From: Brian Dennis (bdennis@internetworkexpert.com)
Date: Fri Jul 08 2005 - 01:53:52 GMT-3
Peter,
You can read over this white paper on NTP Authentication to help
get a better understanding.
http://www.internetworkexpert.com/resources/ntp-authentication.htm
Brian Dennis, CCIE #2210 (R&S/ISP-Dial/Security)
bdennis@internetworkexpert.com
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Direct: 775-745-6404 (Outside the US and Canada)
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Teesa Peter
Sent: Thursday, July 07, 2005 7:19 AM
To: ccielab@groupstudy.com
Subject: NTP authenticaion
Hi,
R1 & R2 are connected through a point-to-point interface having ip
addresses 10.0.0.1 & 10.0.0.2 respectively. R2 is the ntp master.R1 is
synchronising with R2 and also I want to authenticate NTP.I configured
R2 as:
R2
!
ntp master 10
ntp trusted-key 1
ntp authenticate
ntp authentication-key 1
md5 ccie
!
R1
!
ntp server 10.0.0.2
ntp trusted-key 1
ntp authenticate
ntp
authentication-key 1 md5 cisco
!
Here the R1 is synchronising with R2 evenif
the key or password are different.So is it that here authentication is
not
working ?
The other thing is that if I change R1's ntp server command to
include the "key" ie
R1
!
ntp server 10.0.0.2 key 1
!
In this case R1 is
not synchronising.Here R1 will synchronise only if both keys and
passwords are
same.
So If I am asked to configure NTP authentication, need I add the "key"
keyword to my "ntp server" or " ntp peer " statement ?
Thanks,
Peter
This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:29 GMT-3