Configuring authentication for OSPF or RIP is pretty straightforward under Zebra. You have the choice between clear-text passwords and MD5 hashes (Example 9-25). However, consider that this contributes to CPU load.
Example 9-25. Configuring MD5 Authentication for Zebra OSPF
castor-ospfd# show running-config
Current configuration:
!
hostname castor-ospfd
password 8 4DwwIFdKLWvU.
enable password 8 dV8x4MhxDAuaw
log file /var/log/ospfd.log
service advanced-vty
service password-encryption
!
!
!
interface xl0
ip ospf message-digest-key 1 md5 zebra
!
interface ed0
ip ospf message-digest-key 1 md5 zebra
!
interface lp0
ip ospf network point-to-point
!
interface sl0
ip ospf network point-to-point
!
interface sl1
ip ospf network point-to-point
!
interface ds0
!
interface stf0
!
interface faith0
!
interface vlan0
!
interface vlan1
!
interface lo0
!
interface ppp0
ip ospf network point-to-point
!
interface ppp1
ip ospf network point-to-point
!
interface vlan8
ip ospf message-digest-key 1 md5 zebra
!
interface lo1
!
router ospf
ospf router-id 192.168.2.7
compatible rfc1583
redistribute connected
redistribute static
network 192.168.2.0/24 area 0
network 192.168.7.0/24 area 0
network 192.168.80.0/24 area 0
area 0 authentication message-digest
capability opaque
!
access-list 1 remark vty-protection
access-list 1 permit 127.0.0.1
access-list 1 permit 192.168.1.0 0.0.0.255
!
line vty
access-class 1
exec-timeout 15 0
!
end
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment