From: gladston@br.ibm.com
Date: Mon Apr 18 2005 - 17:34:12 GMT-3
Do the Area and Domain authentication still make sense after the new feature MD5 for ISIS authentication?
The explanation on DOC CD for this new feature does not talk about Domain or Area authentication.
If it does, how would it be Area authentication using MD5?
I just found examples explaining MD5 authentication for interface and routing process, and within the routing process there is no option for domain or area.
Would a question like this be possible?
"Configure area authentication using MD5"
New Feature
====================
quoted
IS-IS has five packet types: link state packet (LSP), LAN Hello, Serial Hello, CSNP, and PSNP. The IS-IS HMAC-MD5 authentication or the clear text password authentication can be applied to all five types of PDU. The authentication can be enabled on different IS-IS levels independently. The interface-related PDUs (LAN Hello, Serial Hello, CSNP, and PSNP) can be enabled with authentication on different interfaces, with different levels and different passwords.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s14/ftismd5.htm
====================
===================
quoted
When area authentication is configured, the password is carried in the L1 LSPs...
http://www.cisco.com/warp/public/97/isis_authent.html#areaauth
===================
This archive was generated by hypermail 2.1.4 : Tue May 03 2005 - 07:55:00 GMT-3