15 ospf commands, 1 area authentication – CANOGA PERKINS 9175 Command Reference User Manual

CanogaOS Command Reference

15-1

15 OSPF

Commands

15.1 area authentication

To enable authentication for an Open Shortest Path First (OSPF) area, use the area authentication

command in router configuration mode. To remove an authentication specification of an area or a

specified area from the configuration, use the no form of this command.

Command Syntax

area area-id authentication [message-digest]

no area area-id authentication

area-id

Identifier of the area for which authentication is to be enabled. The identifier

can be specified as either a decimal value or an IP address.

message-digest

(Optional) Enables Message Digest 5 (MD5) authentication on the area

specified by the area-id argument.

Default

Type 0 authentication (no authentication)

Command Mode

Router configuration

Usage

Specifying authentication for an area sets the authentication to Type 1 (simple password) as specified in

RFC 1247. If this command is not included in the configuration file, authentication of Type 0 (no

authentication) is assumed.

The authentication type must be the same for all routers and access servers in an area. The

authentication password for all OSPF routers on a network must be the same if they are to communicate

with each other via OSPF. Use the ip ospf authentication-key interface command to specify this

password.

If you enable MD5 authentication with the message-digest keyword, you must configure a password

with the ip ospf message-digest-key interface command.

To remove the authentication specification for an area, use the no form of this command with the

authentication keyword.

Examples

The following example mandates authentication for areas 0 and 10.0.0.0 of OSPF routing process 201.

Authentication keys are also provided.

interface eth-0-1

no switchport

ip address 192.168.251.201/24

ip ospf authentication-key adcdefgh

!

interface eth-0-2