beautypg.com

Brocade TurboIron 24X Series Configuration Guide User Manual

Page 710

background image

676

Brocade TurboIron 24X Series Configuration Guide

53-1003053-01

Basic configuration tasks

Encryption example
The following commands configure a BGP4 neighbor and a peer group, and specify MD5
authentication strings (passwords) for authenticating packets exchanged with the neighbor or peer
group.

Here is how the commands appear when you display the BGP4 configuration commands.

Notice that the software has converted the commands that specify an authentication string into
the new syntax (described below), and has encrypted display of the authentication strings.

Command syntax
Since the default behavior does not affect the BGP4 configuration itself but does encrypt display of
the authentication string, the CLI does not list the encryption options.

Syntax: [no] neighbor | password [0 | 1]

The | parameter indicates whether you are configuring an individual
neighbor or a peer group. If you specify a neighbor IP address, you are configuring that individual
neighbor. If you specify a peer group name, you are configuring a peer group.

The password parameter specifies an MD5 authentication string for securing sessions
between the Layer 3 Switch and the neighbor. You can enter a string up to 80 characters long. The
string can contain any alphanumeric characters, but the first character cannot be a number. If the
password contains a number, do not enter a space following the number.

The 0 | 1 parameter is the encryption option, which you can omit (the default) or which can be one
of the following:

0 – Disables encryption for the authentication string you specify with the command. The
password or string is shown as clear text in the output of commands that display neighbor or
peer group configuration information.

1 – Assumes that the authentication string you enter is the encrypted form, and decrypts the
value before using it.

NOTE

If you want the software to assume that the value you enter is the clear-text form, and to encrypt
display of that form, do not enter 0 or 1. Instead, omit the encryption option and allow the software
to use the default behavior.

If you specify encryption option 1, the software assumes that you are entering the encrypted form

TurboIron(config-bgp-router)#local-as 2

TurboIron(config-bgp-router)#neighbor xyz peer-group

TurboIron(config-bgp-router)#neighbor xyz password abc

TurboIron(config-bgp-router)#neighbor 10.10.200.102 peer-group xyz

TurboIron(config-bgp-router)#neighbor 10.10.200.102 password test

TurboIron#show ip bgp config

Current BGP configuration:

router bgp

local-as 2

neighbor xyz peer-group

neighbor xyz password 1 $!2d

neighbor 10.10.200.102 peer-group xyz

neighbor 10.10.200.102 remote-as 1

neighbor 10.10.200.102 password 1 $on-o

See also other documents in the category Brocade Computer Accessories: