9 configuring rip route distribute filters, 10 ripv2 authentication (single key) – CANOGA PERKINS 9175 Configuration Guide User Manual
Page 96
CanogaOS Configuration Guide
16-6
16.9 Configuring RIP Route Distribute Filters
A RIP distribute list allows you to permit or deny learning or advertising of specific routes.
A distribute list consists of the following parameters:
• An ACL or a prefix list that filter the routes.
• The
direction:
o
In: filter applies to learned routes.
o
Out: filter applies to advertised routes
• The interface that the filer applies (optional).
To configure the distribute filter, use the following command:
DUT# configure terminal
Enter the Configure mode.
DUT(config)# router rip
Enter the RIP routing process.
DUT(config-router)# distribute-list prefix 1
out
The prefix list 1 will apply to filter all advertised routes.
Validation Commands
show running-config, show ip protocols rip
16.10 RIPv2 authentication (single key)
This RIP implementation provides the choice of configuring authentication for a single
key or for multiple keys. This example illustrates authentication of the routing information
exchange process for RIP using a single key. Routers R1 and R2 are running RIP and
exchange routing updates. To configure single key authentication on R1, specify an
interface and then define a key or password for that interface. Next, specify an
authentication mode. Any receiving RIP packet on this specified interface should have
the same string as password. For an exchange of updates between R1 and R2, define
the same password and authentication mode on R2.
Figure 16-4: RIPv2
R1
DUT# configure terminal
Enter the Configure mode.
DUT(config)# router rip
Enter the RIP routing process.
DUT(config-router)# network 10.10.11.0/24
Associate network 10.10.11.0/24 with the RIP process.
DUT(config-router)# redistribute connected
Enable redistributing from connected routes.
DUT(config-router)# exit
Quit the Router mode and return to the Configure mode.
DUT(config)# interface eth-0-2
Specify the interface (eth-0-2) for authentication.
DUT(config-if)# ip rip authentication string
Auth1
Specify the authentication string (Auth1) for this interface.