C
HAPTER
45
| IP Routing Commands
Open Shortest Path First (OSPFv2)
– 1066 –
DEFAULT SETTING
MD5 authentication is disabled.
COMMAND USAGE
â—† Before specifying MD5 authentication for an interface with the ip ospf
authentication command, configure the message-digest key-id and key
with this command.
â—† Normally, only one key is used per interface to generate authentication
information for outbound packets and to authenticate incoming
packets. Neighbor routers must use the same key identifier and key
value.
â—† When changing to a new key, the router will send multiple copies of all
protocol messages, one with the old key and another with the new key.
Once all the neighboring routers start sending protocol messages back
to this router with the new key, the router will stop using the old key.
This rollover process gives the network administrator time to update all
the routers on the network without affecting the network connectivity.
Once all the network routers have been updated with the new key, the
old key should be removed for security reasons.
EXAMPLE
This example sets a message-digest key identifier and password.
Console(config)#interface vlan 1
Console(config-if)#ip ospf message-digest-key 1 md5 aiebel
Console(config-if)#
RELATED COMMANDS
ip ospf authentication (1060)
ip ospf priority This command sets the router priority used when determining the
designated router (DR) and backup designated router (BDR) for an area.
Use the no form to restore the default value.
SYNTAX
ip ospf [ip-address] priority priority
no ip ospf priority [ip-address]
ip-address - This parameter can be used to indicate a specific IP
address connected to the current interface. If not specified, the
command applies to all networks connected to the current interface.
priority - Sets the interface priority for this router. (Range: 0-255)
COMMAND MODE
Interface Configuration (VLAN)
To Next Page
Loading...
Need help?
General
