From: Scott Morris (smorris@ipexpert.com)
Date: Sun Apr 22 2007 - 20:26:40 ART
With this configuration, you will run into a couple of different (but
common) issues causing you to lose points.
1. You have plain-text authentication under the routing process, which will
cover all interfaces in area 0. Your interface-based configuration though
will override this (as you show) with MD5 authentication.
2. You have defined a CLEAR TEXT password there, NOT an MD5 password. The
hard part about spotting this is that MD5 allows a NULL password to be used
(Key 0 as you see), so your peers will still come up, but you are not using
the CISCO password you would like to, and therefore you will end up losing
points.
It's good you are using that show command to verify things, but now you know
what key 0 is for and why it may not be a good thing to see that!
HTH,
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713, JNCIE
#153, CISSP, et al.
CCSI/JNCI-M/JNCI-J
IPexpert VP - Curriculum Development
IPexpert Sr. Technical Instructor
smorris@ipexpert.com
http://www.ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Jason Carpenter
Sent: Sunday, April 22, 2007 3:13 PM
To: ccielab@groupstudy.com
Subject: OSPF authentication
Will this result in OSPF authentication with a MD5 hash of password CISCO
router ospf 1
area 0 authentication
int s0/0
ip ospf authentication message-digest
ip ospf authentication-key CISCO
when I run sh ip ospf int s0/0
it says message-digest authentication enabled no key configured, using
default key id 0
as long as the question does not specify a key number, (for example key 1)
would this result in md5 authentication with the password CISCO?
Thanks
This archive was generated by hypermail 2.1.4 : Tue May 01 2007 - 08:28:37 ART