Difference between revisions of "Cisco: OSPF Authentication"

From OnnoWiki
Jump to navigation Jump to search
 
(2 intermediate revisions by the same user not shown)
Line 15: Line 15:
 
  interface Serial0
 
  interface Serial0
 
   ip address 192.16.64.2 255.255.255.0
 
   ip address 192.16.64.2 255.255.255.0
   ip ospf authentication-key c1$c0 
+
   ip ospf authentication-key $AP7i1
  !--- The Key value is set as "c1$c0 ". !--- It is the password that is sent across the network.
+
  !--- The Key value is set as "$AP7i1". !--- It is the password that is sent across the network.
  
 
  clockrate 64000
 
  clockrate 64000
Line 27: Line 27:
 
  area 0 authentication
 
  area 0 authentication
 
  !--- Plain text authentication is enabled for !--- all interfaces in Area 0.
 
  !--- Plain text authentication is enabled for !--- all interfaces in Area 0.
 
  
 
==MD5 Authentication==
 
==MD5 Authentication==
Line 36: Line 35:
 
  interface Serial0
 
  interface Serial0
 
   ip address 192.16.64.2 255.255.255.0
 
   ip address 192.16.64.2 255.255.255.0
   ip ospf message-digest-key 1 md5 c1$c0 
+
   ip ospf message-digest-key 1 md5 $AP7i1
  !--- Message digest key with ID "1" and !--- Key value (password) is set as "c1$c0 ".
+
  !--- Message digest key with ID "1" and !--- Key value (password) is set as "$AP7i1".
  
 
  clockrate 64000
 
  clockrate 64000
Line 44: Line 43:
 
   network 192.16.64.0 0.0.0.255 area 0
 
   network 192.16.64.0 0.0.0.255 area 0
 
   network 70.0.0.0 0.255.255.255 area 0
 
   network 70.0.0.0 0.255.255.255 area 0
  area 0 authentication message-digest -->
+
  area 0 authentication message-digest
 
  !--- MD5 authentication is enabled for !--- all interfaces in Area 0.
 
  !--- MD5 authentication is enabled for !--- all interfaces in Area 0.
 
 
 
  
 
==Referensi==
 
==Referensi==

Latest revision as of 09:14, 28 December 2018

Sumber: https://www.cisco.com/c/en/us/support/docs/ip/open-shortest-path-first-ospf/13697-25.html

These are the three different types of authentication supported by OSPF.

  • Null Authentication—This is also called Type 0 and it means no authentication information is included in the packet header. It is the default.
  • Plain Text Authentication—This is also called Type 1 and it uses simple clear-text passwords.
  • MD5 Authentication—This is also called Type 2 and it uses MD5 cryptographic passwords.


Plan Text Authentication

interface Loopback0
  ip address 70.70.70.70 255.255.255.255
!
interface Serial0
 ip address 192.16.64.2 255.255.255.0
 ip ospf authentication-key $AP7i1 
!--- The Key value is set as "$AP7i1". !--- It is the password that is sent across the network.
clockrate 64000
!
router ospf 10
 log-adjacency-changes
 network 70.0.0.0 0.255.255.255 area 0
 network 192.16.64.0 0.0.0.255 area 0
 
area 0 authentication
!--- Plain text authentication is enabled for !--- all interfaces in Area 0.

MD5 Authentication

interface Loopback0
  ip address 70.70.70.70 255.255.255.255
!
interface Serial0
 ip address 192.16.64.2 255.255.255.0
 ip ospf message-digest-key 1 md5 $AP7i1
!--- Message digest key with ID "1" and !--- Key value (password) is set as "$AP7i1".
clockrate 64000
!
router ospf 10
 network 192.16.64.0 0.0.0.255 area 0
 network 70.0.0.0 0.255.255.255 area 0
area 0 authentication message-digest
!--- MD5 authentication is enabled for !--- all interfaces in Area 0.

Referensi

Pranala Menarik

Pranala Menarik