From: Scott Morris (swm@emanon.com)
Date: Fri Nov 11 2005 - 11:08:19 GMT-3
It will, but if you look at your "sh ip o v" you'll see that you are
authenticating with a NULL key. So the process is still working, but your
key isn't "cisco" or whatever the lab says it should be.
Often overlooked. :) But remember, in a virtual link, your VL is the
interface.
Scott
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Schulz, Dave
Sent: Friday, November 11, 2005 8:34 AM
To: Skinner, Stephen
Cc: ccielab@groupstudy.com
Subject: RE: Authentication in OSPF for area 0....virtual link
authentication???
Thanks, Stephen. So, this poses another question I thought about, but have
to lab this up....if you configure area 0 authentication, and don't add
virtual link authentication....will this operate correctly?
Dave Schulz,
Email: dschulz@dpsciences.com
-----Original Message-----
From: Skinner, Stephen [mailto:Stephen.Skinner@rbs.co.uk]
Sent: Friday, November 11, 2005 8:24 AM
To: Schulz, Dave
Cc: 'ccielab@groupstudy.com'
Subject: RE: Authentication in OSPF for area 0....virtual link
authentication???
hi ,
from what i have read , the VL itslef is area 0
i have seen a config where the virtual link was the only link in area 0 and
therefore created the area 0 itself .
IMHO
the link itself is treated as area 0 and not another area and with regards
authentication i would auth all VL`s as the same area 0 with the same config
great question ,
HTH
Stephen Skinner
> -----Original Message-----
> From: nobody@groupstudy.com [SMTP:nobody@groupstudy.com]
> Sent: 11 November 2005 13:09
> To: Steve Schoeneman
> Cc: ccielab@groupstudy.com
> Subject: RE: Authentication in OSPF for area 0....virtual link
> authentication???
>
> *** WARNING : This message originates from the Internet ***
>
> Thanks, Steve. I understand the virtual link authentication, but the
> real question here is .... if the question asks for area 0
> authentication link....then, should we also assume virtual link
> authentication (since a virtual link is the extension of the area 0.
> Or, is the virtual link considered a completely different area as it
> applies to authentication?
>
>
> Dave Schulz,
>
> Email: dschulz@dpsciences.com
>
>
> -----Original Message-----
> From: Steve Schoeneman [mailto:steve.schoeneman@gmail.com]
> Sent: Friday, November 11, 2005 7:20 AM
> To: Schulz, Dave
> Cc: ccielab@groupstudy.com
> Subject: Re: Authentication in OSPF for area 0....virtual link
> authentication???
>
> You can put the authentication right in the virtual-link statement:
>
> router ospf 10
> area 0 authentication message-digest
> area 3 authentication message-digest
> area 4 authentication message-digest
> area 4 virtual-link 10.6.6.6 message-digest-key 1 md5 cisco
>
> In this example from this router is ABR in 3 & 4 with no connection to
> area 0 except the virtual link and the lab requires authentication on
> all links.
>
> Steve
>
> On 11/11/05, Schulz, Dave <DSchulz@dpsciences.com> wrote:
> > I was thinking about all the ways that the lab could possibly ask
for
> > authentication in OSPF, and a thought came to mind....what if, they
> ask to
> > perform area 0 authentication, and, you happen do have a virtual
link.
> Would
> > you also put authentication on the virtual link, like you would on a
> tunnel
> > that is part of area 0. Technically, you could call the virtual
link
> an
> > "extension of area 0".
> >
> > Dave
> >
> >
>
This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:06 GMT-3