cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
420
Views
4
Helpful
5
Replies

OSPF Authentication

GillieLucent
Level 1
Level 1

Hi,

I have three routers A,B and C all in area 0 connected to a switch. A and B routers require MD5 authentication where B and C doesnot require any authentication.Remember, all are in same subnet.

How to configure ?

Thanks,

Vijaybabu

5 Replies 5

Edison Ortiz
Hall of Fame
Hall of Fame

Instead of going with area authentication, you can configure interface authentication, between A and B.

Area Authentication:

area 0 authentication message-digest

interface f0/0

ip ospf message-digest-key 1 md5 CISCO

Interface Authentication

interface f0/0

ip ospf authentication message-digest

ip ospf message-digest-key 1 md5 CISCO

HTH,

Hi,

Thanks for replying.

I have already mentioned all are in same subnet. So, if I configure interface authentication in A and B, then C won't form neighbourship with A and B.

Thanks,

Vijaybabu

It can't be done unless you want to move the OSPF process to a GRE tunnel, quite ugly config.

Is this for a study lab or production network ?

Edit: Thinking more about it, you can have multiple OSPF process. One OSPF process for A and B (OSPF 1) and another process for A, B and C without authentication (OSPF 2).

I have to lab this up but I believe it should work.

hi,

This is for study lab.

But, if we have multiple process, then we need to redistribute between the process, that will be complex.

Thanks,

Vijaybabu

I believe I've seen that Lab.

The solution was building dual OSPF processes.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco