Re: RIP authenication

From: Dinesh Patel (jedidinesh@googlemail.com)
Date: Wed Mar 05 2008 - 14:43:22 ARST

• Next message: Vazquez, Jorge: "RE: Diagrams in the lab"
• Previous message: Nick Griffin: "Re: Dynamips Help required Please!!!!!!!!!"
• Maybe in reply to: Dinesh Patel: "RIP authenication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The key chain is always valid by default so I did not try this. the error
message indicates that the router was not expecting MD5 when it is
configured to do so... so could be an IOS issue.

Key-chain RIP:
    key 1 -- text "CISCO"
        accept lifetime (always valid) - (always valid) [valid now]
        send lifetime (always valid) - (always valid) [valid now]

On Wed, Mar 5, 2008 at 4:07 PM, Scott Morris <smorris@ipexpert.com> wrote:

> Why not try putting a send/accept lifetime into the key chain?
>
>
> Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713,
> JNCIE-M
> #153, JNCIS-ER, CISSP, et al.
> CCSI/JNCI-M/JNCI-ER
> VP - Technical Training - IPexpert, Inc.
> IPexpert Sr. Technical Instructor
>
> A Cisco Learning Partner - We Accept Learning Credits!
>
> smorris@ipexpert.com
>
>
>
> Telephone: +1.810.326.1444
> Fax: +1.810.454.0130
> http://www.ipexpert.com
>
>
>
>
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> Dinesh Patel
> Sent: Wednesday, March 05, 2008 10:56 AM
> To: Jason Madsen; ccielab@groupstudy.com
> Subject: Re: RIP authenication
>
> thanks everyone... I think it is a buggy ios.... 12.4(13a)
>
> ... I'll have to try a different IOS and check.
>
> in future, what I will do is shut the link. apply the config, so the order
> does not matter.. then it should work....
>
> cheers
> Dinesh
>
>
>
>
> On Wed, Mar 5, 2008 at 3:32 PM, Jason Madsen <madsen.jason@gmail.com>
> wrote:
>
> > that's how I always do it...just ensure that your key chain is called
> > "RIP" if you are using it in your "ip rip authentication key-chain RIP"
> > line.
> >
> > show ip protocols will show whether or not your link is authenticated.
> >
> > Jason
> >
> > On Wed, Mar 5, 2008 at 8:23 AM, Dinesh Patel
> > <jedidinesh@googlemail.com>
> > wrote:
> >
> > > Hi group
> > >
> > > I'm having problems trying to get rip to authenticate MD5 without
> > > problems...
> > >
> > > Is the correct order:
> > >
> > > 1) define key chain
> > > 2) ip rip authentication mode md5 on the interface followed by:
> > > 3) ip rip authentication key-chain RIP
> > >
> > > What I find is that I have to take off authentication and off both
> > > sides of the link, get it to work without authentication then apply
> > > the authentication. But you don't have access to the backbone
> > > routers in the lab... just wondering it could be a buggy ios.... or
> > > is there some hidden trick to it?
> > >
> > > Dinesh
> > >
> > > ____________________________________________________________________
> > > ___ Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Vazquez, Jorge: "RE: Diagrams in the lab"
• Previous message: Nick Griffin: "Re: Dynamips Help required Please!!!!!!!!!"
• Maybe in reply to: Dinesh Patel: "RIP authenication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Apr 01 2008 - 07:53:52 ART