Configure eigrp route authentication – Cisco 15327 User Manual
Page 183
11-25
Ethernet Card Software Feature and Configuration Guide, R7.2
Chapter 11 Configuring Networking Protocols
Configure EIGRP Route Authentication
Configure EIGRP Route Authentication
EIGRP route authentication provides MD5 authentication of routing updates from the EIGRP routing
protocol to prevent the introduction of unauthorized or false routing messages from unapproved sources.
Beginning in privileged EXEC mode, follow these steps to enable authentication:
Use the no forms of these commands to disable the feature or to return the setting to the default value.
Command
Purpose
Step 1
Router# configure terminal
Enters global configuration mode.
Step 2
Router(config)# interface
interface-id
Enters interface configuration mode, and specifies the
Layer 3 interface to configure.
Step 3
Router(config-if)# ip authentication
mode eigrp
autonomous-system-number md5
Enables MD5 authentication in IP EIGRP packets.
Step 4
Router(config-if)# ip authentication
key-chain eigrp
autonomous-system-number
key-chain
Enables authentication of IP EIGRP packets.
Step 5
Router(config-if)# exit
Returns to global configuration mode.
Step 6
Router(config)# key chain
name-of-chain
Identifies a key chain and enter key-chain
configuration mode. Match the name configured in
Step 4.
Step 7
Router(config-keychain)# key
number
In key-chain configuration mode, identifies the key
number.
Step 8
Router(config-keychain)# key-string
text
In key-chain key configuration mode, identifies the
key string.
Step 9
Router(config-keychain-key)#
accept-lifetime
start-time {infinite |
end-time | duration seconds}
(Optional) Specifies the time period during which the
key can be received.
The start-time and end-time syntax can be either
hh:mm:ss Month date year or hh:mm:ss date Month
year. The default start-time (and earliest acceptable
day) is January 1, 1993. The default end-time and
duration is infinite.
Step 10
Router(config-keychain-key)#
send-lifetime
start-time {infinite |
end-time | duration seconds}
(Optional) Specifies the time period during which the
key can be sent.
The start-time and end-time syntax can be either
hh:mm:ss Month day year or hh:mm:ss day Month
year. The default start-time (and earliest acceptable
day) is January 1, 1993. The default end-time and
duration is infinite.
Step 11
Router(config)# end
Returns to privileged EXEC mode.
Step 12
Router# show key chain
Displays authentication key information.
Step 13
Router# copy running-config
startup-config
(Optional) Saves your entries in the configuration file.