beautypg.com

12 split horizon, 13 authentication key, 12 split horizon 10.3.13 authentication key – Siemens S223 User Manual

Page 370: Split horizon, Authentication key

background image

UMN:CLI User Manual

SURPASS hiD 6615 S223/S323 R1.5

370 A50010-Y3-C150-2-7619

To adjust the timers, use the following command.

Command Mode

Description

timers basic

UPDATE TIMEOUT

GARBAGE

Adjusts RIP network timers.

no timers basic

UPDATE TIME-

OUT GARBAGE

Router

Restores the default timers.

10.3.12 Split

Horizon

Normally, routers that are connected to broadcast type IP networks and that use distance-
vector routing protocols employ the split horizon mechanism to reduce the possibility of
routing loops. Split horizon blocks information about routes from being advertised by a
router out any interface from which that information originated. This behavior usually op-
timizes communications among multiple routers, particularly when links are broken. How-
ever, with non-broadcast networks, such as Frame Relay, situations can arise for which
this behavior is less than ideal. For these situations, you might want to disable split hori-
zon.

If the interface is configured with secondary IP address and split horizon is enabled, up-
dates might not be sourced by every secondary address. One routing update is sourced
per network number unless split horizon is disabled.

To enable or disable split horizon mechanism, use the following command in Interface
Configuration

mode.

Command Mode

Description

ip rip split-horizon

[poisoned]

Enables the split horizon mechanism.
poisoned: performs poisoned reverse.

no rip ip split-horizon

[poisoned]

Interface

Disables the split horizon mechanism.

10.3.13 Authentication

Key

RIP v1 does not support authentication. If you are sending and receiving RIP v2 packets,
you can enable RIP authentication on an interface. The key chain determines the set of
keys that can be used on the interface. If a key chain is not configured, plain text authen-
tication can be performed using string command.

The hiD 6615 S323 supports two modes of authentication on an interface for which RIP
authentication is enabled: plain text authentication and MD5 authentication. The default
authentication in every RIP v2 packet is plain text authentication.

Do not use plain text authentication in RIP packets for security purposes, because the
unencrypted authentication key is sent in every RIP v2 packet. Use plain text
authentication when security is not an issue, for example, to ensure that misconfigured
hosts do not participate in routing.

i

This manual is related to the following products: