Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5246
Views
0
Helpful
4
Replies

OSPF mismatched authentication type

richmorrow624
Level 1
Level 1

‎06-19-2006 07:58 AM - edited ‎03-03-2019 01:02 PM

I have an MPLS network that has 9 different sites running OSPF.

I just added a 10th router and am getting the following from debug:

"Mismatch Authentication type. Input packet specified type 2, we use type 0"

These are 1841 routers and I do not see any authentication from any of the configs. Could this be a provider issue?

The error is coming from the provider interface to the serial multilink of my router.

1 person had this problem
Labels:
0 Helpful
4 Replies 4

atif.awan
Level 3
Level 3

‎06-19-2006 09:00 AM

I am assuming that you have a L3 VPN service from your provider. If that is the case then yes your neighbor relationship is with the provider PE at each site and this error is probably because of the provider side misconfigured to perform authentication.

0 Helpful

olorunloba
Level 5
Level 5
In response to atif.awan

‎06-19-2006 10:47 AM

Your provider must have configured MD5 authentication for this link. The error message decodes as follows

"Mismatch Authentication type. Input packet specified type 2, we use type 0"

Mismatch Authentication type : The authentication at both ends is not the same. It needs to be the same.

Input packet specified type 2 : The provider is using type 2. This is equivalent to MD5 authentication.

we use type 0 : You are using type 0, which is equivalent to no authentication.

Ask your provider to remove the authentication, or you configure authentication at your end with the right password.

0 Helpful

richmorrow624
Level 1
Level 1
In response to olorunloba

‎06-19-2006 11:43 AM

Thanks guys,

I have not worked with OSPF very much, but I am seeing what you are saying.

I found the authentication types with 2 being MD5 as Olorunloba said.

I believe the provider has either misconigured his router (because none of the other routers are configured with authentication), or has decided to use authentication with this location.

Unless,

I did not consult with the provider before using Area 8 (the next logical area number), is it possible he could have used a differnet area?

I guess the error would have been "mismatch area ID" if that were the case.

Thanks for helping out.

Richard

0 Helpful

olorunloba
Level 5
Level 5
In response to richmorrow624

‎06-19-2006 01:57 PM

You are very right about the mismatch area ID.

You could also configure MD5 authentication at your end, and expect the message to now be mismatched password. In any case, you will need to consult your provider to know what to configure.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card