beautypg.com

Configure eigrp route authentication – Cisco 15327 User Manual

Page 183

background image

11-25

Ethernet Card Software Feature and Configuration Guide, R7.2

Chapter 11 Configuring Networking Protocols

Configure EIGRP Route Authentication

Configure EIGRP Route Authentication

EIGRP route authentication provides MD5 authentication of routing updates from the EIGRP routing
protocol to prevent the introduction of unauthorized or false routing messages from unapproved sources.

Beginning in privileged EXEC mode, follow these steps to enable authentication:

Use the no forms of these commands to disable the feature or to return the setting to the default value.

Command

Purpose

Step 1

Router# configure terminal

Enters global configuration mode.

Step 2

Router(config)# interface

interface-id

Enters interface configuration mode, and specifies the
Layer 3 interface to configure.

Step 3

Router(config-if)# ip authentication

mode eigrp

autonomous-system-number md5

Enables MD5 authentication in IP EIGRP packets.

Step 4

Router(config-if)# ip authentication

key-chain eigrp

autonomous-system-number

key-chain

Enables authentication of IP EIGRP packets.

Step 5

Router(config-if)# exit

Returns to global configuration mode.

Step 6

Router(config)# key chain

name-of-chain

Identifies a key chain and enter key-chain
configuration mode. Match the name configured in
Step 4.

Step 7

Router(config-keychain)# key

number

In key-chain configuration mode, identifies the key
number.

Step 8

Router(config-keychain)# key-string

text

In key-chain key configuration mode, identifies the
key string.

Step 9

Router(config-keychain-key)#

accept-lifetime

start-time {infinite |

end-time | duration seconds}

(Optional) Specifies the time period during which the
key can be received.

The start-time and end-time syntax can be either
hh:mm:ss Month date year or hh:mm:ss date Month
year
. The default start-time (and earliest acceptable
day) is January 1, 1993. The default end-time and
duration is infinite.

Step 10

Router(config-keychain-key)#

send-lifetime

start-time {infinite |

end-time | duration seconds}

(Optional) Specifies the time period during which the
key can be sent.

The start-time and end-time syntax can be either
hh:mm:ss Month day year or hh:mm:ss day Month
year
. The default start-time (and earliest acceptable
day) is January 1, 1993. The default end-time and
duration is infinite.

Step 11

Router(config)# end

Returns to privileged EXEC mode.

Step 12

Router# show key chain

Displays authentication key information.

Step 13

Router# copy running-config

startup-config

(Optional) Saves your entries in the configuration file.