RE: OSPF MD5 - Rollover

From: Alsontra Daniels (alsontra@gmail.com)
Date: Fri Apr 22 2005 - 12:06:28 GMT-3

• Next message: Scott Morris: "RE: precedence int cbwfq"
• Previous message: Alsontra Daniels: "RE: OSPF MD5 - Rollover"
• Maybe in reply to: gladston@br.ibm.com: "OSPF MD5 - Rollover"
• Next in thread: gladston@br.ibm.com: "RE: OSPF MD5 - Rollover"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

George,

My thoughts exactly, I was hoping a more detailed post and a debug ospf adj
would demonstrate this.

Thanks,
Alsontra

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
George Cassels (gcassels)
Sent: Thursday, April 21, 2005 8:52 PM
To: gladston@br.ibm.com; ccielab@groupstudy.com
Subject: RE: OSPF MD5 - Rollover

Gladston,

     Because you are using non-broadcast with frame relay it would
require one of the routers to have a neighbor statement to establish an
adjacency (typically the hub). Also I don't know if it was cut off in
the paste but I don't see your map statement on the S0/0 interface on
R4? Also I don't understand why on R1 you have two map statements on s
0/0.14 mult interface going to two different subnets? OSPF should try
and use the youngest key that is similar between the two routers.

Regards,
George

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
gladston@br.ibm.com
Sent: Thursday, April 21, 2005 1:07 PM
To: ccielab@groupstudy.com
Subject: OSPF MD5 - Rollover

Rollover key works fine before reloading. After reloading R4 tries to
authenticate using key 1 and 2 but adjacency does not go up. If I remove
the second key, it establishes the adjacency.

If I configure neighbor statement on R1, adjacency goes up.
Network type is non-broadcast.

Have you seem this behavior?

R4
interface Serial0/0
 ip address 142.20.14.4 255.255.255.0
 ip pim sparse-dense-mode
 encapsulation frame-relay
 ip ospf message-digest-key 1 md5 cisco
 ip ospf message-digest-key 2 md5 ccie

R4
 router-id 142.20.4.1
 log-adjacency-changes
 area 112 authentication message-digest
 area 113 authentication message-digest
 redistribute connected subnets route-map connected->ospf network
142.20.4.0 0.0.0.255 area 112 network 142.20.14.0 0.0.0.255 area 112
network 142.20.45.4 0.0.0.3 area 113 neighbor 142.20.14.1

R1
router ospf 1
 router-id 142.20.1.1
 log-adjacency-changes
 area 0 authentication
 area 112 authentication message-digest
 redistribute rip subnets
 network 142.20.1.0 0.0.0.255 area 0
 network 142.20.14.0 0.0.0.255 area 112
 network 142.20.125.0 0.0.0.31 area 0

R1
interface Serial0/0.14 multipoint
 ip address 142.20.14.1 255.255.255.0
 ip pim sparse-dense-mode
 ip ospf message-digest-key 1 md5 cisco
 ip ospf priority 0
 ipv6 address 2001::1/64
 frame-relay map ip 142.20.1.4 104 broadcast frame-relay map ip
142.20.14.4 104 broadcast

Rack2R4#sh ver
Cisco Internetwork Operating System Software IOS (tm) C2600 Software
(C2600-J1S3-M), Version 12.2(15)T5

• Next message: Scott Morris: "RE: precedence int cbwfq"
• Previous message: Alsontra Daniels: "RE: OSPF MD5 - Rollover"
• Maybe in reply to: gladston@br.ibm.com: "OSPF MD5 - Rollover"
• Next in thread: gladston@br.ibm.com: "RE: OSPF MD5 - Rollover"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue May 03 2005 - 07:55:07 GMT-3