09-29-2007 01:01 AM - edited 03-03-2019 06:57 PM
Hi,
I have three routers A,B and C all in area 0 connected to a switch. A and B routers require MD5 authentication where B and C doesnot require any authentication.Remember, all are in same subnet.
How to configure ?
Thanks,
Vijaybabu
09-29-2007 09:19 AM
Instead of going with area authentication, you can configure interface authentication, between A and B.
Area Authentication:
area 0 authentication message-digest
interface f0/0
ip ospf message-digest-key 1 md5 CISCO
Interface Authentication
interface f0/0
ip ospf authentication message-digest
ip ospf message-digest-key 1 md5 CISCO
HTH,
09-29-2007 09:45 AM
Hi,
Thanks for replying.
I have already mentioned all are in same subnet. So, if I configure interface authentication in A and B, then C won't form neighbourship with A and B.
Thanks,
Vijaybabu
09-29-2007 09:48 AM
It can't be done unless you want to move the OSPF process to a GRE tunnel, quite ugly config.
Is this for a study lab or production network ?
Edit: Thinking more about it, you can have multiple OSPF process. One OSPF process for A and B (OSPF 1) and another process for A, B and C without authentication (OSPF 2).
I have to lab this up but I believe it should work.
09-29-2007 10:10 AM
hi,
This is for study lab.
But, if we have multiple process, then we need to redistribute between the process, that will be complex.
Thanks,
Vijaybabu
09-29-2007 10:35 AM
I believe I've seen that Lab.
The solution was building dual OSPF processes.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide