Specifying the Keychain for RSVP Neighbor Authentication
Perform this task to specify the keychain RSVP neighbor authentication.
You must configure a keychain first (see Cisco IOS XR System Security Configuration Guide for the Cisco CRS
Router).
SUMMARY STEPS
1.
configure
2.
rsvp neighbor IP-address authentication
3.
key-source key-chain key-chain-name
4.
Use the commit or end command.
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure
Example:
RP/0/RP0/CPU0:router# configure
Step 1
Enters neighbor authentication configuration mode. Use the rsvp
neighbor command to activate RSVP cryptographic authentication
for a neighbor.
rsvp neighbor IP-address authentication
Example:
RP/0/RP0/CPU0:router(config)# rsvp neighbor
Step 2
IP address
1.1.1.1 authentication
IP address of the neighbor. A single IP address for a specific
neighbor; usually one of the neighbor's physical or logical
(loopback) interfaces.
RP/0/RP0/CPU0:router(config-rsvp-nbor-auth)#
authentication
Configures the RSVP authentication parameters.
Specifies the source of the key information to authenticate RSVP
signaling messages.
key-source key-chain key-chain-name
Example:
RP/0/RP0/CPU0:router(config-rsvp-nbor-auth)#
Step 3
key-chain-name
Name of the keychain. The maximum number of characters
is 32.
key-source key-chain mpls-keys
commit—Saves the configuration changes and remains within the
configuration session.
Use the commit or end command.
Step 4
end—Prompts user to take one of these actions:
• Yes— Saves configuration changes and exits the configuration
session.
Cisco IOS XR MPLS Configuration Guide for the Cisco CRS Router, Release 5.1.x
142
Implementing RSVP for MPLS-TE and MPLS O-UNI
Configuring RSVP Neighbor Authentication
To Next Page
Loading...
Need help?
General
