cisco
> >
> > interface Tunnel1
> > ip unnumbered Serial0.1
> > ip rip authentication mode md5
> > ip rip authentication key-chain cisco
> > tunnel source Serial0.1
> > tunnel destination 1.1.1.2
> >
> > R2
> >
> > key chain cisco
> > key 1
> > key-string cisco
> > !
> > interface Tunnel0
> > ip unnumbered Serial0
> > ip rip authentication mode md5
> > ip rip authentication key-chain cisco
> > tunnel source Serial0
> > tunnel destination 1.1.1.1
> >
> >
> >
> >
> >
> >
> > Danny Andaluz, CCNP
> > Network Engineer
> > Triaton, North America
> > 908-541-6522

• Next message: ¼B³Õ¤¯: "RE: OSPF with secondary IP's"
• Previous message: Scott Morris: "RE: Documentation CD usage and influence to score"
• Maybe in reply to: Danny.Andaluz@triaton-na.com: "RIP MD5 Authentication"
• Next in thread: Danny.Andaluz@triaton-na.com: "RE: RIP MD5 Authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jul 04 2003 - 11:10:53 GMT-3