From: Jonathan Hays (nomad@gfoyle.org)
Date: Mon Dec 15 2003 - 13:38:10 GMT-3
you wrote:
Hi All
I having a few problems with eigrp authentication. Routers R7 and R8
are connected via serial. I have tested layer 1-3 connectivity which
is OK. eigrp is forming neighbors ok when authentication is not
configured. OSPF is also running and is working OK with adj being
formed etc. The relevent portion of the config are below:
The debug from R7 is as follows:
*Mar 1 00:28:21.577: EIGRP: Serial0/1: ignored packet from 150.50.5.69,
opcode
= 5 (missing authentication)
R8
interface Serial0
ip address 150.50.5.69 255.255.255.224
ip authentication mode eigrp 1 md5
ip authentication key-chain eigrp 1 ccie
no fair-queue
router eigrp 1
network 150.50.4.0 0.0.0.255
network 150.50.5.64 0.0.0.31
no auto-summary
no eigrp log-neighbor-changes
R7
interface Serial0/1
ip address 150.50.5.68 255.255.255.224
ip authentication mode eigrp 1 md5
ip authentication key-chain eigrp 1 ccie
ip summary-address eigrp 1 172.16.0.0 255.255.252.0 5
clockrate 64000
router eigrp 1
network 150.50.5.64 0.0.0.31
network 150.50.7.0 0.0.0.127
network 172.16.0.0
no auto-summary
thanks in advance
Mark
= = =
I don't see the configuration for the key chain . . .
key chain EIGRP-KEY
key 1
key-string cisco
Make sure the key-string is identical on both ends. A common mistake
(for those unfamiliar with the syntax) is to add a space and '?' when
configuring the key-string. Then the first instance has an extra space
at the end of the string.
HTH
This archive was generated by hypermail 2.1.4 : Sat Jan 03 2004 - 08:25:41 GMT-3