RE: OSPF Authentication on Virtual Link

From: Brian Dennis (bdennis@internetworkexpert.com)
Date: Sun Nov 12 2006 - 23:58:05 ART

• Next message: Lab Rat #109385382: "RE: ICMP/Traceroute Question"
• Previous message: John Jones: "Re: How To Run Cisco IOS On Your PC (Dynamips Router Emulator)"
• Maybe in reply to: Emil Patel: "OSPF Authentication on Virtual Link"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

You don't have to use a password for the virtual link just because other
interfaces in area 0 or the transit area are being authenticated. Also
the virtual-link doesn't have any awareness of the transit area's
authentication or lack of authentication. If you want to authentication
the virtual link, assuming authentication has been enabled, you would
use the same password or key/password combination as the other side of
the virtual link.

Lastly the passwords aren't associated with an area. Passwords are
associated with a network segment.

HTH,
 
Brian Dennis, CCIE #2210 (R&S/ISP-Dial/Security)
bdennis@internetworkexpert.com
 
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Direct: 775-745-6404 (Outside the US and Canada)

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Emil Patel
Sent: Sunday, November 12, 2006 6:00 PM
To: 'Emil Patel'; ccielab@groupstudy.com
Subject: RE: OSPF Authentication on Virtual Link

I meant following for Virtual Link:

Area 0 virtual link 1.1.1.1 authentication-key cisco

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Emil
Patel
Sent: Sunday, November 12, 2006 7:52 PM
To: ccielab@groupstudy.com
Subject: OSPF Authentication on Virtual Link

I have a question about authentication on Virtual Link:

The FR cloud - Hub and Spoke: R1 (s0/0), R2 (s0/0)and R3(s0/0). R1
being
hub.

FR Cloud is in area 1

R1( S0/1)has its serial connected via p2p frame-relay circuit to r4
(s0/0).

R1 and R4 are in area 0

R3 and Sw1 are in area 3

The virtual-link is created with area 1 as transit area between r3 and
r1.

Authentication:

 Area 1 - authentication clear text with pw cisco

Area 0 - authenticated using md5 with pw cisco

Router osp 1

Area 0 authentication message digest

Area 1 authentication

The question is for the Virtual Link: Since the Virtual interface is in
considered an area 0 interface after the virtual link is up, does it
needs
to be configured with area 0 password or area 1 password?

Area 1 virtual link 1.1.1.1 message-digest-key 1 md5 cisco

Or

Area1 virtual link 1.1.1.1 authentication-key cisco

Thank you,

Emil

• Next message: Lab Rat #109385382: "RE: ICMP/Traceroute Question"
• Previous message: John Jones: "Re: How To Run Cisco IOS On Your PC (Dynamips Router Emulator)"
• Maybe in reply to: Emil Patel: "OSPF Authentication on Virtual Link"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:46 ART